Overview

URL tumejordirectorio.com/gt/-c24777
IP85.25.134.14
ASNAS8972 PlusServer AG
Location Germany
Report completed2019-04-15 10:06:23 CEST
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-04-15 2 tumejordirectorio.com/gt/-c24777 Malware
2019-04-15 2 tumejordirectorio.com/gt/oc-content/themes/tuffclassified/css/custom.css?v=987 Malware
2019-04-15 2 tumejordirectorio.com/gt/oc-content/themes/tuffclassified/js/jquery.min.js Malware
2019-04-15 2 tumejordirectorio.com/gt/oc-content/themes/tuffclassified/css/pumkin.min.cs (...) Malware
2019-04-15 2 tumejordirectorio.com/gt/oc-includes/osclass/assets/js/jquery-ui.min.js Malware
2019-04-15 2 tumejordirectorio.com/gt/oc-content/themes/tuffclassified/js/bootstrap.min.js Malware
2019-04-15 2 coin-hive.com/lib/coinhive.min.js Malware
2019-04-15 2 coinhive.com/lib/coinhive.min.js Malware
2019-04-15 2 tumejordirectorio.com/gt/oc-content/themes/tuffclassified/fonts/fontawesome (...) Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 85.25.134.14

Date UQ / IDS / BL URL IP
2019-04-22 10:08:52 +0200
3 - 0 - 9 tumejordirectorio.com/gt/otras-catetorias 85.25.134.14
2019-04-22 07:04:34 +0200
3 - 0 - 9 tumejordirectorio.com/gt/otras-catetorias/3 85.25.134.14
2019-04-22 02:24:27 +0200
3 - 0 - 11 tumejordirectorio.com/gt/item/send-friend/1095 85.25.134.14
2019-04-21 18:36:46 +0200
3 - 0 - 9 tumejordirectorio.com/gt/lugares_jalapa-r706603 85.25.134.14
2019-04-20 11:06:39 +0200
3 - 0 - 9 tumejordirectorio.com/gt/quiens_somos-p24 85.25.134.14
2019-04-20 08:33:28 +0200
0 - 0 - 2 tumejordirectorio.com/gt/-c24531 85.25.134.14
2019-04-19 05:49:37 +0200
3 - 0 - 9 tumejordirectorio.com/gt/-c24749 85.25.134.14
2019-04-19 05:18:54 +0200
3 - 0 - 9 tumejordirectorio.com/gt/servicios 85.25.134.14
2019-04-17 12:21:46 +0200
2 - 0 - 10 tumejordirectorio.com/gt/el-progreso-r706619 85.25.134.14
2019-04-15 12:16:25 +0200
1 - 0 - 10 tumejordirectorio.com/gt/otras-catetorias/mun (...) 85.25.134.14

Last 10 reports on ASN: AS8972 PlusServer AG

Date UQ / IDS / BL URL IP
2019-04-26 00:23:06 +0200
0 - 1 - 0 xn--lnetta-3ya.de/ 85.25.116.81
2019-04-25 23:20:15 +0200
0 - 0 - 6 dayjo.pymessoft.com/ 62.75.137.169
2019-04-25 22:30:05 +0200
0 - 0 - 1 jspigments.com/doc/preme/focus 188.138.102.5
2019-04-25 20:23:25 +0200
0 - 1 - 0 xn--lnettabrillenmode-22b.de/ 85.25.116.81
2019-04-25 17:16:11 +0200
0 - 0 - 1 loseturbo.de/ 188.138.122.81
2019-04-25 16:33:11 +0200
0 - 0 - 1 xn--w5byaa8iwbb.xn--15bv1db.com/ 85.25.198.248
2019-04-25 16:22:09 +0200
0 - 1 - 0 penpaper.ml/ 85.25.210.71
2019-04-25 13:23:24 +0200
0 - 1 - 0 xn--lnettabrillenmode-22b.de/ 85.25.116.81
2019-04-25 12:09:05 +0200
0 - 0 - 12 vv.vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-25 10:55:12 +0200
0 - 1 - 3 bullshift.net/user/kuddman/view/2013/09/wallp (...) 62.75.148.64

Last 10 reports on domain: tumejordirectorio.com

Date UQ / IDS / BL URL IP
2019-04-22 10:08:52 +0200
3 - 0 - 9 tumejordirectorio.com/gt/otras-catetorias 85.25.134.14
2019-04-22 07:04:34 +0200
3 - 0 - 9 tumejordirectorio.com/gt/otras-catetorias/3 85.25.134.14
2019-04-22 02:24:27 +0200
3 - 0 - 11 tumejordirectorio.com/gt/item/send-friend/1095 85.25.134.14
2019-04-21 18:36:46 +0200
3 - 0 - 9 tumejordirectorio.com/gt/lugares_jalapa-r706603 85.25.134.14
2019-04-20 11:06:39 +0200
3 - 0 - 9 tumejordirectorio.com/gt/quiens_somos-p24 85.25.134.14
2019-04-20 08:33:28 +0200
0 - 0 - 2 tumejordirectorio.com/gt/-c24531 85.25.134.14
2019-04-19 05:49:37 +0200
3 - 0 - 9 tumejordirectorio.com/gt/-c24749 85.25.134.14
2019-04-19 05:18:54 +0200
3 - 0 - 9 tumejordirectorio.com/gt/servicios 85.25.134.14
2019-04-17 12:21:46 +0200
2 - 0 - 10 tumejordirectorio.com/gt/el-progreso-r706619 85.25.134.14
2019-04-15 12:16:25 +0200
1 - 0 - 10 tumejordirectorio.com/gt/otras-catetorias/mun (...) 85.25.134.14


JavaScript

Executed Scripts (26)


Executed Evals (0)


Executed Writes (6)

#1 JavaScript::Write (size: 306, repeated: 1) - SHA256: 264161db8a220a93a331aed7110937b464b8718881278a8ebc31384bd1cfc1bc

                                        < !doctype html > < html > < body > < script > google_sl_win = window.parent;
google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_0"; < /script><script>window.parent.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_0']});</script > < /body></html >
                                    

#2 JavaScript::Write (size: 306, repeated: 1) - SHA256: 5efcb9fc2a44ea42dca7f3a6201c413bf996957c8642429d6bfa6d151206a13e

                                        < !doctype html > < html > < body > < script > google_sl_win = window.parent;
google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_1"; < /script><script>window.parent.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_1']});</script > < /body></html >
                                    

#3 JavaScript::Write (size: 306, repeated: 1) - SHA256: ceb1ece9d4cb4964ccd9219016b1b547d99a604ffb0173c99f882e88f578ed73

                                        < !doctype html > < html > < body > < script > google_sl_win = window.parent;
google_iframe_start_time = new Date().getTime();
google_async_iframe_id = "aswift_2"; < /script><script>window.parent.google_sa_impl({iframeWin: window, pubWin: window.parent, vars: window.parent['google_sv_map']['aswift_2']});</script > < /body></html >
                                    

#4 JavaScript::Write (size: 1304, repeated: 1) - SHA256: 2c407f57b43f0940457fb143c81f96a10f3688372f3d0a205c37447fd256e5f1

                                        < iframe id = "google_ads_frame1"
name = "google_ads_frame1"
width = "728"
height = "90"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7730725041990526&amp;output=html&amp;h=90&amp;slotname=3350095896&amp;adk=2391213502&amp;adf=807048394&amp;w=728&amp;lmt=1555315552&amp;guci=1.2.0.0.2.2.0.0&amp;format=728x90&amp;url=http%3A%2F%2Ftumejordirectorio.com%2Fgt%2F-c24777&amp;ea=0&amp;flash=10.0.45&amp;wgl=0&amp;adsid=NT&amp;dt=1555315553698&amp;bpp=48&amp;fdt=312&amp;idt=304&amp;shv=r20190408&amp;cbv=r20190131&amp;saldr=aa&amp;abxe=1&amp;correlator=7464014567128&amp;frm=20&amp;pv=2&amp;ga_vid=1695798166.1555315555&amp;ga_sid=1555315555&amp;ga_hid=225175187&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=379&amp;ady=434&amp;biw=1159&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=656&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7C%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=16&amp;bc=1&amp;ifi=1&amp;uci=a!1&amp;dtd=912"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#5 JavaScript::Write (size: 1324, repeated: 1) - SHA256: 88da0cb1e5047ef912142f814827c52c6fbc9a26a13f1f8e5e053fdac9904789

                                        < iframe id = "google_ads_frame2"
name = "google_ads_frame2"
width = "728"
height = "90"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7730725041990526&amp;output=html&amp;h=90&amp;slotname=3350095896&amp;adk=2391213502&amp;adf=807048394&amp;w=728&amp;lmt=1555315552&amp;guci=1.2.0.0.2.2.0.0&amp;format=728x90&amp;url=http%3A%2F%2Ftumejordirectorio.com%2Fgt%2F-c24777&amp;ea=0&amp;flash=10.0.45&amp;wgl=0&amp;adsid=NT&amp;dt=1555315554801&amp;bpp=60&amp;fdt=64&amp;idt=-M&amp;shv=r20190408&amp;cbv=r20190131&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=728x90&amp;correlator=7464014567128&amp;frm=20&amp;pv=1&amp;ga_vid=1695798166.1555315555&amp;ga_sid=1555315555&amp;ga_hid=225175187&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=379&amp;ady=800&amp;biw=1159&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=656&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7Cbr%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=16&amp;bc=1&amp;ifi=2&amp;uci=a!2&amp;dtd=74"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    

#6 JavaScript::Write (size: 1336, repeated: 1) - SHA256: 657b4d34d71604c16e705eb8159fce927aab809c892f7367ccad53822919bbb0

                                        < iframe id = "google_ads_frame3"
name = "google_ads_frame3"
width = "250"
height = "250"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7730725041990526&amp;output=html&amp;h=250&amp;slotname=2547876696&amp;adk=86732915&amp;adf=807048394&amp;w=250&amp;lmt=1555315552&amp;guci=1.2.0.0.2.2.0.0&amp;format=250x250&amp;url=http%3A%2F%2Ftumejordirectorio.com%2Fgt%2F-c24777&amp;ea=0&amp;flash=10.0.45&amp;wgl=0&amp;adsid=NT&amp;dt=1555315555110&amp;bpp=28&amp;fdt=97&amp;idt=-M&amp;shv=r20190408&amp;cbv=r20190131&amp;saldr=aa&amp;abxe=1&amp;prev_fmts=728x90%2C728x90&amp;correlator=7464014567128&amp;frm=20&amp;pv=1&amp;ga_vid=1695798166.1555315555&amp;ga_sid=1555315555&amp;ga_hid=225175187&amp;ga_fc=0&amp;icsg=0&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=110&amp;ady=1474&amp;biw=1159&amp;bih=754&amp;scr_x=0&amp;scr_y=0&amp;eid=21060853&amp;oid=3&amp;rx=0&amp;eae=4&amp;fc=656&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7Cbr%7C&amp;abl=CS&amp;ppjl=u&amp;pfx=0&amp;fu=16&amp;bc=1&amp;ifi=3&amp;uci=a!3&amp;dtd=109"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    


HTTP Transactions (33)


Request Response
                                        
                                            GET /gt/-c24777 HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 15 Apr 2019 08:05:48 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   43224
Md5:    ad7ea69fede2efd7be2b67ef9d8d64c9
Sha1:   97ae9e731b86cf9154f28816fe726472766167bb
Sha256: 74fd39bdf9b3adfd6e18f3051687bf5bfde5bdd7a05e5ad2a8b84798bd09e5b8

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gt/oc-content/themes/tuffclassified/css/custom.css?v=987 HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 15 Apr 2019 08:05:52 GMT
Server: Apache
Last-Modified: Mon, 09 Jun 2014 02:10:28 GMT
Accept-Ranges: bytes
Content-Length: 10004
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text
Size:   10004
Md5:    adbcdcc843af3a1732866308d9ba8ab5
Sha1:   58635ad180d48aeb10ad44721030e641a5db8c60
Sha256: c5de54a130c47439aae1db2e32b48eeb18cff7d167dd170e41fb4f537eb1ce2d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gt/oc-content/themes/tuffclassified/favicon.ico HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Mon, 15 Apr 2019 08:05:52 GMT
Server: Apache
Last-Modified: Mon, 09 Jun 2014 02:04:49 GMT
Accept-Ranges: bytes
Content-Length: 4286
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   4286
Md5:    3eccba801984d4e06dbd83fcef6c45bf
Sha1:   357407865e5659ba5656bf387c078044f0971301
Sha256: b0f7cd2dfe08e72208ad7f88a5618febea63cd4a93a30b3b6624f65053d46501
                                        
                                            GET /pagead/js/adsbygoogle.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Mon, 15 Apr 2019 08:05:52 GMT
Expires: Mon, 15 Apr 2019 08:05:52 GMT
Cache-Control: private, max-age=3600
Etag: 10501264114687559716
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 31913
X-XSS-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   31913
Md5:    5f67d821b632f379aab41b2b5a61df6e
Sha1:   21fe9a52c3bc10cba1b107e16e04ce823e1a8d93
Sha256: 0d74aaeaf26de61af677a665c62f0b105ad35788984d8025bc7f8d4c64da2c3d
                                        
                                            GET /gt/oc-content/themes/tuffclassified/js/jquery.min.js HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 15 Apr 2019 08:05:52 GMT
Server: Apache
Last-Modified: Mon, 09 Jun 2014 02:13:30 GMT
Accept-Ranges: bytes
Content-Length: 93636
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   93636
Md5:    3576a6e73c9dccdbbc4a2cf8ff544ad7
Sha1:   06e872300088b9ba8a08427d28ed0efcdf9c6ff5
Sha256: 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gt/oc-content/themes/tuffclassified/css/pumkin.min.css?v=987 HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Mon, 15 Apr 2019 08:05:52 GMT
Server: Apache
Last-Modified: Mon, 09 Jun 2014 02:11:08 GMT
Accept-Ranges: bytes
Content-Length: 113004
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   113004
Md5:    d299d92bb83338ba319f5e132b53b0fe
Sha1:   ef88212244cd3897f5fa3a098b01d7c924a19e79
Sha256: 5216460d91b6d07fd58d49fc1ea3b4b85809b6a8e10c3f0d5b98bc1fbc958f4d

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gt/oc-content/uploads/10/767_thumbnail.jpg HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Mon, 15 Apr 2019 08:05:52 GMT
Server: Apache
Last-Modified: Fri, 20 Jun 2014 18:20:14 GMT
Accept-Ranges: bytes
Content-Length: 12388
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   12388
Md5:    603c0a00acd8d71081d548173a8edd3b
Sha1:   af5cbcb03f966b29da49288eef2df12f02e800b9
Sha256: 1ce5655c6d18b14001adb2970ca246ef4021ab5e02a47e72f2f698f4aae001cb
                                        
                                            GET /gt/oc-includes/osclass/assets/js/jquery-ui.min.js HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 15 Apr 2019 08:05:52 GMT
Server: Apache
Last-Modified: Wed, 03 Oct 2018 13:03:14 GMT
Accept-Ranges: bytes
Content-Length: 228062
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   228062
Md5:    dd4d50ee7806010e283543924ff2abd3
Sha1:   ff271d77526139487e4f34b030c63292ce282411
Sha256: 5e4e0c1a2d7b2f4d3835b1ea8f0c7c538e5a46e0b6b29258c5fbdf1d1b4480ba

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /css?family=Lato:300,400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/oc-content/themes/tuffclassified/css/pumkin.min.css?v=987

                                         
                                         172.217.21.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 15 Apr 2019 08:05:52 GMT
Date: Mon, 15 Apr 2019 08:05:52 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   242
Md5:    6534ea047d843dcf9a1ac099b95e2770
Sha1:   e1fe32a06088f099bd84559adae543b2f231a300
Sha256: cdc0d33abb3103c3a12ab79bcc57fbcfc40fd6d5ea17a1e5299ca0d884fe2fd4
                                        
                                            GET /gt/oc-content/themes/tuffclassified/images/logo.png HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 15 Apr 2019 08:05:52 GMT
Server: Apache
Last-Modified: Wed, 11 Jun 2014 21:21:47 GMT
Accept-Ranges: bytes
Content-Length: 244375
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 800 x 185, 8-bit/color RGBA, non-interlaced
Size:   244375
Md5:    262e5a318e1ac612eeabca8943665206
Sha1:   3f2c845fd480ae2dbb3e7d2d25986ba996588072
Sha256: 444b49e326201f12a6ffe6985051932757ddd9f0832744f5e0c4ec4c7cf9ce7b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.40
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sat, 13 Apr 2019 23:53:45 GMT
Etag: 3A05055231629E4CBAF5D54847BEDE7F979538E4
X-OCSP-Responder-ID: mcdpcaocsp7
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=488272
Expires: Sat, 20 Apr 2019 23:43:44 GMT
Date: Mon, 15 Apr 2019 08:05:52 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4606e7f985e57c66b2458ff50887cc29
Sha1:   3a05055231629e4cbaf5d54847bede7f979538e4
Sha256: 86ad7d472e0926e98f8b2636ee5a45291594ad9071dc8e4380e56cda1c1fc3e0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.40
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 11 Apr 2019 11:19:13 GMT
Etag: 1354EDB55DD9480E7F18F8518A59F66D3267F3F1
X-OCSP-Responder-ID: mcdpcaocsp9
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=270245
Expires: Thu, 18 Apr 2019 11:09:57 GMT
Date: Mon, 15 Apr 2019 08:05:52 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    e4d15ee088e5418c476a795e1a6f5864
Sha1:   1354edb55dd9480e7f18f8518a59f66d3267f3f1
Sha256: 2367c5d5b47c17a8ea51497b6c9420d214747eebc9564b9381d82859b5d7b897
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.18
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 11 Apr 2019 11:19:13 GMT
Etag: 734F6F61F3B09D73156FA3840E7A15521C38F634
X-OCSP-Responder-ID: mcdpcaocsp2
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=270167
Expires: Thu, 18 Apr 2019 11:08:39 GMT
Date: Mon, 15 Apr 2019 08:05:52 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    12d0f4eb48a119a83df1659cc6ff369d
Sha1:   734f6f61f3b09d73156fa3840e7a15521c38f634
Sha256: ceb8054c5088776aff678331ef2f184549affa7d32745e60dad638f4ae87bb1c
                                        
                                            GET /gt/oc-content/themes/tuffclassified/js/bootstrap.min.js HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 15 Apr 2019 08:05:52 GMT
Server: Apache
Last-Modified: Mon, 09 Jun 2014 02:12:59 GMT
Accept-Ranges: bytes
Content-Length: 60777
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   60777
Md5:    cda0f2d7eb0e44c3f4b55f11a58ec6a9
Sha1:   47a826cb2aad79847b0af7d4e155868f45b2aaad
Sha256: f3e051fb16a2d3ef742f15d0a72c974f39aa22cfbdb033a1168b7e0e95a37b16

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coin-hive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         217.182.164.9
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 15 Apr 2019 08:05:52 GMT
Content-Length: 178
Connection: keep-alive
Location: https://coinhive.com/lib/coinhive.min.js


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 15 Apr 2019 08:05:53 GMT
Accept-Ranges: bytes
Last-Modified: Wed, 10 Apr 2019 05:05:33 GMT
Access-Control-Allow-Origin: *
Server: Apache
Etag: 3672068453F50E81DC8DC94A5252399F81E7B486
Cache-Control: max-age=303428,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp5
X-HW: 1555315553.cds055.sk1.h2,1555315553.cds009.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9188e7a5bb3dcd3e89e3c476d48cec6b
Sha1:   3672068453f50e81dc8dc94a5252399f81e7b486
Sha256: 62b227fc66fc6fe550e02a4426d6ddab7858d39f07682cbf47f00a5309214a0c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 15 Apr 2019 08:05:53 GMT
Accept-Ranges: bytes
Last-Modified: Thu, 11 Apr 2019 11:19:13 GMT
Access-Control-Allow-Origin: *
Server: Apache
Etag: 9FB42F2D397732A4D9986436E6C7FE31F52C26CD
Cache-Control: max-age=302397,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp2
X-HW: 1555315553.cds055.sk1.h2,1555315553.cds043.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    4188c6765caeb1af11c7cbab88f24088
Sha1:   9fb42f2d397732a4d9986436e6c7fe31f52c26cd
Sha256: 7eeac4af24e3af0b6a39fad136c3e1da815fabf05445a75506377470e70b2e10
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         104.20.209.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Mon, 15 Apr 2019 08:05:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d6f58d62119f732b7b8b7d5c73f3f25461555315553; expires=Tue, 14-Apr-20 08:05:53 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Mon, 15 Oct 2018 11:57:18 GMT
Etag: W/"5bc4809e-423b4"
Expires: Mon, 15 Apr 2019 16:05:53 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4c7c6abf1ee8cae2-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   70162
Md5:    b6bb44f95a22a27e8b92d2ccbc591524
Sha1:   b5f4bf87301fb5291d70f392758d9c56ae374cc3
Sha256: e32b7829c99619bfa2c1de9e1ed9e9e515863b2d094e86c629c67c7350e8c96d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /gt/oc-content/themes/tuffclassified/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/oc-content/themes/tuffclassified/css/pumkin.min.css?v=987
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Mon, 15 Apr 2019 08:05:53 GMT
Server: Apache
Last-Modified: Mon, 09 Jun 2014 02:12:26 GMT
Accept-Ranges: bytes
Content-Length: 44476
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  data
Size:   44476
Md5:    fb0869e352d83a49579e9cd4d9ac1c6b
Sha1:   2277b24e7a512d1b298fbe085d06eae3f92ec2c4
Sha256: c151a7e68aedc7bd4d84cb2096e92ee2f055c16be01c2ba027acd38b6cc9d52a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 15 Apr 2019 08:05:53 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a1387cbf071be1d0e59551c3c35275de
Sha1:   e6083266ae5a1776efd844fb8a899e0a7e10054d
Sha256: 6d926bd13e843d11c6e4c6f526e9a34001bb6583e0ef486a9de718883e4db4ce
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 15 Apr 2019 08:05:53 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 15 Apr 2019 08:05:53 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9047b0521a895aab97b5f3aaedd33d22
Sha1:   e80bd835bf7574eb0a7ade96d5c3b03f50ec0b55
Sha256: e4e3b369cb9e72a181811aceaed17d809932eb9bbcd300e6c26aa8a3e3f0faa1
                                        
                                            GET /adsid/integrator.js?domain=tumejordirectorio.com HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Mon, 15 Apr 2019 08:05:53 GMT
Server: cafe
X-XSS-Protection: 0
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /adsid/integrator.js?domain=tumejordirectorio.com HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Mon, 15 Apr 2019 08:05:53 GMT
Server: cafe
X-XSS-Protection: 0
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   104
Md5:    835dc76a57166c8b5b88275a570d1891
Sha1:   0d7e8826520cdadf8db62583b25e26149af2c8ce
Sha256: 6441b99ce0ba328cabe2ff8d6167c3ac47f8d67fc469689fd925f7b57761c333
                                        
                                            GET /pagead/js/r20190408/r20190131/show_ads_impl.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Mon, 15 Apr 2019 08:05:53 GMT
Expires: Mon, 15 Apr 2019 08:05:53 GMT
Cache-Control: private, max-age=1209600
Etag: 1891813082381114398
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 76985
X-XSS-Protection: 0


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   76985
Md5:    e213393775d2ec5f7fabe8ebaead4981
Sha1:   44d935caa01e696c57a093f270c4975c3782dd23
Sha256: 39e6309518b71f5acb0971f82498fd4fe177eae0692bae77a9ae160a00a01f59
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 15 Apr 2019 08:05:54 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e0dab5fe1f396ac037b69313abee7573
Sha1:   2ed0db18f0ad2ab6bc73bbf473c3f81e6151047f
Sha256: 90517c9a391b06773307bf8e1e2ec2f122a5faf81174743796a21b89b3cb384c
                                        
                                            GET /pagead/html/r20190408/r20190131/zrt_lookup.html HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Vary: Accept-Encoding
Date: Mon, 08 Apr 2019 21:40:11 GMT
Expires: Mon, 22 Apr 2019 21:40:11 GMT
Etag: 3275482936266559025
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 6909
X-XSS-Protection: 0
Cache-Control: public, max-age=1209600
Age: 555943
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6909
Md5:    4435999055d2232342e9ed745246f7e5
Sha1:   381e72a4ba75cf0b05f6883c625a89e50c63d320
Sha256: cf8b15c9acef19819e07c676dcce07a3c96a9a152554b007d8c3478fbf841ff8
                                        
                                            GET /pub-config/r20160913/ca-pub-7730725041990526.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Length: 125
Date: Mon, 15 Apr 2019 08:05:54 GMT
Expires: Mon, 15 Apr 2019 20:05:54 GMT
Cache-Control: public, max-age=43200
Last-Modified: Sun, 14 Apr 2019 19:43:19 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 0
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   125
Md5:    21aea2dae0239adff4f9f063cdacfc76
Sha1:   ce64c497ac1dd86393da79e8cea239de113c1de7
Sha256: a59ee78166b8467dd7dd8c7acb03d8df7d16cf4a04f45c8558366df1c33b868f
                                        
                                            GET /activeview/js/current/osd.js?cb=%2Fr20100101 HTTP/1.1 
Host: www.googletagservices.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 15 Apr 2019 08:05:54 GMT
Expires: Mon, 15 Apr 2019 08:05:54 GMT
Cache-Control: private, max-age=3000
Etag: "1554894788928095"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   29096
Md5:    b6ca7fc8a6a41a8c0ecf823403af8b50
Sha1:   f86aa03e5fbdb9b566be523e01873683fa778751
Sha256: f3bf698219e1bf79e3acdb30f361357d2053c2d5dd47a0ca70b85c7c1d68c463
                                        
                                            GET /pagead/ads?client=ca-pub-7730725041990526&output=html&h=90&slotname=3350095896&adk=2391213502&adf=807048394&w=728&lmt=1555315552&guci=1.2.0.0.2.2.0.0&format=728x90&url=http%3A%2F%2Ftumejordirectorio.com%2Fgt%2F-c24777&ea=0&flash=10.0.45&wgl=0&adsid=NT&dt=1555315554801&bpp=60&fdt=64&idt=-M&shv=r20190408&cbv=r20190131&saldr=aa&abxe=1&prev_fmts=728x90&correlator=7464014567128&frm=20&pv=1&ga_vid=1695798166.1555315555&ga_sid=1555315555&ga_hid=225175187&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=379&ady=800&biw=1159&bih=754&scr_x=0&scr_y=0&eid=21060853&oid=3&rx=0&eae=4&fc=656&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7Cbr%7C&abl=CS&ppjl=u&pfx=0&fu=16&bc=1&ifi=2&uci=a!2&dtd=74 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 15 Apr 2019 08:05:55 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Mon, 15-Apr-2019 08:20:54 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"
Expires: Mon, 15 Apr 2019 08:05:55 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   381
Md5:    b1ce063a345d4a7f3e55042efdd0289c
Sha1:   988063163568917b1f1ba086215cd12a52878b8d
Sha256: 4428db9b89c1d573cd437e4940130055648e640ff2ce950f85a94d65d8b2e316
                                        
                                            GET /pagead/ads?client=ca-pub-7730725041990526&output=html&h=90&slotname=3350095896&adk=2391213502&adf=807048394&w=728&lmt=1555315552&guci=1.2.0.0.2.2.0.0&format=728x90&url=http%3A%2F%2Ftumejordirectorio.com%2Fgt%2F-c24777&ea=0&flash=10.0.45&wgl=0&adsid=NT&dt=1555315553698&bpp=48&fdt=312&idt=304&shv=r20190408&cbv=r20190131&saldr=aa&abxe=1&correlator=7464014567128&frm=20&pv=2&ga_vid=1695798166.1555315555&ga_sid=1555315555&ga_hid=225175187&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=379&ady=434&biw=1159&bih=754&scr_x=0&scr_y=0&eid=21060853&oid=3&rx=0&eae=4&fc=656&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7C%7C&abl=CS&ppjl=u&pfx=0&fu=16&bc=1&ifi=1&uci=a!1&dtd=912 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 15 Apr 2019 08:05:55 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Mon, 15-Apr-2019 08:20:54 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"
Expires: Mon, 15 Apr 2019 08:05:55 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   383
Md5:    74fa8a956245bad4f067f8dfe226f02b
Sha1:   70fee91b609355018e7f2632bea4e42163b4d2b7
Sha256: 6e5e198fba69af9ffc4c537bdc0f119494e1ea564bd4910f584b4ec00f938e8b
                                        
                                            GET /gt/oc-content/themes/tuffclassified/images/footerbackground1.png HTTP/1.1 
Host: tumejordirectorio.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/oc-content/themes/tuffclassified/css/custom.css?v=987
Cookie: osclass=3cc1182b308cdb828ea8bc7ddb0467bd

                                         
                                         85.25.134.14
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Mon, 15 Apr 2019 08:05:55 GMT
Server: Apache
Last-Modified: Mon, 09 Jun 2014 02:12:33 GMT
Accept-Ranges: bytes
Content-Length: 674
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 712 x 88, 1-bit colormap, non-interlaced
Size:   674
Md5:    68d31302c6e9081aefb4ae712dd6f05f
Sha1:   738ff205c6d64ef6a7859cad50ab19ebd574a282
Sha256: 79d9914be08df4f397f2276a7b4824733220000a5fede198689553d57a2bc280
                                        
                                            GET /pagead/ads?client=ca-pub-7730725041990526&output=html&h=250&slotname=2547876696&adk=86732915&adf=807048394&w=250&lmt=1555315552&guci=1.2.0.0.2.2.0.0&format=250x250&url=http%3A%2F%2Ftumejordirectorio.com%2Fgt%2F-c24777&ea=0&flash=10.0.45&wgl=0&adsid=NT&dt=1555315555110&bpp=28&fdt=97&idt=-M&shv=r20190408&cbv=r20190131&saldr=aa&abxe=1&prev_fmts=728x90%2C728x90&correlator=7464014567128&frm=20&pv=1&ga_vid=1695798166.1555315555&ga_sid=1555315555&ga_hid=225175187&ga_fc=0&icsg=0&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=110&ady=1474&biw=1159&bih=754&scr_x=0&scr_y=0&eid=21060853&oid=3&rx=0&eae=4&fc=656&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7Cbr%7C&abl=CS&ppjl=u&pfx=0&fu=16&bc=1&ifi=3&uci=a!3&dtd=109 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://tumejordirectorio.com/gt/-c24777

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 15 Apr 2019 08:05:55 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Mon, 15-Apr-2019 08:20:55 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"
Expires: Mon, 15 Apr 2019 08:05:55 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   383
Md5:    8efa9c5b3d17565b7dca872966265328
Sha1:   ac2f364d55857c4eb9bdb8acd08f092b27e7def1
Sha256: 10a2f1bb57fbd837fd9592569feb1661e302aef7a7a8f6dd8404c01d374701c5