Report - www.mavtechsolar.com.br/macu/macu.com/m.html

Report Overview

Submitted URL
www.mavtechsolar.com.br/macu/macu.com/m.html
IP
108.179.252.44
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-12-06 05:53:21
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
80

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	1.1 kB	23.36.76.122
stackpath.bootstrapcdn.com	2467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	441 B	16 kB	104.18.10.207
ws.audioeye.com	3923	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	363 B	358 B	104.18.25.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
www.mavtechsolar.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	159 kB	108.179.252.44
img.en25.com	6484	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	289 B	2.7 kB	104.66.120.119
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	449 B	357 B	23.36.76.122
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	796 B	55 kB	69.16.175.10
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	851 B	13 kB	104.17.25.14
analytics.twitter.com	526	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	664 B	755 B	104.244.42.67
collector.fraudmap.net	143059	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	421 B	267 B	63.128.130.61
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
oc-cdn-ocprod.azureedge.net	68131	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	13.107.213.53
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	757 B	1.9 kB	216.58.211.2
ajax.aspnetcdn.com	693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	31 kB	152.199.19.160
elq.macu.com	608020	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	525 B	336 B	142.0.173.12
cloud.typography.com	5721	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	405 B	437 B	23.14.4.143
www.macu.com	251916	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.8 kB	36 kB	45.60.46.50
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
wsv3cdn.audioeye.com	3722	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.5 kB	175 kB	104.18.24.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.51.98
mavtechsolar.com.br	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	252 kB	108.179.252.44
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	54 kB	34.120.237.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	6.5 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-06	medium	www.mavtechsolar.com.br/macu/macu.com/m.html	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/MACU/Scripts/Lib/tippy.all.min.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/macu/macu.com/js/actions.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/media/Icons/icon-security-padlock.svg	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/media/Icons/icon-map-location.svg	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/media/Icons/icon-account.svg	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/media/Icons/icon-market-prediction.svg	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg	Phishing
2022-12-06	medium	mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/media/Icons/icon-map-location.svg	Phishing
2022-12-06	medium	mavtechsolar.com.br/media/Icons/icon-security-padlock.svg	Phishing
2022-12-06	medium	mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg	Phishing
2022-12-06	medium	mavtechsolar.com.br/media/Icons/icon-account.svg	Phishing
2022-12-06	medium	mavtechsolar.com.br/media/Icons/icon-market-prediction.svg	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js	Phishing
2022-12-06	medium	mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js	Phishing
2022-12-06	medium	www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js	20 kB	2023-03-07	2024-04-19
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 09:02:56 Times Seen7531 Hash 6b08ddc901000d51fa1f06a35518f302 bafe987c18cbe0587de3e6360e7da40a2885614b 02835066969199e9924f1332f7172a5d7e552f023a20c3d8ba03bb6c51ce5be5 Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	370 B	2023-03-07	2024-04-16
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:26 Last Seen2024-04-16 01:37:04 Times Seen1449 Hash 2dd1a1b7c59783d99f750190233d997a 28a2788c6484a90079a0654b958b73806d660fd4 01345e20242c77eb2657f3efac0e1e1fe0eec6c7a74b84b16c67128f24899410 Loading...

	wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8	98 kB	2023-03-07	2023-03-17
Pretty URL wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8 IP 104.18.24.76 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59:10 Last Seen2023-03-17 09:24:30 Times Seen1 Hash 7eee0eb65f157d0ae95d13acceabdc01 b47260d66e957cb81d99f0437d92312676ef5c49 47a242933d71a6e3af981a4ef4d00a3326c39b250b91d40cc9ce6bd26a28ca44 Loading...

	oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/scripts/LiveChatBootstrapper.js	108 kB	2023-03-08	2023-03-11
Pretty URL oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/scripts/LiveChatBootstrapper.js IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:47:14 Last Seen2023-03-11 20:34:01 Times Seen1 Hash 63a24db6c6f883fe342da0b06786ce1b 8e69162f2e744b7cea33303c228736571d778c78 b3048c887d4d33a2033c8b7c4a0494b88bb7300445f5ef18a638ce51c0a73bd9 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/979871099/?random=1639145706877&cv=9&fst=1639145706877&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=1&u_tz=60&u_java=false&u_nplug=0&u_nmime=0&gtm=2wgc10&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.macu.com%2F&tiba=Mountain%20America%20Credit%20Union%20in%20Utah%20%26%20the%20West&hn=www.google.com&async=1&rfmt=3&fmt=4	2.2 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/979871099/?random=1639145706877&cv=9&fst=1639145706877&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=1&u_tz=60&u_java=false&u_nplug=0&u_nmime=0&gtm=2wgc10&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.macu.com%2F&tiba=Mountain%20America%20Credit%20Union%20in%20Utah%20%26%20the%20West&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 216.58.211.2 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-08 20:06:56 Times Seen1 Hash 59a7ac621287316d076bdb8137c05f3c 1562ea664766d28d55221f2d6bd0f0f1e0ec86b6 130743446b997b087b8ce14662240368815086616d7a2502ed2f63ece18eaec6 Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	477 B	2023-03-08	2023-03-14
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash f70f53c0d1da0031c96e4100a5fa94ad e1e2aa5c9d47139ecc83f91fa9dd6b2f501cf3c0 bd93aa240d83876a14a195ae7ab3a9395775f9388dd52ed166bb6f76546adc50 Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	392 B	2023-03-08	2023-03-14
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash b3c80bdaab11de2eb7cbb6b08962bb99 fbd163177d0dc92c7597a259104824660c6473f4 7754a2d28f0277c0f03f4a4c6c8757b54a787cdec3e4d804953154e2258600bd Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	474 B	2023-03-08	2023-03-14
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash 215eea484ec2240370099b21a13d906d 02a7ad812f34c002de1f465ddd19fca5f48b248f 33d9332c5a9a777f14304d5b334283c9aefb4dd0106e21aea7aac2687f5aaa39 Loading...

	elq.macu.com/visitor/v200/svrGP?pps=50&siteid=2213&DLKey=f30397214b8a46999ee05dc731734107&DLLookup=&ms=342&firstPartyCookieDomain=elq.macu.com&elqGUID=FA460857BF194EDC924F7D6D6CD86BB4	0 B	2023-03-07	2024-04-19
Pretty URL elq.macu.com/visitor/v200/svrGP?pps=50&siteid=2213&DLKey=f30397214b8a46999ee05dc731734107&DLLookup=&ms=342&firstPartyCookieDomain=elq.macu.com&elqGUID=FA460857BF194EDC924F7D6D6CD86BB4 IP 142.0.173.12 ASN #7160 NETDYNAMICS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 15:37:30 Times Seen36961520 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	539 B	2023-03-08	2023-03-14
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash 00261e0d10ceb3af867575e037832d18 74aadaad5ea4bbe1616c19003acc76407104cef6 a324711ccfaa423b9f24eec679b1e3c4baa374767c2da4383b2c42b948de17a0 Loading...

	code.jquery.com/jquery-3.3.1.slim.min.js	70 kB	2023-03-07	2024-04-19
Pretty URL code.jquery.com/jquery-3.3.1.slim.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-19 09:02:56 Times Seen8237 Hash 99b0a83cf1b0b1e2cb16041520e87641 bc5836992c0b260496ba520fe1336d499bf06eb7 dde76b9b2b90d30eb97fc81f06caa8c338c97b688cea7d2729c88f529f32fbb1 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js	20 kB	2023-03-07	2024-04-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-18 08:21:41 Times Seen3553 Hash 053305c2b293c27c02523cda42962c09 556b0af7346b9e21a8eea1be8b195b563169ecd5 be483938eb34538b970684f72e312f62652e84b42b7ad86953962d1ce2217c44 Loading...

	code.jquery.com/jquery-3.2.1.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL code.jquery.com/jquery-3.2.1.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 15:26:42 Times Seen60888 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	81 B	2023-03-08	2023-03-14
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash 2756ada304fd564bcbc93c359d524d09 130f6e2a3287c7f34a1874940f94ec981921fc0e 0438a19dadfbf1aa099cfa38d318b041371e75eb13f3d6e51185dc713dad5a5f Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	397 B	2023-03-08	2023-03-14
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash be7ee2fa46a9f5724f506ea1f1b4558c 7db34061bc9b793c96f949e4fc165c8969788701 8531d8b05e5573fee95d24b3907d703c52ba0f30f0cfafb8b6317dcfa8a0a59e Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	3.1 kB	2023-03-08	2023-03-14
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash 17653e952f28bd003f9e1a0211fd2d79 b150aa348df58df32beb8ab7dd70b4ea541bb3bf b36a814296026f177665007ae080967c48cf7736c246ba92acfd2d0278a9236a Loading...

	ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js IP 152.199.19.160 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 15:21:07 Times Seen105287 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-19
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 09:02:56 Times Seen6208 Hash ce6e785579ae4cb555c9de311d1b9271 5ef2c15b47d7290698c737676ba9c3056b45f2e8 0bca10549df770ab6790046799e5a9e920c286453ebbb2afb0d3055339245339 Loading...

	wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8	590 kB	2023-03-08	2023-03-14
Pretty URL wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8 IP 104.18.24.76 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash 7fc1ab562d7c594f5be839ae3d383b59 5c63099c66f4ab7025b71ba98ab3b4962c8d75db d3697929689c4f3c051279339fac83617ded0faa3c2cf9634c6302c412ac70ba Loading...

	www.mavtechsolar.com.br/macu/macu.com/m.html	350 B	2023-03-08	2023-03-14
Pretty URL www.mavtechsolar.com.br/macu/macu.com/m.html IP 108.179.252.44 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:06:56 Last Seen2023-03-14 11:51:28 Times Seen1 Hash 7c192d45844ae0c6424d143a8b154a78 5aa925f281b068ea71e6c309eb80ba868f59287e 76adce1870da5586b55134d765d0cd8f19f77c7ba2d7e2879a77ccd1a4fb2781 Loading...

	img.en25.com/i/elqCfg.min.js	6.1 kB	2023-03-07	2024-04-19
Pretty URL img.en25.com/i/elqCfg.min.js IP 104.66.120.119 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-04-19 15:24:18 Times Seen2807 Hash 873bd8924abbb29cbea1e72f53383bce 2f95935f747785623015576f1aad75c6f03bcd33 3346de8e2ae1bfde250c7ac5c06f79a0a60c7faef8e5e08a2c9e8fbf5ec2c9e8 Loading...

HTTP Transactions (127)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9053
Expires: Tue, 06 Dec 2022 08:24:02 GMT
Date: Tue, 06 Dec 2022 05:53:09 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2459
Cache-Control: max-age=105549
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:09 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:12:18 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 05:20:22 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1967
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9132
Expires: Tue, 06 Dec 2022 08:25:21 GMT
Date: Tue, 06 Dec 2022 05:53:09 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: PtR2+jMO9AXcrqJ0QQHoW44FVnFcfN0DxRAdZFQ+oCbOYa4Q5CyyzZ4+gBEugnaH3hG7QBUWda4=
x-amz-request-id: BDCM85JVJBF3AYHR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 05:46:59 GMT
age: 370
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 05:53:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.mavtechsolar.com.br/macu/macu.com/m.html

108.179.252.44

200 OK

104 kB

URL HTTP/1.1
www.mavtechsolar.com.br/macu/macu.com/m.html
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (25760), with CRLF line terminators
Size
104 kB (104011 bytes)
Hash
a521c523503b2bbe3fe2707b9e0734b3
92ec5219be0a49db9ad73a07c674062a4cf9841e
3cb9bd2ec637ffdaf127e45dffd6eca73642fdaa0f0cd2e1f396c96e55b96a7a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /macu/macu.com/m.html HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 05:53:09 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=0, public
Expires: Tue, 06 Dec 2022 05:53:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: WP Rocket/3.10.7
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

use.typekit.net/cvd1zmo.css

23.36.76.122

200 OK

686 B

URL HTTP/2
use.typekit.net/cvd1zmo.css
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (516)
Size
686 B (686 bytes)
Hash
16792e2de31566f6cefcf218d801da01
1b45a1423a1c3c29fc78978c301562b5ff946d1f
0f754cc70b406fe48f7088393e8691a33fcfe2f491ff43a18353fdc14e9fb665

HTTP Headers

GET /cvd1zmo.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 686
date: Tue, 06 Dec 2022 05:53:09 GMT
X-Firefox-Spdy: h2

img.en25.com/i/elqCfg.min.js

104.66.120.119

200 OK

2.2 kB

URL HTTP/1.1
img.en25.com/i/elqCfg.min.js
IP
104.66.120.119:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (6080), with no line terminators
Size
2.2 kB (2183 bytes)
Hash
653932b9065b662394993fd19677a932
854c6c3b96fc647f07bf9a1698387d1253bcb61c
ba8a6983167c051ebdd701cb59293a88346b84f2a9802f59ecc75ca49f383a7d

HTTP Headers

GET /i/elqCfg.min.js HTTP/1.1
Host: img.en25.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/

HTTP/1.1 200 OK
Pragma: no-cache
Content-Type: application/x-javascript
Last-Modified: Mon, 03 Oct 2022 17:55:36 GMT
Accept-Ranges: bytes
ETag: "ff37a05751d7d81:0"
P3P: CP="IDC DSP COR DEVa TAIa OUR BUS PHY ONL UNI COM NAV CNT STA",
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex, nofollow
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: no-store
Expires: Tue, 06 Dec 2022 05:53:09 GMT
Date: Tue, 06 Dec 2022 05:53:09 GMT
Content-Length: 2183
Connection: keep-alive

wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8

104.18.24.76

301 Moved Permanently

0 B

URL HTTP/1.1
wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /build/jquery.bundle.js?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 06 Dec 2022 06:53:10 GMT
Location: https://wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7752c275be5a0b41-OSL

wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8

104.18.24.76

301 Moved Permanently

0 B

URL HTTP/1.1
wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /build/startup.bundle.js?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 06 Dec 2022 06:53:10 GMT
Location: https://wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7752c275c89db500-OSL

p.typekit.net/p.css?s=1&k=cvd1zmo&ht=tk&f=39680.39685.39687&a=1540528&app=typekit&e=css

23.36.76.122

200 OK

5 B

URL HTTP/2
p.typekit.net/p.css?s=1&k=cvd1zmo&ht=tk&f=39680.39685.39687&a=1540528&app=typekit&e=css
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=cvd1zmo&ht=tk&f=39680.39685.39687&a=1540528&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Tue, 06 Dec 2022 05:53:10 GMT
X-Firefox-Spdy: h2

www.macu.com/MACU/Stylesheets/font-awesome.min.css

45.60.46.50

301 Moved Permanently

0 B

URL HTTP/2
www.macu.com/MACU/Stylesheets/font-awesome.min.css
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /MACU/Stylesheets/font-awesome.min.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
location: https://www.macu.com/media/Stylesheets/font-awesome.min.css?
content-length: 0
X-Firefox-Spdy: h2

www.macu.com/MACU/Stylesheets/jquery.smartbanner.css

45.60.46.50

301 Moved Permanently

0 B

URL HTTP/2
www.macu.com/MACU/Stylesheets/jquery.smartbanner.css
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /MACU/Stylesheets/jquery.smartbanner.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
location: https://www.macu.com/media/Stylesheets/jquery.smartbanner.css?
content-length: 0
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
716796f726dc7df154896cac3af089b6
0c65362a7a7ffe91dd9258eabbe0ab3b61fe77ef
ff1961d969cc1ffbdcb008145a35b921bd6795e18a4d6ba467a4d63712093988

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 527
Cache-Control: max-age=149650
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e7c49-139"
Expires: Wed, 07 Dec 2022 23:27:20 GMT
Last-Modified: Mon, 05 Dec 2022 23:18:33 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 313

code.jquery.com/jquery-3.3.1.slim.min.js

69.16.175.10

200 OK

24 kB

URL HTTP/2
code.jquery.com/jquery-3.3.1.slim.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65247)
Size
24 kB (24038 bytes)
Hash
0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0

HTTP Headers

GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670305990.dop225.sk1.t,1670305990.cds237.sk1.hn,1670305990.cds230.sk1.c
X-Firefox-Spdy: h2

www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:09 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6519
Cache-Control: max-age=145232
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 22:13:42 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280

www.macu.com/media/Stylesheets/font-awesome.min.css?

45.60.46.50

301 Moved Permanently

0 B

URL HTTP/2
www.macu.com/media/Stylesheets/font-awesome.min.css?
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /media/Stylesheets/font-awesome.min.css? HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
location: https://www.macu.com/media/Stylesheets/font-awesome.min.css
content-length: 0
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6308
Cache-Control: max-age=145021
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 22:10:11 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280

www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:09 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d9339bfb0393ef6575db48a0481f2556
351fa573fc3ea6626f3258061743cad65e0c4fce
5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
37d7e15f5b1dcefb0bad6fd6e24218de
0192e54b3a2648a39475eef74ae63d7ad6fed01b
e28e8202e6c49ed220b8b9b030c17f215571da4a9ad9ec9235cc54b14260aa31

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638dc16b-118"
Server: ECS (amb/6BA6)
Content-Length: 280

cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js

104.17.25.14

200 OK

4.5 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.5 kB (4517 bytes)
Hash
e40e054c5726f042bad463e3774a2777
5c9413b72837a440b327444104830c35ae3b052c
fcc8a86d2e89e8fbe9815d50c23bf205191ab8a6c0bec67358cd975d94283ff8

HTTP Headers

GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4111105
expires: Sun, 26 Nov 2023 05:53:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ixaqmy5Aoz6zWfzTqOagxPk3IVynt0ax08O%2Fg9MpfxMEqxOWMxdPwe9zrUo%2BDgZdrIo51qg9rvA6G8jkLMDItV5Tq%2BEsKAc2jAvNg6K1%2FhuzhsbnrrJ%2Fhka0aIIEyrPZxhCpml0o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7752c2770bbfb4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.macu.com/media/Stylesheets/jquery.smartbanner.css?

45.60.46.50

301 Moved Permanently

0 B

URL HTTP/2
www.macu.com/media/Stylesheets/jquery.smartbanner.css?
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /media/Stylesheets/jquery.smartbanner.css? HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
location: https://www.macu.com/media/Stylesheets/jquery.smartbanner.css
content-length: 0
X-Firefox-Spdy: h2

wsv3cdn.audioeye.com/css/launcher.css?cb=b4842f8

104.18.24.76

404 Not Found

29 B

URL HTTP/2
wsv3cdn.audioeye.com/css/launcher.css?cb=b4842f8
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
e8eacfe6d5c10c70b79875a1e49e70f4
406e1c098ed111fe1e5eb5aed29fbb3e5ab27163
8b3bc42630ce797308e3ad9ac29de81ae883fa51d646e0c84a1165b27646cffd

HTTP Headers

GET /css/launcher.css?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 29
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c27609050b61-OSL
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/979871099/?random=1639145706877&cv=9&fst=1639145706877&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=1&u_tz=60&u_java=false&u_nplug=0&u_nmime=0&gtm=2wgc10&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.macu.com%2F&tiba=Mountain%20America%20Credit%20Union%20in%20Utah%20%26%20the%20West&hn=www.google.com&async=1&rfmt=3&fmt=4

216.58.211.2

200 OK

955 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/979871099/?random=1639145706877&cv=9&fst=1639145706877&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=1&u_tz=60&u_java=false&u_nplug=0&u_nmime=0&gtm=2wgc10&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.macu.com%2F&tiba=Mountain%20America%20Credit%20Union%20in%20Utah%20%26%20the%20West&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2183), with no line terminators
Size
955 B (955 bytes)
Hash
a7ef64cd0f2382ccc12ae6fa4004ed70
de765b1ad901ca4cf9d89acead5fb64893cf4ab5
029406bf0fe40e1b6df3e373a48d96a28bd43f0bf3925ecd7c2b8a7126fa2383

HTTP Headers

GET /pagead/viewthroughconversion/979871099/?random=1639145706877&cv=9&fst=1639145706877&num=1&guid=ON&resp=GooglemKTybQhCsO&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=1&u_tz=60&u_java=false&u_nplug=0&u_nmime=0&gtm=2wgc10&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.macu.com%2F&tiba=Mountain%20America%20Credit%20Union%20in%20Utah%20%26%20the%20West&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Dec 2022 05:53:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 955
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 06-Dec-2022 06:08:10 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

wsv3cdn.audioeye.com/build/compliance-min.css?cb=b4842f8

104.18.24.76

404 Not Found

29 B

URL HTTP/2
wsv3cdn.audioeye.com/build/compliance-min.css?cb=b4842f8
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
e8eacfe6d5c10c70b79875a1e49e70f4
406e1c098ed111fe1e5eb5aed29fbb3e5ab27163
8b3bc42630ce797308e3ad9ac29de81ae883fa51d646e0c84a1165b27646cffd

HTTP Headers

GET /build/compliance-min.css?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 29
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c276291c0b61-OSL
X-Firefox-Spdy: h2

wsv3cdn.audioeye.com/scripts/loader.js?d=www.macu.com&lang=en&cb=b4842f8

104.18.24.76

404 Not Found

29 B

URL HTTP/2
wsv3cdn.audioeye.com/scripts/loader.js?d=www.macu.com&lang=en&cb=b4842f8
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
e8eacfe6d5c10c70b79875a1e49e70f4
406e1c098ed111fe1e5eb5aed29fbb3e5ab27163
8b3bc42630ce797308e3ad9ac29de81ae883fa51d646e0c84a1165b27646cffd

HTTP Headers

GET /scripts/loader.js?d=www.macu.com&lang=en&cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 29
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c27628ed0b06-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2253
Cache-Control: max-age=92739
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:38:49 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

code.jquery.com/jquery-3.2.1.min.js

69.16.175.10

200 OK

30 kB

URL HTTP/2
code.jquery.com/jquery-3.2.1.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32058)
Size
30 kB (30125 bytes)
Hash
148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e

HTTP Headers

GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670305990.dop230.sk1.t,1670305990.cds250.sk1.hn,1670305990.cds222.sk1.c
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js

104.17.25.14

200 OK

6.5 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (20322)
Size
6.5 kB (6458 bytes)
Hash
df9fe6d48e380554eb0ec9687bed3246
207263d754220200c1916edfbda262f62223ecf5
91d57502b7260e6752c2b5f1636d77707929fa9f09da28589691e61816a448f9

HTTP Headers

GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 6458
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 391555
expires: Sun, 26 Nov 2023 05:53:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V3Ej96mqoQwx7JlMsLiVDhrEGa8JdwwQO7A2%2FURTAKcCwCADwCL3pOKSpTj3nQlEkZqhzQNR%2FaLB4YN%2F7PasNxr%2BHZi1cprV41ff514shKXLQNu5vboAwDlUADQHgWvbCzJmGBTR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7752c2776905b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js

152.199.19.160

200 OK

30 kB

URL HTTP/2
ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
IP
152.199.19.160:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (65451)
Size
30 kB (30394 bytes)
Hash
a263be51483c81a54aa8c85104a93e55
555a54a73531c553bd2aede6abc25c128b63312e
b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66

HTTP Headers

GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 23307485
cache-control: public,max-age=31536000
content-type: application/javascript
date: Tue, 06 Dec 2022 05:53:10 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2

www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/chat.bundle.9f4001edfbe0129311de.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6532
Cache-Control: max-age=145245
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 22:13:55 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280

www.mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

analytics.twitter.com/i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o3vv6&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=5ef5987f-e377-45de-b5cd-af2abaa2e812&tw_document_href=https%3A%2F%2Fwww.macu.com%2F&tpx_cb=twttr.conversion.loadPixels

104.244.42.67

200 OK

57 B

URL HTTP/2
analytics.twitter.com/i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o3vv6&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=5ef5987f-e377-45de-b5cd-af2abaa2e812&tw_document_href=https%3A%2F%2Fwww.macu.com%2F&tpx_cb=twttr.conversion.loadPixels
IP
104.244.42.67:0
ASN
#13414 TWITTER

File type
ASCII text, with no line terminators
Size
57 B (57 bytes)
Hash
d6cff1cc2ef6dbf2da25fade3bab8c65
c96e2822fd1459b7f171d86d88dcd76bc167c113
8d5b13815d3883037c78495a28abfe1815bfc702cade0cd8a7592be793e72996

HTTP Headers

GET /i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o3vv6&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=5ef5987f-e377-45de-b5cd-af2abaa2e812&tw_document_href=https%3A%2F%2Fwww.macu.com%2F&tpx_cb=twttr.conversion.loadPixels HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
date: Tue, 06 Dec 2022 05:53:10 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_gyL4WlusV67wGwNbslBz7w=="; Max-Age=63072000; Expires=Thu, 05 Dec 2024 05:53:10 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: application/javascript;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 57
content-encoding: gzip
x-transaction-id: d662f0f589d2f759
strict-transport-security: max-age=631138519
x-response-time: 110
x-connection-hash: 28d538984cb5fbb0bc6d79a30fad4bea5c465975a55d63e2569afadd08dc4643
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2414bc9e2993b455badf154b25b4dd7a
509bca703da28d3c5747ef35d78c489a8ca4006b
cd4269727da96037d4ea17c904bb3f31c88801539c25096b4ba031fc219efd15

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=155597
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638e9593-1d7"
Expires: Thu, 08 Dec 2022 01:06:27 GMT
Last-Modified: Tue, 06 Dec 2022 01:06:27 GMT
Server: nginx
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d9339bfb0393ef6575db48a0481f2556
351fa573fc3ea6626f3258061743cad65e0c4fce
5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2253
Cache-Control: max-age=92739
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:38:49 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 05:08:58 GMT
cache-control: public,max-age=3600
age: 2652
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www.mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

elq.macu.com/visitor/v200/svrGP?pps=50&siteid=2213&DLKey=f30397214b8a46999ee05dc731734107&DLLookup=&ms=342&firstPartyCookieDomain=elq.macu.com&elqGUID=FA460857BF194EDC924F7D6D6CD86BB4

142.0.173.12

200 OK

0 B

URL HTTP/1.1
elq.macu.com/visitor/v200/svrGP?pps=50&siteid=2213&DLKey=f30397214b8a46999ee05dc731734107&DLLookup=&ms=342&firstPartyCookieDomain=elq.macu.com&elqGUID=FA460857BF194EDC924F7D6D6CD86BB4
IP
142.0.173.12:0
ASN
#7160 NETDYNAMICS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /visitor/v200/svrGP?pps=50&siteid=2213&DLKey=f30397214b8a46999ee05dc731734107&DLLookup=&ms=342&firstPartyCookieDomain=elq.macu.com&elqGUID=FA460857BF194EDC924F7D6D6CD86BB4 HTTP/1.1
Host: elq.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-store
Pragma: no-cache
Content-Type: application/javascript
Expires: -1
X-Robots-Tag: noindex, nofollow
X-Xss-Protection: 1; mode=block
P3P: CP="IDC DSP COR DEVa TAIa OUR BUS PHY ONL UNI COM NAV CNT STA",
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 05:53:09 GMT
Content-Length: 0

stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js

104.18.10.207

200 OK

15 kB

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (50395)
Size
15 kB (14845 bytes)
Hash
ce18099669e4e0800f3986bce7d8672d
2584819a4ad8c7eb44027b2ba6eb680ba8dffbf9
fa45b1926cb6a10ebfe1dbb4234d3659ab4031117825044ff81d1a540be56c3a

HTTP Headers

GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 11/15/2022 10:39:35
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1054
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 1680d8f13e953e5471785231ef08c985
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7752c2778a120afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2455
Cache-Control: max-age=100477
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 05:53:10 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:47:47 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

collector.fraudmap.net/fs/e517993e82e64ad6428327ea680b88b3/validate/validate.js

63.128.130.61

200 OK

0 B

URL HTTP/1.1
collector.fraudmap.net/fs/e517993e82e64ad6428327ea680b88b3/validate/validate.js
IP
63.128.130.61:0
ASN
#22013 GUARD-DC1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /fs/e517993e82e64ad6428327ea680b88b3/validate/validate.js HTTP/1.1
Host: collector.fraudmap.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 05:53:09 GMT
Server: Apache
Content-Length: 0
Strict-Transport-Security: max-age=16070400; includeSubDomains
X-XSS-Protection: 1
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

wsv3cdn.audioeye.com/css/aggregate.css?files=default|core&cb=b4842f8

104.18.24.76

404 Not Found

29 B

URL HTTP/2
wsv3cdn.audioeye.com/css/aggregate.css?files=default|core&cb=b4842f8
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
29 B (29 bytes)
Hash
e8eacfe6d5c10c70b79875a1e49e70f4
406e1c098ed111fe1e5eb5aed29fbb3e5ab27163
8b3bc42630ce797308e3ad9ac29de81ae883fa51d646e0c84a1165b27646cffd

HTTP Headers

GET /css/aggregate.css?files=default|core&cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=utf-8
content-length: 29
cf-cache-status: EXPIRED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c27639240b61-OSL
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.149.51.98

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.51.98:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MJXL1PrBf5gRdzgROwz0lg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tE6BJx/2OzOl8teMDsfmczwsCLI=

www.mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/ScriptResource.axd?d=X6kQKInQS5YQqruiTh57iHeaqGhylJacXh4DuBuN6RnvjSaza2opTyZ6Y4V1oLnlg8kmrzbbyH8JXutTnG4tsxpEVou2BBknGi2YKIuxDxcvYrGTfcwhVL_S4qTzGg8v0&t=27679117

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/ScriptResource.axd?d=X6kQKInQS5YQqruiTh57iHeaqGhylJacXh4DuBuN6RnvjSaza2opTyZ6Y4V1oLnlg8kmrzbbyH8JXutTnG4tsxpEVou2BBknGi2YKIuxDxcvYrGTfcwhVL_S4qTzGg8v0&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ScriptResource.axd?d=X6kQKInQS5YQqruiTh57iHeaqGhylJacXh4DuBuN6RnvjSaza2opTyZ6Y4V1oLnlg8kmrzbbyH8JXutTnG4tsxpEVou2BBknGi2YKIuxDxcvYrGTfcwhVL_S4qTzGg8v0&t=27679117 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/ScriptResource.axd?d=X6kQKInQS5YQqruiTh57iHeaqGhylJacXh4DuBuN6RnvjSaza2opTyZ6Y4V1oLnlg8kmrzbbyH8JXutTnG4tsxpEVou2BBknGi2YKIuxDxcvYrGTfcwhVL_S4qTzGg8v0&t=27679117
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/MACU/Scripts/Lib/tippy.all.min.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/MACU/Scripts/Lib/tippy.all.min.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /MACU/Scripts/Lib/tippy.all.min.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/MACU/Scripts/Lib/tippy.all.min.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8925 bytes)
Hash
5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8917 bytes)
Hash
e44ff30b210842377ff5391013075a0e
b836ae3b6878e482c4d16cba2e6b37e9671cc7d0
065aad020a8c19f6938fab7d3b1652240cd7e7733c3f99758e6c01997409d195

HTTP Headers

GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8917
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8925 bytes)
Hash
5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/main.bundle.6748b61948611561aebb.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /MACU/Scripts/Lib/skipto.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/macu/macu.com/js/actions.js

108.179.252.44

404 Not Found

836 B

URL HTTP/1.1
www.mavtechsolar.com.br/macu/macu.com/js/actions.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
836 B (836 bytes)
Hash
e73571aebce42792b40325ac9117da29
d3fe79abd3a925079c1133a0d3c46fd8941514f7
2726faa315039af16d833fbca9694060c9cece0cbe9dd3069bdbba15d073aef2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /macu/macu.com/js/actions.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Last-Modified: Tue, 04 Oct 2022 14:01:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 836
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html

cloud.typography.com/689828/7556792/css/fonts.css

23.14.4.143

403 Forbidden

146 B

URL HTTP/1.1
cloud.typography.com/689828/7556792/css/fonts.css
IP
23.14.4.143:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
bfb5c79eb1ead7b710cc38f95ff4f30e
ddda6c54f45b871a51e7fe20eca7e3ae1a15b82c
2cf1bb309d429fa4e99f311a284b152424f8ff2c4fb5f09737f3c36965052af7

HTTP Headers

GET /689828/7556792/css/fonts.css HTTP/1.1
Host: cloud.typography.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 403 Forbidden
Server: AkamaiNetStorage
Content-Length: 146
Content-Type: text/html
X-hfj-bad-referrer: http://www.mavtechsolar.com.br/
ETag: "83b6a7ceb375fc5067a4e2dd33927406:1539106211"
Cache-Control: max-age=300
Date: Tue, 06 Dec 2022 05:53:11 GMT
Connection: keep-alive

mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js

108.179.252.44

404 Not Found

9.0 kB

URL HTTP/1.1
mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
9.0 kB (8960 bytes)
Hash
99d345998108cb7a353dbafa9f13fec0
5f795949761ca5578524cd11d343a83713b805a6
16cf1989a5a8e75ea2caf2017e0ed3263aea432c30bbbc634592584cb5c8b29f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8960
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive

mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8942 bytes)
Hash
0b14b48c23dd193e77285c4b352ee687
8a85ed36686522711fa25fe18ccb724eba175f9b
0c4ef68b99feacc24861e5d372706b83990612797b6814d6d92cfecc2b0cfe67

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/chat.bundle.9f4001edfbe0129311de.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8942
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8925 bytes)
Hash
5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:10 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9158
Expires: Tue, 06 Dec 2022 08:25:50 GMT
Date: Tue, 06 Dec 2022 05:53:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11352 bytes)
Hash
7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aYf5d6wAJlPSXVwF5uQXUb1g_65z-v6tInk7IF64bBV-w31d3MKeIQ==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:23 GMT
age: 27049
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.macu.com/media/Stylesheets/font-awesome.min.css

45.60.46.50

200 OK

18 kB

URL HTTP/2
www.macu.com/media/Stylesheets/font-awesome.min.css
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type
data
Size
18 kB (18334 bytes)
Hash
2806578a161d71864d7417b700305e4d
917ab42d642c15c6b4d430a0ce5e850e76f226d6
5e6a9a3e20c2066a71acc751bb8200ecce8555d04eb10965ef0c86ef92b9b1f3

HTTP Headers

GET /media/Stylesheets/font-awesome.min.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Tue, 06 Dec 2022 05:53:11 GMT
last-modified: Tue, 06 Dec 2022 00:17:49 GMT
etag: "c8d466bdaef05a158194dfc6885edca7"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 3529bf84e9522012233c3dd2a59fdfe8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: _ZP__ao5UViAAAbYjxfkzfZZk5xb9Htjd7ZLF3w6jvL56zsuWE4UOQ==
set-cookie: nlbi_1224669=gHn7ASp+0mtcuPCrQbRnuQAAAACojGUq1Qf6Lq7S2w3XZ75n; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=lI1sGCnRmQkiHh9rlP/QA8bYjmMAAAAAZasAvtFLvwgekT5I+6Qjeg==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32856249 2NYN RT(1670305990006 231) q(0 0 0 0) r(4 4) U18
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9354 bytes)
Hash
2e11524d75503e35c404d6c9a12ac540
5626b75f5c2523f1a0fc301839a06a4e2407f106
d5eb74d026014c0a68893bde1107a9a111b1f0af835e28bb740308017ef80b7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9354
x-amzn-requestid: fb2dad44-2f8c-4f02-bbc5-405e9586e5af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmctYGLdoAMFyDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e55-28b5680933de0ff4208240be;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6jWrhftx7tANXoWkKtCCjzm66zJDY13bpoA-7qVaZJNHEGsJS8dniw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 04:05:41 GMT
age: 6451
etag: "5626b75f5c2523f1a0fc301839a06a4e2407f106"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8997 bytes)
Hash
9fda84db003d0cfc70d73dcb6a3763dd
5c54b4ca3db1c975b3ad7f780f0ebdc867fc2ef4
f00aa6b88dd85164d8f6ee685937a3ca8039b98b442a2e6aede1c4c421b4fc4c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8997
x-amzn-requestid: 54d7ed8c-119c-4583-929c-fd053524814c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csT_8F78IAMFY6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66cc-3d9816725e7e0b1b3404bc4a;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:46:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6nXJg548cHz0REe43NepPeMmnFBAiWO_Fwy2PCKbco4XhNZnBs0Jhw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:46:52 GMT
etag: "5c54b4ca3db1c975b3ad7f780f0ebdc867fc2ef4"
content-type: image/jpeg
age: 29180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e5de346-6863-4521-9b1c-e74cf4df1d53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6422 bytes)
Hash
2409529ecac5140de749d864da85af0d
99f431b4ca446996dbacb969440e2ecfb11fd9e0
81b379b16874d6644b0cf63e02c5174e44a40ab7cb4f4727bb96ad44bfcaa72f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e5de346-6863-4521-9b1c-e74cf4df1d53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6422
x-amzn-requestid: 7c6de5da-a534-4b39-ba5a-b3613404bbaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAaTEHuIAMFuKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c4774-01fdb62864e594235b569f78;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:08:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iNIswtAzDZrcEhTO1li8CCP7VfwpfFdP8gJPCcm222TGPA2JSlMJRw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 07:25:07 GMT
age: 80885
etag: "99f431b4ca446996dbacb969440e2ecfb11fd9e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12830 bytes)
Hash
5d72fb8d20c29763234c2817b119d11b
d4924ec714f5157bcb2fddcb5f768188a3dd37dc
e9aa59142e0673ed3f58b36beaca48213c678dbe4655f9c4b64581cb0f6f22f6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12830
x-amzn-requestid: 66f5f2fa-8472-4484-bbea-20ece7e98b1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcsxGDyIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e51-146167697890d9312ce3dbac;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WMeay1i2pxnboCB3Qcwb2ray4tnyEzO89tQrHCfGdI3s9kJsMWvzBw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 04:19:52 GMT
age: 5600
etag: "d4924ec714f5157bcb2fddcb5f768188a3dd37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8918 bytes)
Hash
3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7

HTTP Headers

GET /ScriptResource.axd?d=dwY9oWetJoJoVpgL6Zq8OBkMrXVCOx44kHr1s6dHe-M6oIzfQ4IhoUM3k8bpdD36y_-P_B50kgbT05JfQzSZlB8SL4MaxXf0PjsMKi1xRkjYXP18WUhjC7j_h3IRLZ97s2nVqvyY7igvHyV3DHd3pq5TvMvQRfLD5d7efhnTbVA1&t=363be08 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/dist/module/main.bundle.6748b61948611561aebb.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8942 bytes)
Hash
088ad663ec0ed6ccba422e00a0bbdcea
27dd831de1b28a2ea1d376eb956db065af816c18
098610a24b6b6887b1cee59488cd2db6a4235245e175c1af934ad9af4d3c02bd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/main.bundle.6748b61948611561aebb.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.mavtechsolar.com.br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8942
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8918 bytes)
Hash
3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7

HTTP Headers

GET /ScriptResource.axd?d=NJmAwtEo3Ipnlaxl6CMhvmUzzucJnxexd4CPHQG23TT-F9uBEcbOrT2-aW1SOYTcPI0mtKTvUga2pH5Fbgr-s0zH_hdP2adGFWiFxxCshJjxPkfW1QsE7t_74Ni8rDPTGMoIe6lB15RlQCFDCx5WdtEc8NnSsfmstu1iueb2l9c1&t=363be08 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8925 bytes)
Hash
5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSWebParts%2fMACU%2fSmartSearchBox_files%2fPredictiveSearch.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:11 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-budget-accounting.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/macu/macu.com/cmss/script/custom/fonts/images/img/loading.gif

108.179.252.44

200 OK

39 kB

URL HTTP/1.1
www.mavtechsolar.com.br/macu/macu.com/cmss/script/custom/fonts/images/img/loading.gif
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
GIF image data, version 89a, 200 x 200\012- data
Size
39 kB (38636 bytes)
Hash
d10ef01e81faa2c2d812bdf670b4e072
77d09a57b2091fd7665dff763a5eab23e0ff907e
5e3d5246b17e19e65385092db07554d8e1c5c4a226a6d7f97824b8e1e8571e34

HTTP Headers

GET /macu/macu.com/cmss/script/custom/fonts/images/img/loading.gif HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Last-Modified: Sat, 11 Aug 2018 16:03:52 GMT
Accept-Ranges: bytes
Content-Length: 38636
Cache-Control: max-age=10368000, public
Expires: Wed, 05 Apr 2023 05:53:12 GMT
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/gif

www.mavtechsolar.com.br/media/Icons/icon-security-padlock.svg

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/media/Icons/icon-security-padlock.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-security-padlock.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-security-padlock.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/media/Icons/icon-map-location.svg

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/media/Icons/icon-map-location.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-map-location.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-map-location.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-fraud-detection.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8918 bytes)
Hash
3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7

HTTP Headers

GET /ScriptResource.axd?d=jwf4VSQi7LeShc44FJ-gAYN5oAEK1KlCWF7NnYiHz7jaNDemvs751D8oDb1jEMTdNjQ4517Kyktk5Ijj58nOtvezdSRUBwmBi4XNW9UiLaWqV_3Z-tALTBlOlRTo24qd0&t=27679117 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/media/Icons/icon-account.svg

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/media/Icons/icon-account.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-account.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-account.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8918 bytes)
Hash
3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7

HTTP Headers

GET /ScriptResource.axd?d=mcAASOSteirJeuV-3by3Uej_cJQiMAQvWjQo7ESirIqdJLGrP67q3MDOkHGuwPsri6Hp4RwrhyLIX1KMgvAHiQx3ZBdElequB8L184R8GHE1&t=27679117 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8918 bytes)
Hash
3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7

HTTP Headers

GET /ScriptResource.axd?d=eE6V8nDbUVn0gtG6hKNX_GhDMF57epJ7wA5Pd00tspPDxwGxomyy3l9aPQPUVsETlz_LKY4oWeW1AVLSGwKV3t0afMcQlyJzNagQJQhwe_0s8k4zWlygHLiw4ILflvGH0&t=27679117 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/media/Icons/icon-market-prediction.svg

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/media/Icons/icon-market-prediction.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-market-prediction.svg HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/media/Icons/icon-market-prediction.svg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8

104.18.24.76

200 OK

172 kB

URL HTTP/2
wsv3cdn.audioeye.com/build/startup.bundle.js?cb=b4842f8
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (64218), with NEL line terminators
Size
172 kB (172054 bytes)
Hash
f66711e0bdc73e72ac56fad1ea533647
5ba5bc04207b8fa60c7a2dc647cd2eb4251f446a
aafeb88155b277d957d8b1c088f395dd7b20084646f3089925fabc1e1f639ba2

HTTP Headers

GET /build/startup.bundle.js?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:11 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 22:33:35 GMT
etag: W/"9002d-5e4584ee06722-gzip"
vary: Accept-Encoding
cache-control: max-age=63072000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7752c276994e0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2

mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8918 bytes)
Hash
3c33b168bfb896e1914ec05e5340daef
952f8732089e29a83faf3db8f866af2a390a6639
a60f15ea90991351fdb0c013d9e90aeb8b5850846cf42c8d35fd3c8b814bf2f7

HTTP Headers

GET /ScriptResource.axd?d=HEFpVKbnoeQjkjHkFKu3MJwuIQMWUFaoSu6Locqfw0rnQqvM6G85BGOEi1Wz9qr_3MWm_eEGaExLgBgPt-MsPxaB00Mpdye1VDRyAALni5yHUNST5LywZP3Erhs5LZZ70&t=27679117 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:12 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8918
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.macu.com/media/Stylesheets/jquery.smartbanner.css

45.60.46.50

200 OK

10 kB

URL HTTP/2
www.macu.com/media/Stylesheets/jquery.smartbanner.css
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (9381), with CRLF, LF line terminators
Size
10 kB (10308 bytes)
Hash
f16f35f29033855802dba1bab035b1b4
46011276160bfdbd96dea4e0ca635b058835a99a
0ee637fde240d3edd3f00316e0b5500c29b2dbffd01bb1f1489bf6e15b7e67f2

HTTP Headers

GET /media/Stylesheets/jquery.smartbanner.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Tue, 06 Dec 2022 05:53:11 GMT
last-modified: Tue, 06 Dec 2022 00:17:49 GMT
etag: "d1f9aaa2dcbb9ddbbbbf13314d6c515d"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 ffa40c4091d11859ad05cf9748508c58.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: XOC9-uCaCCbOeY2gmOm87bzQ9K-rx2omMXfMnAYIxDYs8BhxDbTQ-Q==
set-cookie: nlbi_1224669=j2u+OOzvV1JebBw5QbRnuQAAAAAIzPPsD4m2UmegiRjNDZ6o; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=hjRIJTdfjm0iHh9rlP/QA8bYjmMAAAAAJzG4987uFTjz9l9IBP5l5A==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32853356 2NYN RT(1670305990006 257) q(0 0 0 0) r(5 5) U18
X-Firefox-Spdy: h2

mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8920 bytes)
Hash
8938e1458820b97ee2dbab051d7c5599
db09f901f1e736d4c5fa94b247187677dc584614
a74a96800c373a5aa60aab08a6bbe2b1f262d2e4736313ffc7180b83a7e04671

HTTP Headers

GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=30&cb=242456877 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8920
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/media/Icons/icon-budget-accounting.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8929 bytes)
Hash
c7e5bba38d32cd46737eb6ed5be964fb
dcd5c645d51682761d610ffe97f371f934ec14f2
a263c2f9232778705444e4f1eaf480bb9e03899d4b46447cba9ff47730dd4a16

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-budget-accounting.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8929
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/MACU/Scripts/Lib/skipto.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8926 bytes)
Hash
9ec89dc05253473fa4010f7af29bb2ee
3bfb77bc0451e3263bc8e246bd2a15b998e43c79
444150f75ef67fdd9691d468d92f8b1d6e420e84a4e7a8ca4155e0478dd8d8a5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /MACU/Scripts/Lib/skipto.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8926
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js

108.179.252.44

404 Not Found

9.0 kB

URL HTTP/1.1
mavtechsolar.com.br/dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
9.0 kB (8960 bytes)
Hash
99d345998108cb7a353dbafa9f13fec0
5f795949761ca5578524cd11d343a83713b805a6
16cf1989a5a8e75ea2caf2017e0ed3263aea432c30bbbc634592584cb5c8b29f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/vendors~MRQT~chat~email.bundle.c4c4f1cc9506c7e82c2b.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8960
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/media/Icons/icon-map-location.svg

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/media/Icons/icon-map-location.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8926 bytes)
Hash
a5d435de0f0c526acc82308a3a0cdfb8
e64822ce12094f641e1f2703772898c53483bfd9
9c7f65e708e531f1fca94a1e60bc389f76b6d55d6808a93eea758f101437aa49

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-map-location.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8926
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/media/Icons/icon-security-padlock.svg

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/media/Icons/icon-security-padlock.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8930 bytes)
Hash
38124982bda8f2a2b702ae957a2355bf
e5ff13f365d440433e02a758701d72f15dea6606
a2dd35de7d6fb56b6603ebd5447333d89a7912ba5cfe52e7c75f34e59b1b9340

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-security-padlock.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8930
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/media/Icons/icon-fraud-detection.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8928 bytes)
Hash
f11547486b0a6b17bd335ad3aa1d2e09
a44790c4d3a4e0059df7a83bed5474589a19b713
56a89029fc9fdc1a3bed6647100e94689d695ac94eef4cce227bf49dde6e5b77

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-fraud-detection.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8928
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/media/Icons/icon-account.svg

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/media/Icons/icon-account.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8923 bytes)
Hash
fc57a1813cfbadd16d5b7be53b26ca82
fd55a55b7bd7aeb94b2b068cadc08ce8cc34a279
9afe7e0663c72644cd0a39a72910a52cfbe4f4af99028e6a193cffc425143ebe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-account.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8923
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/media/Icons/icon-market-prediction.svg

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/media/Icons/icon-market-prediction.svg
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8930 bytes)
Hash
bf559b68cb9a54be141b1d004002c2db
1140d555c18592981b7e798ea16c380b4e4be2ff
68a460c364b42679cdaafb3e112131d8a29df304d2c00b0a740dada441ac0f6f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /media/Icons/icon-market-prediction.svg HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8930
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/chat.bundle.9f4001edfbe0129311de.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/dist/module/chat.bundle.9f4001edfbe0129311de.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8942 bytes)
Hash
0b14b48c23dd193e77285c4b352ee687
8a85ed36686522711fa25fe18ccb724eba175f9b
0c4ef68b99feacc24861e5d372706b83990612797b6814d6d92cfecc2b0cfe67

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/module/chat.bundle.9f4001edfbe0129311de.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8942
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.macu.com/media/Fonts/fontawesome-webfont.woff2?v=4.7.0

45.60.46.50

200 OK

212 B

URL HTTP/2
www.macu.com/media/Fonts/fontawesome-webfont.woff2?v=4.7.0
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
212 B (212 bytes)
Hash
185dd5ec503c683da355a50e70f25c68
cf79e1a0b6f763060a526886494db0b1b2e053b7
d02032286070b4dd9d8fbd985a7bdca8af8edf52b89ff177db3bfcb2c8a9c43d

HTTP Headers

GET /media/Fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: https://www.macu.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html
cache-control: no-cache, no-store
content-length: 212
x-iinfo: 6-32856639-0 0NNN RT(1670305990006 5564) q(0 -1 -1 0) r(0 -1) B10(4,314,0) U18
set-cookie: visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=ADkDbIKQlgoiHh9rlP/QA8vYjmMAAAAAvwqS+3UemUjMvdXtZSclLw==; path=/; Domain=.macu.com
X-Firefox-Spdy: h2

www.mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868 HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8917 bytes)
Hash
e44ff30b210842377ff5391013075a0e
b836ae3b6878e482c4d16cba2e6b37e9671cc7d0
065aad020a8c19f6938fab7d3b1652240cd7e7733c3f99758e6c01997409d195

HTTP Headers

GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZGF96QSwuHu6n7UQ6yY-NrSIKXiQ1ir80BoYrQBQ86T051YpOx5bb0sfHXBfGTyo9A2&t=637453816754849868 HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8917
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8925 bytes)
Hash
5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fWebServiceCall.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js

108.179.252.44

404 Not Found

8.9 kB

URL HTTP/1.1
mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
8.9 kB (8925 bytes)
Hash
5c2f6a3adc06848841a272911bd8fc7c
140bf8e3b9d0342929ebb232a35fb1f4ac2478de
e96255e3c665e644a8ab482f5cf896af5d7b001c4c13f955d03155fbdd72f46e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-core.js HTTP/1.1
Host: mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 05:53:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://mavtechsolar.com.br/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8925
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js

108.179.252.44

301 Moved Permanently

0 B

URL HTTP/1.1
www.mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
IP
108.179.252.44:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js HTTP/1.1
Host: www.mavtechsolar.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/macu/macu.com/m.html

HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 05:53:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://mavtechsolar.com.br/CMSPages/GetResource.ashx?scriptfile=%7e%2fCMSScripts%2fjquery%2fjquery-cmscompatibility.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.macu.com/dist/module/main.6748b61948611561aebb.css

45.60.46.50

404 Not Found

0 B

URL HTTP/2
www.macu.com/dist/module/main.6748b61948611561aebb.css
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dist/module/main.6748b61948611561aebb.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 06 Dec 2022 00:17:52 GMT
etag: "5fc40fd6abd59dfba4a6090d38554477"
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: dist/module/main.6748b61948611561aebb.css
date: Tue, 06 Dec 2022 05:53:12 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 e0a5445a9b6b20c3399e57d2c05d4520.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: nPrP5D9ceQDhNTZghgZh6BANtqKDYljdtpv_VjEe5bE8sbjj8HQI8g==
set-cookie: nlbi_1224669=ASMiUdOwz1lj9GDxQbRnuQAAAADcnDgw/b8bPpOp229eeXtF; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=DyeDDeF+fx8iHh9rlP/QA8jYjmMAAAAA44dvQEXv/Uswv6HNjCFiZA==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32854433 2NYN RT(1670305990006 1637) q(0 0 0 1) r(5 5) U11
X-Firefox-Spdy: h2

ws.audioeye.com/ae.js

104.18.25.76

200 OK

0 B

URL HTTP/2
ws.audioeye.com/ae.js
IP
104.18.25.76:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ae.js HTTP/1.1
Host: ws.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=UTF-8
etag: W/"c5f5d23dbd841fb0868078e4bfbbd713"
cache-control: max-age=3600
cache-tags: 
surrogate-keys: 
cf-cache-status: HIT
age: 1748
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c2776d0bb524-OSL
content-encoding: br
X-Firefox-Spdy: h2

oc-cdn-ocprod.azureedge.net/livechatwidget/scripts/LiveChatBootstrapper.js

13.107.213.53

200 OK

0 B

URL HTTP/2
oc-cdn-ocprod.azureedge.net/livechatwidget/scripts/LiveChatBootstrapper.js
IP
13.107.213.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /livechatwidget/scripts/LiveChatBootstrapper.js HTTP/1.1
Host: oc-cdn-ocprod.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-encoding: br
content-md5: Y6JNtsb4g/40LaCwZ4bOGw==
last-modified: Sat, 12 Nov 2022 03:06:51 GMT
etag: 0x8DAC45AF2704E9A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 72205686-701e-001d-5da1-089de2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0EzSOYwAAAAD3dAZBsmQHQ7PpIYvNLgZMQU1TMDRFREdFMTkyMQA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
x-azure-ref: 0xtiOYwAAAADzLESFJ8JNSY2ioiuAHmfbU1ZHMjBFREdFMDUxMAA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
date: Tue, 06 Dec 2022 05:53:10 GMT
X-Firefox-Spdy: h2

www.macu.com/media/Fonts/fontawesome-webfont.woff?v=4.7.0

45.60.46.50

404 Not Found

0 B

URL HTTP/2
www.macu.com/media/Fonts/fontawesome-webfont.woff?v=4.7.0
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/Fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: https://www.macu.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 06 Dec 2022 00:17:52 GMT
etag: "5fc40fd6abd59dfba4a6090d38554477"
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: media/Fonts/fontawesome-webfont.woff
date: Tue, 06 Dec 2022 05:53:14 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 9c3701a40f5e4766165113d719972734.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: 5P-_dP-0PzmgSAvF_7ziUewqZlA-BskSM59T75W5QW96imGh0QUGRg==
set-cookie: nlbi_1224669=i6xWNqKmbSB0iXaEQbRnuQAAAACoTBJrThOJ0ePn1VdA725H; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=Er6/AXPBDjkiHh9rlP/QA8vYjmMAAAAAWVKx1Aa1jflpr1dFGVRG6Q==; path=/; Domain=.macu.com
x-cdn: Imperva
x-iinfo: 6-32856639-32853356 2NNN RT(1670305990006 5588) q(0 0 0 0) r(3 3) U11
X-Firefox-Spdy: h2

www.macu.com/dist/module/main.6748b61948611561aebb.css

45.60.46.50

404 Not Found

0 B

URL HTTP/2
www.macu.com/dist/module/main.6748b61948611561aebb.css
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dist/module/main.6748b61948611561aebb.css HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 06 Dec 2022 00:17:52 GMT
etag: "5fc40fd6abd59dfba4a6090d38554477"
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: dist/module/main.6748b61948611561aebb.css
date: Tue, 06 Dec 2022 05:53:10 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 66be79bde9fd204b1a11f560cee8fff4.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: SBQHMBG2wWYN6_RIaZq-BmUa3GKEJ6W7H5MyrREwa1Sy4jEv-FyUhw==
set-cookie: nlbi_1224669=52d5Xgy3qHLJzx2gQbRnuQAAAACypKYqiOBs8PDdO5jeO1EM; path=/; Domain=.macu.com
visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
incap_ses_275_1224669=jLF8HiN1FFwiHh9rlP/QA8bYjmMAAAAAsWSckFjDosyy3hx1bx8JAg==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32854433 2NYN RT(1670305990006 74) q(0 0 0 1) r(3 3) U11
X-Firefox-Spdy: h2

wsv3cdn.audioeye.com/bootstrap.js

104.18.24.76

200 OK

0 B

URL HTTP/2
wsv3cdn.audioeye.com/bootstrap.js
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap.js HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript; charset=UTF-8
etag: W/"2ef7b27df52b83e643315afca567e285"
cache-control: max-age=120
cache-tags: 
surrogate-keys: 
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7752c27609030b61-OSL
content-encoding: br
X-Firefox-Spdy: h2

wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8

104.18.24.76

200 OK

0 B

URL HTTP/2
wsv3cdn.audioeye.com/build/jquery.bundle.js?cb=b4842f8
IP
104.18.24.76:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /build/jquery.bundle.js?cb=b4842f8 HTTP/1.1
Host: wsv3cdn.audioeye.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.mavtechsolar.com.br/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 06 Dec 2022 05:53:10 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 22:33:14 GMT
etag: W/"17e63-5e4584da36f1c-gzip"
vary: Accept-Encoding
cache-control: max-age=63072000, public
access-control-allow-origin: *
cf-cache-status: HIT
server: cloudflare
cf-ray: 7752c27629190b61-OSL
content-encoding: br
X-Firefox-Spdy: h2

oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/styles/LiveChatWidgetFrame.css

13.107.213.53

200 OK

0 B

URL HTTP/2
oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/styles/LiveChatWidgetFrame.css
IP
13.107.213.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /livechatwidget/WebChatControl/styles/LiveChatWidgetFrame.css HTTP/1.1
Host: oc-cdn-ocprod.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-encoding: br
content-md5: vPalaAAocbbnNoUsQ6PQkw==
last-modified: Sat, 12 Nov 2022 03:06:46 GMT
etag: 0x8DAC45AEF13BD68
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 74a4dfbf-f01e-0061-0f51-05b31d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0TsiMYwAAAAB2t6kvQWhvRIxuDf5KHk7TQU1TMDRFREdFMTkyMQA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
x-azure-ref: 0xtiOYwAAAAAvX/b32bf5R47rNzh5cebMU1ZHMjBFREdFMDUxMAA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
date: Tue, 06 Dec 2022 05:53:10 GMT
X-Firefox-Spdy: h2

oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/scripts/LiveChatBootstrapper.js

13.107.213.53

200 OK

0 B

URL HTTP/2
oc-cdn-ocprod.azureedge.net/livechatwidget/WebChatControl/scripts/LiveChatBootstrapper.js
IP
13.107.213.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /livechatwidget/WebChatControl/scripts/LiveChatBootstrapper.js HTTP/1.1
Host: oc-cdn-ocprod.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.mavtechsolar.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-encoding: br
content-md5: Y6JNtsb4g/40LaCwZ4bOGw==
last-modified: Sat, 12 Nov 2022 03:06:42 GMT
etag: 0x8DAC45AECC1BED8
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 37233516-c01e-0037-7b99-0742f2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0H5uMYwAAAABj3hHpe13HRrxwZlBCBrSvQU1TMDRFREdFMTkxNQA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
x-azure-ref: 0xtiOYwAAAAAKiNFFsYRTR4fvVV+u96c4U1ZHMjBFREdFMDUxMAA0YjJlN2NmYi1mMGJiLTQwOGItYmVlMy0wMDRmNTQzMjdhYTQ=
date: Tue, 06 Dec 2022 05:53:10 GMT
X-Firefox-Spdy: h2

www.macu.com/media/Fonts/fontawesome-webfont.ttf?v=4.7.0

45.60.46.50

404 Not Found

0 B

URL HTTP/2
www.macu.com/media/Fonts/fontawesome-webfont.ttf?v=4.7.0
IP
45.60.46.50:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/Fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: www.macu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.mavtechsolar.com.br
Connection: keep-alive
Referer: https://www.macu.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
content-type: text/html
last-modified: Tue, 06 Dec 2022 00:17:52 GMT
etag: "5fc40fd6abd59dfba4a6090d38554477"
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-key: media/Fonts/fontawesome-webfont.ttf
date: Tue, 06 Dec 2022 05:53:15 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 f46b6835a58763129c9d1db5dc3ef62e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: _cihFRcdmxCWr1ZT7DbM1V4ELdJHsPTvTkAgaSi3_KdZ_gBqM1IFCw==
set-cookie: visid_incap_1224669=dB8sNIGLSUanwfh035OzlcbYjmMAAAAAQUIPAAAAAAAjgM3SufMUO+7TD8ozpm3Q; expires=Tue, 05 Dec 2023 22:15:53 GMT; HttpOnly; path=/; Domain=.macu.com
nlbi_1224669=JLebItKt0DW7Yj9TQbRnuQAAAABWh7vXTNwhHYtbWA0JAgpD; path=/; Domain=.macu.com
incap_ses_275_1224669=Kf76flXCSH8iHh9rlP/QA8zYjmMAAAAAMHAzwt69USpRnvGqrK5xyA==; path=/; Domain=.macu.com
x-cdn: Imperva
content-encoding: gzip
x-iinfo: 6-32856639-32856751 NNYN CT(1 11 0) RT(1670305990006 5876) q(0 0 0 0) r(0 3) U11
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations