Overview

URL hypedtraveler.com/
IP192.0.78.246
ASNAS2635 Automattic, Inc
Location United States
Report completed2019-01-17 11:26:14 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-01-17 2 hypedtours.com/ Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/css/wpte-gallery- (...) Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/css/font-awesome. (...) Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/css/animate.css?v (...) Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/css/owl.carousel. (...) Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/css/datepicker-st (...) Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/kirki/assets/css/kirki-styles.css?ver=3.0.35.3 Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/js/custom.js?ver=1.9.2 Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/css/magnific-popup.css?ver= (...) Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/js/wp-travel-engi (...) Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/js/wp-travel-engi (...) Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/style.css?ver=3.0.8.1 Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/wp-travel-engine/public/js/owl.carousel.j (...) Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/js/thrive.js?ver=3.0.8.1 Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/js/skip-link-focus-fix.js?v (...) Malware
2019-01-17 2 hypedtours.com/wp-content/plugins/kirki/modules/webfont-loader/vendor-typek (...) Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/js/bootstrap.min.js?ver=3.0.8.1 Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/js/navigation.js?ver=3.0.8.1 Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/fonts/MaterialIcons-Regular.woff Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/logo.svg Malware
2019-01-17 2 hypedtours.com/wp-content/themes/thrive-nouveau/logo.svg Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 192.0.78.246


Last 10 reports on ASN: AS2635 Automattic, Inc

Date UQ / IDS / BL URL IP
2019-02-20 12:30:10 +0100
0 - 0 - 2 kristiansanddykkerklubb.no/ 192.0.78.25
2019-02-19 19:34:25 +0100
0 - 0 - 0 rotortini.wordpress.com 192.0.78.13
2019-02-19 19:31:58 +0100
0 - 0 - 0 sobchak.wordpress.com 192.0.78.12
2019-02-19 17:20:39 +0100
0 - 0 - 24 protocube.it/aetevent/assets/files/chisom_loki.exe 192.0.78.145
2019-02-19 14:46:49 +0100
0 - 0 - 0 https://emersonclimateconversations.com/ 192.0.78.173
2019-02-19 13:26:39 +0100
0 - 0 - 0 cldup.com 192.0.77.17
2019-02-19 13:24:41 +0100
0 - 0 - 0 https://cldup.com/hxmGABAI7Y.png 192.0.77.17
2019-02-18 05:32:55 +0100
0 - 0 - 2 zombiemine.com/ 192.0.78.159
2019-02-17 20:24:52 +0100
0 - 0 - 3 staywayup.com/include/index.php 192.0.78.25
2019-02-17 19:57:13 +0100
0 - 1 - 0 thelowensternteam.com/wp-content/plugins/cust (...) 192.0.78.13

No other reports on domain: hypedtraveler.com



JavaScript

Executed Scripts (32)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (68)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: hypedtraveler.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         192.0.78.147
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:37 GMT
Content-Length: 178
Connection: keep-alive
Location: https://hypedtraveler.com/
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "14505A48E2B565CC6FBBA1E0802FAEDC9C762F2937F1834CCBE3551ED3CDFCCB"
Last-Modified: Tue, 15 Jan 2019 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Thu, 17 Jan 2019 22:25:38 GMT
Date: Thu, 17 Jan 2019 10:25:38 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    63bbeafdc0ab4f5dc5d5385884345a5f
Sha1:   0f11f6d882007b41a8222060c3aa21c50293f528
Sha256: 14505a48e2b565cc6fbba1e0802faedc9c762f2937f1834ccbe3551ed3cdfccb
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.113
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Mon, 14 Jan 2019 10:44:50 GMT
Etag: "b458400e4281cf747dc2a59c5f2d60db32793f58"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=34432
Expires: Thu, 17 Jan 2019 19:59:30 GMT
Date: Thu, 17 Jan 2019 10:25:38 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    bf1a59a68607376797d572ac9175714d
Sha1:   b458400e4281cf747dc2a59c5f2d60db32793f58
Sha256: bc590833fa94470cdd1c5375b17b89ff8e19197c3b8f0b553392f887145e7710
                                        
                                            GET / HTTP/1.1 
Host: hypedtraveler.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         192.0.78.147
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:38 GMT
Content-Length: 178
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Location: https://hypedtours.com/
P-LB: lb1.q3.sat
X-Content-Type-Options: nosniff
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "6054CC9104FA32B655B7182D7336D7E01F5CB7383B22E082F5F894A0C68D5F07"
Last-Modified: Mon, 14 Jan 2019 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43145
Expires: Thu, 17 Jan 2019 22:24:43 GMT
Date: Thu, 17 Jan 2019 10:25:38 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    14471a73bc7f4ac381b309d6b4c9e1b6
Sha1:   663b545ae09177134dcd5c6bd4eacbefcf123116
Sha256: 6054cc9104fa32b655b7182d7336d7e01f5cb7383b22e082f5f894a0c68d5f07
                                        
                                            GET / HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding, Cookie
Set-Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <https://hypedtours.com/wp-json/>; rel="https://api.w.org/", <https://wp.me/Pa6B0u-4>; rel=shortlink
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8325
Md5:    3c13fd5a25b36cd8e8222b3f52d42aa1
Sha1:   e0065bdb46c8360661754c3566b9df7aef8fb571
Sha256: 567233bb2346e6abad0be1a0206da9675c7016bd401f9c9c853c362896cff366

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         50.63.243.230
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 17 Jan 2019 10:25:41 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=92561, public, no-transform, must-revalidate
Last-Modified: Thu, 17 Jan 2019 01:29:34 GMT
Expires: Fri, 18 Jan 2019 13:29:34 GMT
Etag: "9601ee606e6c237fb7f783de4093b58f6b9644b5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1777
Connection: close


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    3d06c8b9456872c3477b301a7c32b1c5
Sha1:   9601ee606e6c237fb7f783de4093b58f6b9644b5
Sha256: d48dd6671a543975c71706ab3ec25685c8aabd94c376e443b0c7e7dc873ab0d1
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.0.3 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Wed, 10 Oct 2018 04:11:25 GMT
Etag: W/"5bbd7bed-2efa"
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4446
Md5:    7f840f9e17156b89456f21e288cf64c6
Sha1:   3c95a4cbc661f9d146ef67d489cdb63b95412090
Sha256: 14d803e32a9936afcf41b19fa1154d12c2ca222d7ab9538b61568bb2fa54a3a4
                                        
                                            GET /c/5.0.3/wp-includes/css/dist/block-library/style.min.css HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 04 Jan 2019 20:19:52 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:41 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4370
Md5:    c3cf869fdf57a5517263a279051ce64a
Sha1:   40317f4ad822e2df9aae157f91d9ccb878bca8bd
Sha256: 3376cdda0ced1c55adf3a34b7c2b99418c8769024040e3ff63e602cea3c1968e
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 17 Jan 2019 10:25:41 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    e05aecae1bf8c074d29c2ec4121197d0
Sha1:   b079daea0a457a6fb5a7fb426313479b21bdb3c8
Sha256: 748e0732b3322b8b9341ba7020db636a58b65d745e58b5587f6db938a0c2f4f2
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 17 Jan 2019 10:25:41 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /p/jetpack/6.9/_inc/build/postmessage.min.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 04 Jan 2019 10:33:31 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:41 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3858
Md5:    589bd921f2559a391903d62b432dfc17
Sha1:   25fa6c9a0e7bd8fe6c6dc85fbd38cbecea8f8c7f
Sha256: 0a3fa8f240e8b6286d2cf628aea8ff501a50b31b50ce079fc8df21bed2ac72cd
                                        
                                            GET /p/jetpack/6.9/modules/shortcodes/css/jetpack-email-subscribe.css HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 08 Jan 2019 13:22:10 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:41 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   305
Md5:    65c95b1e1c61631ed17801d691032349
Sha1:   6e23c08e1eccdeab784b7054e5b5417e06e46099
Sha256: 6ddbc30a095c1899e5ae5e3968b5f828888ec1bb6d20e3937c2041945afce21a
                                        
                                            GET /p/jetpack/6.9/_inc/build/jquery.jetpack-resize.min.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 04 Jan 2019 10:33:31 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:41 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1095
Md5:    ba5599a6cd06fc10fc82c58ec7de999e
Sha1:   8b3a257f9091506c678a92d096052f6a8a71deba
Sha256: f85fc3f7b12211a98f50b652af1a4e9562f57803cf87591a1bf0f6830ed3fe2d
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/css/wpte-gallery-public.css?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-682"
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   471
Md5:    68f7daa5c1f65b2fb09b330bb11dbd2d
Sha1:   501ae3986759919ca2228ff4fbb178228436eab7
Sha256: b4165064237dac1e77ff276ad5e4e95931e60afe71657aedf844db92c5af9a47

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /c/5.0.3/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:41 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4016
Md5:    c3b3a5268f141e34b6cd4cfb63a64bc3
Sha1:   adcb27303f4527ec3bd64feaff9c2b824e544e13
Sha256: ef681842dd14bdf46f5b38f181e450bc6af20193500257b4eee065f5dec0c7ab
                                        
                                            GET /c/5.0.3/wp-includes/js/jquery/jquery.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 23 May 2016 09:00:29 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:41 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   34003
Md5:    083d41219f58a781aed9e606874c9ee9
Sha1:   ee4d9e6b2a6b1cdf9d16258981194d3e163485b1
Sha256: 67416b22702e776df8d4e9205c357ee7e0f618c7ca4ab6075f9381b66beca2f2
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/css/wp-travel-engine-public.css?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-7f72"
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5529
Md5:    54eb193f7b37a22c200da0eadbfc06e1
Sha1:   1a038553e6914ad7a7a48b5a3a2aa5ac2065114d
Sha256: 5dd99b18c95ad12be72d16c0041bab08378efc209c4edf415793a8889fda7c6b
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/css/font-awesome.min.css?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-790f"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7048
Md5:    3ac8e7836a6512ddf0d9964f3bee253f
Sha1:   ae44479e4e222546a99de5c2334256da9936bf50
Sha256: 69a31fa7a8ff277b1e84da9a6d03bcfce48dd415ba3fb8f81e88d56d33a33a7d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /p/jetpack/6.9/_inc/social-logos/social-logos.min.css HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Jun 2018 01:03:44 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:41 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19013
Md5:    343f8d96d9623fcd5b3b5d2b4569ce90
Sha1:   b81ba32645a2639ffd9f05e47a6b0bee80c0a394
Sha256: 8c67ce019407b4d3137b898a29e20f9b947f81aa5274e2a5e01ee1ab0e19e59b
                                        
                                            GET /css?family=Roboto%3A300%2C400%2C500%2C700%2C400italic%2C500italic%2C700italic%2C300italic%7CNoto+Serif%3A400%2C400i%2C700&ver=3.0.8.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 17 Jan 2019 10:25:41 GMT
Date: Thu, 17 Jan 2019 10:25:41 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   444
Md5:    bb422abadaea90a6aaca7af20dece838
Sha1:   21568dfdac692b6aed29a3ef581bc4869a58c904
Sha256: 18cbe647122b2e0d0ff0133b9becce3bc9ef1b7c4f6a0da3a832d00dbcaab7b9
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/css/animate.css?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-e9a8"
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4701
Md5:    861748033177b23e8b49aae20f8a852c
Sha1:   00732f39a833ef5189aac423330bf7dbc5d70625
Sha256: 7932cf44ffa7cc9caaff8c1eddff1132646ccbdc7532a36e309cf7484018f6b7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /p/jetpack/6.9/css/jetpack.css HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 04 Jan 2019 10:33:31 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:41 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12787
Md5:    686f71e3d5b1a9cdc6f7d78ba8c38b75
Sha1:   144398e34cedeed63fc4084525e509981c304131
Sha256: b1102170b9f6cceb719f09d733dac1472d3453d2db305cad7a5d0724fb531df2
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/css/owl.carousel.css?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-1066"
P-LB: lb1.q3.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1184
Md5:    55a246fde9d2eb4bac68053f10d9d1ce
Sha1:   347527543a3ee76105f884b62810edacaddc5dc8
Sha256: 5707bb288078a745a87e7723bad4234476f3c71779840c2c4ab846a5c6de4c49

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/css/datepicker-style.css?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-879e"
P-LB: lb1.q2.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7893
Md5:    4af8a92e6b569583028d0a06f7f15435
Sha1:   1eca432be85c1bc5907060c19b20d999872b90a7
Sha256: 9a79025d9688074947fd42c79cff753ed28223c86669e2ee06d27f466d4a976d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/kirki/assets/css/kirki-styles.css?ver=3.0.35.3 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Content-Length: 0
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Last-Modified: Wed, 26 Dec 2018 22:50:21 GMT
Etag: "5c2405ad-0"
Accept-Ranges: bytes
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/js/custom.js?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-31e"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   380
Md5:    617bd636ebf68f62910ff9ec453fff02
Sha1:   6938e2512f491fab90f267289653d5604bae9d54
Sha256: 38d3ed548d30055ad143736984e203a6356bb026c7b469b43b547e1a95ad5a24

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/thrive-nouveau/css/magnific-popup.css?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-1b26"
P-LB: lb1.q3.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1865
Md5:    3af5fe6264a94ade3ee43583197ce715
Sha1:   e30af7e3ea9ee85e1d771ea0450fb8afc23774f5
Sha256: f7f2b2cb970f233723ccfefa3ccc4389dfcd33232db24d5f47a8f28498f55ee9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/js/wp-travel-engine-public.js?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-3a63"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3337
Md5:    d76dc186aff25389bb2a78edb56e7a04
Sha1:   acc1a7c0d8f022557501b3e8763ffb373206c247
Sha256: 72786edaa72d2d4011da14993ea6301d8bb8c852827b3f6cb1a0934d00585eda

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/thrive-nouveau/css/bootstrap.css?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-1d970"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19999
Md5:    ca54799e264a3db50037928affff9baa
Sha1:   a900e204c83ddd81ba8480d5271e096b6956cec6
Sha256: 81895856df28c5858f177ef3acd6138ed40d0a6549fd61d238bcebc1174be8c0
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/js/wpte-gallery-public.js?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Content-Length: 456
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: "5c26538b-1c8"
Accept-Ranges: bytes
P-LB: lb1.q2.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   456
Md5:    ff7c73bff6c6e6b84ce470e70a555da4
Sha1:   a838eea5c11063e64920af10af84500ab86fa012
Sha256: f2755069b539062f40158fb5be93bf08ad17e8d73470fd951069196accf1fff5
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/js/wp-travel-engine-travelers-number.js?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-309"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   398
Md5:    9a8f70815a1e1ce9bc9e350fdf87d2b8
Sha1:   5557e26592b3464ae183aa99129e022df92de956
Sha256: eacd5bb1e97a728d7e31b5c3996c36935cd77de550182668235cc3c3cfc3434b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/thrive-nouveau/js/magnific-popup.js?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-a302"
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12647
Md5:    44ffbcdda12b3fc2f8b050d90dafe19d
Sha1:   6259d46a2c12efe3a89ebae1f454137a441f8eb6
Sha256: caa78d78c6b564f2e27351ea2da0a3ac50622144f4e5d8f363ffd4764d811a1f
                                        
                                            GET /wp-content/themes/thrive-nouveau/style.css?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-4a09b"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   45992
Md5:    976f02e6d9b0aeca56d207de12466b78
Sha1:   85a8d06bab29ac7c057963dfc17f60041dcdf14a
Sha256: eff75067c39828bf8fa893fb662e9ef449b002f722c5baef5d1f86c1daa161be

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/thrive-nouveau/favicon.ico HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-853"
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2171
Md5:    f9cdeb18e649c5cf4da1a1e4215e6da2
Sha1:   2fbba7804c98001fb32a5d298f88a249f52d8ba1
Sha256: 2630784e0487008ab2895298413a0bfc5e8338db2ada16183b3f9c85166b7fba
                                        
                                            GET /wp-content/plugins/wp-travel-engine/public/js/owl.carousel.js?ver=1.9.2 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Fri, 28 Dec 2018 16:47:07 GMT
Etag: W/"5c26538b-15a43"
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   19208
Md5:    42290791b47a8eb9b4f7dcbda6e21694
Sha1:   8861336b872f97a21d8e3056a25588569b5ee96c
Sha256: 7ebf9162eb7d1e8ddd0d49d19594a472b3db41ffdac76d4245f3e3c45f1145ea

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /p/jetpack/6.9/_inc/build/photon/photon.min.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Dec 2017 00:06:24 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:51 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   356
Md5:    19c91e0719a56fe6d4256cc271904747
Sha1:   689836dd9728676d1afbf6e86344df20bc81d6b4
Sha256: 4f8f616ede05ad0ac39b249b142e20086bbdc38cb455670f074f4692b24c590f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Mon, 14 Jan 2019 09:34:57 GMT
Etag: F10A78EBDFD33C37A0B963FCA36462C132B76CFD
X-OCSP-Responder-ID: mcdpcaocsp9
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=341890
Expires: Mon, 21 Jan 2019 09:24:01 GMT
Date: Thu, 17 Jan 2019 10:25:51 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    066a0bec6e9bf90e9ffaf28fb975c1db
Sha1:   f10a78ebdfd33c37a0b963fca36462c132b76cfd
Sha256: d7c475df00408f8cc33adc5b7663c419e23d7afa9fc67e12306e26ab03bd1a55
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 13 Jan 2019 00:16:54 GMT
Etag: 995DBD550DD7989B84FB553F8F47F23A0143A872
X-OCSP-Responder-ID: mcdpcaocsp10
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=222033
Expires: Sun, 20 Jan 2019 00:06:24 GMT
Date: Thu, 17 Jan 2019 10:25:51 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    28ced7710b00fc1b3751229a2779a45b
Sha1:   995dbd550dd7989b84fb553f8f47f23a0143a872
Sha256: 3ad11770ed840859b8cd77d3b6b03baca93f7d629e120a942e02ea634ad1c676
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 13 Jan 2019 00:16:54 GMT
Etag: 8AFF32FADCC385E868FE51B56D421911F22CD79D
X-OCSP-Responder-ID: mcdpcaocsp4
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=222004
Expires: Sun, 20 Jan 2019 00:05:55 GMT
Date: Thu, 17 Jan 2019 10:25:51 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a3adb39b1a30bd8a77498ec7dea84dc8
Sha1:   8aff32fadcc385e868fe51b56d421911f22cd79d
Sha256: a47043aee18309cbf74d8aeb7757d44645d5524034f60315030e2d8f5ec00f63
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 17 Jan 2019 10:25:51 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1328
Md5:    fa05e37030c0ff9dd3baee01366dd499
Sha1:   93956e91083dc7c060b55f42068bf5cdbe03e24f
Sha256: 2d1ef898092c8aeb70a5b1301017a2fe000ce909d914a9013f93aaec56730a55
                                        
                                            GET /e-201903.js HTTP/1.1 
Host: stats.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5bffef4d-331d"
Content-Encoding: gzip
Expires: Mon, 13 Jan 2020 11:45:24 GMT
Cache-Control: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2908
Md5:    9cd11ca3082c9a11351ded2677a3f982
Sha1:   c5c5b433d9f9e7d76caa8357490ce0ef8cd33bfa
Sha256: 1097506227fa0f88e7d17f9c9679b8c27be73f613748fac996d6db4102e54d1d
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700%2C400italic%2C500italic%2C700italic%2C300italic%7CNoto+Serif%3A400%2C400i%2C700&ver=3.0.8.1
Origin: https://hypedtours.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19916
Date: Wed, 19 Dec 2018 21:00:26 GMT
Expires: Thu, 19 Dec 2019 21:00:26 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:44 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2467526
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   19916
Md5:    a1471d1d6431c893582a5f6a250db3f9
Sha1:   ff5673d89e6c2893d24c87bc9786c632290e150e
Sha256: 3ab30e780c8b0bcc4998b838a5b30c3bfe28edead312906dc3c12271fae0699a
                                        
                                            GET /wp-content/themes/thrive-nouveau/js/thrive.js?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-3d16"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4532
Md5:    7b7059833172cf992524336963bf679e
Sha1:   95179953ea63a63669ff078fd9c55cd0ecf00798
Sha256: 30c2b9e49881b9730568cf50df4b263abf8dbd5812f459f0c82328b27d4990e8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /avatar/0dd0d650bf77b1adc56a556118b6da0c?s=32&d=identicon&r=g HTTP/1.1 
Host: secure.gravatar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.73.2
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Content-Length: 938
Connection: keep-alive
Last-Modified: Wed, 11 Jan 1984 08:00:00 GMT
Link: <https://www.gravatar.com/avatar/0dd0d650bf77b1adc56a556118b6da0c?s=32&d=identicon&r=g>; rel="canonical"
Access-Control-Allow-Origin: *
X-nc: MISS arn 3
Accept-Ranges: bytes
Expires: Thu, 17 Jan 2019 10:30:52 GMT
Cache-Control: max-age=300
Source-Age: 0


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit/color RGBA, non-interlaced
Size:   938
Md5:    da173c5c3012156004eb92aed5e97def
Sha1:   c69462983dfbe554fb6d607a9197b1d7268d8945
Sha256: 7884f22fe807e2abc5a72dbbccf60c2a9fd35bff81a2e8fbb34582d265280ba1
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700%2C400italic%2C500italic%2C700italic%2C300italic%7CNoto+Serif%3A400%2C400i%2C700&ver=3.0.8.1
Origin: https://hypedtours.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19888
Date: Tue, 15 Jan 2019 00:41:11 GMT
Expires: Wed, 15 Jan 2020 00:41:11 GMT
Last-Modified: Mon, 16 Oct 2017 17:33:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 207881
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   19888
Md5:    cf6613d1adf490972c557a8e318e0868
Sha1:   b2198c3fc1c72646d372f63e135e70ba2c9fed8e
Sha256: 468e579fe1210fa55525b1c470ed2d1958404512a2dd4fb972cac5ce0ff00b1f
                                        
                                            GET /wp-content/themes/thrive-nouveau/js/skip-link-focus-fix.js?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-2ef"
P-LB: lb1.q3.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   391
Md5:    36c72cf86394fdcebc08559031597377
Sha1:   5c3747c7989d8e76f23df2b13503ebc56dec3198
Sha256: 63ad489f756bc2f38d77c260cc834a5c678649def345634f1d2e1c74d545173c

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/kirki/modules/webfont-loader/vendor-typekit/webfontloader.js?ver=3.0.28 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Wed, 26 Dec 2018 22:50:21 GMT
Etag: W/"5c2405ad-30d9"
P-LB: lb1.q2.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5090
Md5:    e1f38ddacbadbd426f0d6d1891f9b399
Sha1:   f02bb995cb2f630518fd7170a172d506c75536eb
Sha256: f492cfea5cb0038e41c266deba72ec0087015fa718e7529580fbc8ba95ddc301

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700%2C400italic%2C500italic%2C700italic%2C300italic%7CNoto+Serif%3A400%2C400i%2C700&ver=3.0.8.1
Origin: https://hypedtours.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 19824
Date: Tue, 15 Jan 2019 00:41:49 GMT
Expires: Wed, 15 Jan 2020 00:41:49 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:56 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 207843
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   19824
Md5:    bafb105baeb22d965c70fe52ba6b49d9
Sha1:   934014cc9bbe5883542be756b3146c05844b254f
Sha256: 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
                                        
                                            GET /js/gprofiles.js?ver=2019Janaa HTTP/1.1 
Host: secure.gravatar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.73.2
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 23 Aug 2018 15:01:14 GMT
Etag: W/"5b7ecc3a-50bc"
Content-Encoding: gzip
Expires: Thu, 24 Jan 2019 10:25:52 GMT
Cache-Control: max-age=604800


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6796
Md5:    188bd1f47794194d7d10beb193ebba87
Sha1:   330885f0d2ef8c026ee124500453bbafaf1957d9
Sha256: 6810c50037ff4eddf76da752b311153202ba5e2d1316e8749913967286a4708b
                                        
                                            GET /p/jetpack/6.9/modules/wpgroho.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 19 Nov 2015 19:47:15 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:51 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   489
Md5:    e7310e3fcdaade0614b48b2154b4599b
Sha1:   6286153658b9dc345836e4b06f5f1993370acea6
Sha256: f0ecedd6a50945a0295fc3c92db1770a58ec16df95cc120eac718e684f200679
                                        
                                            GET /c/5.0.3/wp-includes/js/jquery/ui/datepicker.min.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 10 Oct 2018 04:11:25 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:51 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   11092
Md5:    9eb178d7a8ff993a82e3706c66239fa7
Sha1:   0b055212b3e2827b517a171a624388c703f94955
Sha256: d7fd5e2af0e98e646b730d4172ffb661100150253438b8c6d7e534ac6afbfbfb
                                        
                                            GET /c/5.0.3/wp-includes/js/wp-embed.min.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 11 Oct 2018 04:00:23 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:52 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   753
Md5:    8151177dccb399a75164172bb63b0491
Sha1:   0a2a5bf7eaa29bb8690a657bbc982360802ab41b
Sha256: 71d58666e959b9ea4a90f83fa5926fced7f92c084a098ee23ec450054b7292a8
                                        
                                            GET /c/5.0.3/wp-includes/js/jquery/ui/core.min.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 10 Oct 2018 04:11:25 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:51 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1823
Md5:    fa28c3df40794663ff3269237d0b22d8
Sha1:   57c3a7eaaba9910e8efbacca281176d7462f8a24
Sha256: f5e847cbbd9fa0a517eeab8d9dbac344b2d225d3e21f2a036fde4ea43cb44019
                                        
                                            GET /wp-content/themes/thrive-nouveau/js/bootstrap.min.js?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-90b5"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9937
Md5:    6f119bc3e2344d2b42aa467ac19863ac
Sha1:   ef80e24a2aa1f29725c30abe4626da3ba349aac8
Sha256: 1882eae86cb03d20e57e26b869459dee2ad44a05bb8caab1ecdb8bf7a9537ca4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /p/jetpack/6.9/_inc/build/likes/queuehandler.min.js HTTP/1.1 
Host: c0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.37
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 04 Jan 2019 10:33:31 GMT
Content-Encoding: gzip
Expires: Fri, 17 Jan 2020 10:25:51 GMT
Cache-Control: max-age=31536000
Strict-Transport-Security: max-age=15552000
X-nc: HIT arn 37


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2238
Md5:    15d3cbaa957052078079a84fc2c0c516
Sha1:   b1731e9c5e1ea0151e9843f6142588c889e93d66
Sha256: 49ebad1d772e7718d7689219e6730a56401f5cdeb12bb17aca9c88072afc1374
                                        
                                            GET /wp-content/js/devicepx-jetpack.js?ver=201903 HTTP/1.1 
Host: s0.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.77.32
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5c066eb1-52b6"
Content-Encoding: gzip
Expires: Mon, 13 Jan 2020 01:46:51 GMT
Cache-Control: max-age=31536000
X-ac: 4.arn _dca
X-nc: HIT arn 32


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3163
Md5:    844b0e2ae8eba4159dd5edd8efbde50c
Sha1:   757861da25bea58b1bc03203f65ae93673cfc065
Sha256: ef84d445c23339e2c3742857d7e020c89d639f1ddc434b6f6a585ac9907bbb92
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C700%2C400italic%2C500italic%2C700italic%2C300italic%7CNoto+Serif%3A400%2C400i%2C700&ver=3.0.8.1
Origin: https://hypedtours.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20012
Date: Thu, 20 Dec 2018 18:27:13 GMT
Expires: Fri, 20 Dec 2019 18:27:13 GMT
Last-Modified: Mon, 16 Oct 2017 17:33:01 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2390319
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   20012
Md5:    de8b7431b74642e830af4d4f4b513ec9
Sha1:   f549f1fe8a0b86ef3fbdcb8d508440aff84c385c
Sha256: 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a
                                        
                                            GET /wp-content/themes/thrive-nouveau/js/navigation.js?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-155e"
P-LB: lb1.q1.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1468
Md5:    0bc28b0b1ae1dc7afc5ba54ca01de8b0
Sha1:   e6b9e7412af774264b00e5d4f1fb6d799db5f281
Sha256: edc64bb083b4f3984c57c3dacaa497bb8e3641b6d142e738e48b98ad5e16d5dd

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/thrive-nouveau/js/jquery-plugins.js?ver=3.0.8.1 HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-12599"
P-LB: lb1.q2.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   21423
Md5:    0caff11d5ec2a9df5f30b33c24445f74
Sha1:   8b5c887d747c0f7b0156a5d5e555ae1a7c8c67b0
Sha256: 7a70d5dbc2096f585d6e689a7876ee386e837d4ad4c6462524485f63c20e609b
                                        
                                            GET /wp-content/themes/thrive-nouveau/fonts/MaterialIcons-Regular.woff HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/wp-content/themes/thrive-nouveau/style.css?ver=3.0.8.1
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:52 GMT
Content-Length: 57620
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: "5b60e0ef-e114"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
Accept-Ranges: bytes
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---
Magic:  data
Size:   57620
Md5:    012cf6a10129e2275d79d6adac7f3b02
Sha1:   c6c953c2ccb2ca9abb21db8dbf473b5a435f0082
Sha256: c4a1baec300d09e03a8380b85918267ee80faae8e00c6c56b48e2e74b1d9b38d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Roboto:500,300,400&subset=cyrillic,cyrillic-ext,devanagari,greek,greek-ext,khmer,latin,latin-ext,vietnamese,hebrew,arabic,bengali,gujarati,tamil,telugu,thai HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         216.58.207.234
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 17 Jan 2019 10:25:53 GMT
Date: Thu, 17 Jan 2019 10:25:53 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   239
Md5:    bb25eb3c9bc4d735b05c3d23fd63a661
Sha1:   adf1e54c2fe93511c01f9ce9adf949511794de1d
Sha256: c967991d8e7b57bda98bf515458e359b05ffeccb9c2485fb5355e1b01f715287
                                        
                                            GET /g.gif?v=ext&j=1%3A6.9&blog=149335586&post=4&tz=0&srv=hypedtours.com&host=hypedtours.com&ref=&rand=0.6165031239172138 HTTP/1.1 
Host: pixel.wp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/

                                         
                                         192.0.76.3
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:53 GMT
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache


--- Additional Info ---
Magic:  GIF image data, version 89a, 6 x 5
Size:   50
Md5:    e4d673a55c5656f19ef81563fb10884c
Sha1:   1f2d8ed221d39329251ad3a6ff1edb20b7219443
Sha256: f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9vAA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:500,300,400&subset=cyrillic,cyrillic-ext,devanagari,greek,greek-ext,khmer,latin,latin-ext,vietnamese,hebrew,arabic,bengali,gujarati,tamil,telugu,thai
Origin: https://hypedtours.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 86444
Date: Tue, 15 Jan 2019 00:41:43 GMT
Expires: Wed, 15 Jan 2020 00:41:43 GMT
Last-Modified: Mon, 16 Oct 2017 17:33:16 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 207850
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   86444
Md5:    1d6594826615607f6dc860bb49258acb
Sha1:   3caf9bcd149c12e6abfe03d309e931d4ca22d4a8
Sha256: 4112fbc996a10ba2f5be2077f92be5eb143e24061a24f7c99825066ecc5b8a51
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Me5g.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:500,300,400&subset=cyrillic,cyrillic-ext,devanagari,greek,greek-ext,khmer,latin,latin-ext,vietnamese,hebrew,arabic,bengali,gujarati,tamil,telugu,thai
Origin: https://hypedtours.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 85876
Date: Thu, 20 Dec 2018 18:28:40 GMT
Expires: Fri, 20 Dec 2019 18:28:40 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2390233
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   85876
Md5:    35b07eb2f8711ae08d1f58c043880930
Sha1:   96eca9934dff83a12371dd54fc6c1bf29256815a
Sha256: 9ae9d6545d7d7d823f8a94010db77c1a0ff71e371e8bb158df1cb98395162507
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmSU5vAA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:500,300,400&subset=cyrillic,cyrillic-ext,devanagari,greek,greek-ext,khmer,latin,latin-ext,vietnamese,hebrew,arabic,bengali,gujarati,tamil,telugu,thai
Origin: https://hypedtours.com

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 85692
Date: Thu, 03 Jan 2019 04:30:10 GMT
Expires: Fri, 03 Jan 2020 04:30:10 GMT
Last-Modified: Mon, 16 Oct 2017 17:32:50 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1230943
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  data
Size:   85692
Md5:    c73eb1ceba3321a80a0aff13ad373cb4
Sha1:   3ea2c95e21cc88d82bb111c99883484c64d657db
Sha256: 18827349c7febd4b8d01aa907c67ea9b8011242078326b24703978454fdf351a
                                        
                                            GET /wp-content/themes/thrive-nouveau/logo.svg HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-6a6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
P-LB: lb1.q2.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/thrive-nouveau/logo.svg HTTP/1.1 
Host: hypedtours.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://hypedtours.com/
Cookie: PHPSESSID=i9g8esklrdik98lu6f2hudr2f5

                                         
                                         192.0.78.141
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Thu, 17 Jan 2019 10:25:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=86400
Vary: Accept-Encoding
Last-Modified: Tue, 31 Jul 2018 22:21:35 GMT
Etag: W/"5b60e0ef-6a6"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, HEAD
P-LB: lb1.q4.sat
P-WS: web89.q7.sat
X-Content-Type-Options: nosniff
Content-Encoding: gzip
X-ac: 3.arn _proxy_upstream_1


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware