firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 10:05:37 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 86897b9f074001e33ff5cbec58c4bc02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: EQKNjmKjQHy_igL3AjW1qpbqRW9lvr7N5Utqk_HBLXLMWmbT2YuoNw==
Age: 3387
bassadventuresmexico.com/
301 Moved Permanently 707 B URL HTTP/1.1 bassadventuresmexico.com/
IP
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 24 Sep 2022 11:02:04 GMT
server: LiteSpeed
location: https://bassadventuresmexico.com/
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19948
Expires: Sat, 24 Sep 2022 16:34:32 GMT
Date: Sat, 24 Sep 2022 11:02:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 7309328e91f012108061822748228b68.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: nteovLOj9diTVb43VHy8oyhcdWAhpb7vs2hz6dL13XdgqoYBC82Cvg==
age: 24541
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 11:02:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 24 Sep 2022 10:20:47 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 24 Sep 2022 10:48:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 99c9ffdbfc5207f9665251bb3284f588.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: _PPqYEBefJ9CrMlD-OqGjzZJdF27wzcrfbV4nwUDyS9A0QWQMY3jug==
Age: 2478
ocsp.digicert.com/
200 OK 471 B IP
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 247
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 11:02:05 GMT
Last-Modified: Sat, 24 Sep 2022 10:57:58 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LpY3IeHlNQYuhX8wvwTRPA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TStFj3KipJDmc1ftNLLgS2oisdc=
bassadventuresmexico.com/
200 OK 15 kB URL HTTP/2 bassadventuresmexico.com/
IP
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13078)
Hash 0a71a207c49200937a4372a323fa46b4
f49da3cbba1386d505b7cd9be3260004f222449b
dfe185d10c70c2b54f38530f5c9c6a03e221c10bf713a5cfec40a597db6ae9c1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/8.0.22
content-type: text/html; charset=UTF-8
link: <https://bassadventuresmexico.com/wp-json/>; rel="https://api.w.org/", <https://bassadventuresmexico.com/wp-json/wp/v2/pages/650>; rel="alternate"; type="application/json", <https://bassadventuresmexico.com/>; rel=shortlink
content-length: 15398
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 11:02:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
200 OK 2.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP
Hash 606e638f51e0d9bab5ace817371b72fc
48a44e081cbb41f1b1d5e718fe0334740edf5272
915a0357c52d4377eadaf29256b753aae89d11ac04dadd7a067d54983ee0ee80
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPlayfair+Display%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 11:02:05 GMT
date: Sat, 24 Sep 2022 11:02:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
200 OK 20 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0
IP
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash b853d2eff523a1c18fadb46c5363eb66
cf0a535f717f51b802dfa491ee60864c097f6639
92ff34ade138642b5f64a301d9f37428867177d73f91bc44dbd8e9176f5f853c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.0.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:10:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20364
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
200 OK 11 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (43771)
Hash 4b712ce1454566533fae0e455a6379fb
6d85c8d2f4eeeb890e79a06870468ed941823bd0
62f526fef6d8132d9746e2716e3d5a0b5d7e18f0e18ee7cc9c2a89d0669cd5d7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Tue, 12 Jul 2022 17:01:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10806
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/jquery-collapse-o-matic/css/core_style.css?ver=1.0
200 OK 187 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/jquery-collapse-o-matic/css/core_style.css?ver=1.0
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 3fe1bb020a81dc3e7fa5704de9a6626e
c3e24e661a9ee486036fc31b8d009928cf490679
9b330755d7a0e5cec279aa2a3d1edb521d8a9528cac491e4c383cfcb0e79bb4d
GET /wp-content/plugins/jquery-collapse-o-matic/css/core_style.css?ver=1.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 18:29:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 187
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
200 OK 1.1 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4933), with no line terminators
Hash a5fd271269ab67b4c89427213c4f8769
abfe5c86967377096a961fd5fc5ccc3093fbcca9
44fe8bef63fdf3205d3bc8934fdbb115fb02b296a988d02c27fa363f4a09c5a5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.0.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:10:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1106
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/jquery-collapse-o-matic/css/light_style.css?ver=1.6
200 OK 283 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/jquery-collapse-o-matic/css/light_style.css?ver=1.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 5a7aba206ec7049098b8fdf0409fe1fe
5e9929cc84c67f44d176629720cf642feb8ca1ab
5199bfbf4411612115a911028fffc21a4569f43a508a94628dfcede9b1571b86
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jquery-collapse-o-matic/css/light_style.css?ver=1.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 06 Jan 2022 18:29:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.2
200 OK 8.3 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.2
IP
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (62753), with no line terminators
Hash 2e94ba6f431a1df261b2e7427bcfe378
c6dc2671480809bed08cf2e323acdd4e46d0e660
c0fdb6f783b6dda6ac05fdbf2ab4f7aa55f0ba2f13d6af3b088eff1af34a96f2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.8.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:10:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8340
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0
200 OK 291 B URL HTTP/2 bassadventuresmexico.com/wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0
IP
ASN #47583 Hostinger International Limited
Hash 881fa129e096c858c4674ac9125d0657
70ae406f91ce7d6916f48f8739546c8843cd27cd
9fe21befa97e92ad8211c6abf8d65f550102a216d74010c9bd0df499c3e6e492
GET /wp-content/themes/hello-theme-child-master/style.css?ver=1.0.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 19:02:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 291
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.2
200 OK 2.3 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (17809), with no line terminators
Hash b0cca9535dfb7ebeee6a53c255ab82b9
021a8ceab2410d00fbde8366bb0ad20759f6cbff
9cdba0b614b5c2fe46a5356d4121dccd2a2c99343a137b3aa0d3569da00407cc
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.8.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:10:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2326
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.2
200 OK 2.3 kB URL HTTP/2 bassadventuresmexico.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.4.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (15164), with no line terminators
Hash a4826d89c17e0a6f17445721d802468f
954fed5ff27daafb85321cbe6138d5cb283b7e93
8bee5da0fdffebfc145c1e2a749038f9b4096e4891b3f927ee45e35e8325b8ef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.4.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 19:02:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2308
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/themes/hello-elementor/style.min.css?ver=2.4.2
200 OK 1.6 kB URL HTTP/2 bassadventuresmexico.com/wp-content/themes/hello-elementor/style.min.css?ver=2.4.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (5854), with no line terminators
Hash c630be799ba2f832b611d84d3f0480b9
a59b4aee48f26da91838348af66fb88277958055
8baa0f717774ca41774310268cdcf53995a8c25f8f5c87730cdd42894ba39d7f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.4.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 19:02:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1643
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.0 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11126)
Hash 6faab5f57e548c3a2eb1e3b9cd63cb87
64b266aa6631f631d89a87261929572549c47f50
ced062c36a469aa6f9deb5cf4a1b6e3eec95883c5d617f0112b3ff744c270b8b
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3989
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.2
200 OK 4.0 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (14869)
Hash 88f639995a8679032447b6b263ac3c30
2c90478f14197ea2e84028c94c7fafa2ce54ad7f
83b89369c31f2bbdfd5e4098726008c170694e4a3aa67e558b8108f0f796bdee
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:57:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4015
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/wpbc_times.js?ver=8.7.6
200 OK 11 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/wpbc_times.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash aa5de53418f29811a240d1a3c06a7aff
4e01b027a4383e52ab94e1fe24ce4df0d032cbd4
63b471f29379e15832713faff11d40f393f7c29b73aa7f9b27f6895bf5918ed6
GET /wp-content/plugins/booking.bl.8.7.6/js/wpbc_times.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10699
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/jquery.meio.mask.min.js?ver=8.7.6
200 OK 3.7 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/jquery.meio.mask.min.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (10101)
Hash 2fd62783d826f77df47f956e34799932
eedc9182d13c7dbcbb5b636dfcddb34bc8a33f40
62bb3d54f36e2bcad01ecc287399d7f35ff9ea5f02829e087fb00c1855fd9e43
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/inc/js/jquery.meio.mask.min.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:37:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3683
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/personal.js?ver=8.7.6
200 OK 7.8 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/personal.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2035)
Hash 3638211fd586965356ce78f5ebce176c
383ffc88213aefd541f5b8ef2c2a9d98b05e2537
b3cd483ffc67282975db6e6f0ace3ca6864e05eb3dfcd3223f9aebb1f9b878e1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/inc/js/personal.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:37:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7758
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/biz_s.js?ver=8.7.6
200 OK 6.7 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/biz_s.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (343)
Hash 6de90655d13baf9edb1667671c0b476f
59185d6a9bd5865431cefef215788755200e41e9
36437135fd3ec6bc8d52acdff71b84cb31be599b9b4733efe328a9562e212a57
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/inc/js/biz_s.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:37:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6744
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/biz_m.js?ver=8.7.6
200 OK 7.3 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/biz_m.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (339)
Hash 9bd750bdafe586fc5113c6647481dac6
d1fd4d26780994153115b0a4908da70c5c0e5cba
4bcc5f218a81db0ee318d9c84fee4b846b9d92dc7d96895199c31afda5336996
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/inc/js/biz_m.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:37:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7349
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/biz_l.js?ver=8.7.6
200 OK 4.6 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/biz_l.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (346)
Hash db557ae7e6e02b5f1dcaea29026778b0
0bbe38ace2c46491ad4a6cc850cf09278398f898
95cd70c859388a90916f36dd1d6a0f21c60b3fa0577ff7cc380cfa246f2a87d4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/inc/js/biz_l.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:37:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4589
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/gateways/ideal/iDEAL.js?ver=8.7.6
200 OK 730 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/gateways/ideal/iDEAL.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (388)
Hash 06b13ed60b0707af82d15db979dd769c
76c43d9ef6f4168ea84238dab0af3db677fbb931
622f820a5c8ae2cece2fb338a4574817e6156d2dbe15f18c61f7ae469f5d486c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/inc/gateways/ideal/iDEAL.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:37:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 730
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/_out/timeline_v2.js?ver=8.7.6
200 OK 3.6 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/_out/timeline_v2.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6019)
Hash 6545dfe565112368d86d3c9c5d70107b
9e4fc5d3c1b5dd6753f6aa9f6d8cf3f3565ad743
d9a10c38dffbd6c7a72658048562dd08f21f3c051c00c8e78c9498f598d37c12
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/_out/timeline_v2.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3636
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/jquery-collapse-o-matic/js/collapse.js?ver=1.7.0
200 OK 3.5 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/jquery-collapse-o-matic/js/collapse.js?ver=1.7.0
IP
ASN #47583 Hostinger International Limited
Hash 40466f28d583edfbb48508e339c2b8db
cb6db2ced79392dc4fe477a5b7f62f57205c5679
0f25819feec03aad746b859a633c6a4bd297916a84676c8f7f42a49532d9b076
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jquery-collapse-o-matic/js/collapse.js?ver=1.7.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 06 Jan 2022 18:29:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3471
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
200 OK 677 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2139), with no line terminators
Hash a43fc0dde8fdd69656ad0957e62849c7
4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.8.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 01:10:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
200 OK 6.9 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (25115)
Hash a54e10c6cd5840fd658624698e1d2009
3b7d6545bd6fbc0c75acbbdd0e15172b1bcc5be3
04c5b7844503b5d93589b21974d13167e2bb0efb8cc69d9a61a99a2fce674f75
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 20:44:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6882
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
200 OK 1.7 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (5477)
Hash ee72668c47b6e51f4bd139b458fbaa63
4a4221b7a96d395bbe1f92f9c244336c768a3488
f40337ccf84a39e3ffb310b29d6fde6d200faeca000bc9d394e76a90ee2d9ead
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Sat, 13 Jun 2020 18:53:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1726
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.3
200 OK 2.2 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.3
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (5141)
Hash 7ad05073b4b51b0acb0a888a202f47b2
6710c9d580aac82c1688f2af6e7f8a234c9ce629
efb5483c7f34f51ed50a87fe3ea32272ac329e2eb4173e408eeb92f256a0de3c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.3 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 20:45:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2190
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.2
200 OK 2.0 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4918)
Hash 9e495411f782ecb0d21159c526a04496
fd4a9384d6b29cab37a34185cacf318052b1d33a
9b107ad7d5fb52502e106f07ded8324c96eb3007dd155c83293e6a2a41862bbd
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:57:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2042
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.2
200 OK 10 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 02fd20d60368d869bea7962a6fe70de2
59946578d82985b3724e43a92b459a47db6fa797
dadf95ee423833182ab0cd757d1bf2fe13093a77a674f777582a088a75f740f4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:57:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10391
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 2.3 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (6475), with no line terminators
Hash b78b93a51a42787ebfbabb0ec2886207
0a97f016ccd0677c371198ed221aa0fedfc533e2
ade8a362cbc00a57b10046d6e92cfe4d1d6792999cf3a31fb51d3616712df8f8
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 05:02:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2348
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 6.8 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 001825db3c7e6f92d5e607a547683bfb
266e82f5baafcbd363a336b82cbd2ce829caee0e
b3e663a642e97977ee4e8a8029525690738c26de0b609605127bb841e0baabfe
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 05:02:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6849
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
200 OK 1.6 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4875)
Hash 792e0957f1f31f6c0a01bd8037ad762d
59f3c6955d82c7005e35705158b6c7d3628a24a0
5a6c5886f31cce14b33aeafcccd3f4eb39a7f9c7d2ee9d35c8b3f4f7bd514339
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 05:02:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1575
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.3
200 OK 5.5 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.3
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (21374)
Hash 4a1935cad759614367d56d71b782a8d3
1fcedc8dd4cb50320e4e4e9db0456122b2ce9ab7
231b91c3bfa336a323800071e1b823cdb5b70d3efe7b4335cd2e6474d7200fc6
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.3 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 20:45:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5491
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
200 OK 2.8 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (12198), with no line terminators
Hash e614d11fdf493b381090555a30be4148
a0c18f088ca6ea22b5d3cb72a967744ff9c543eb
749be97517070931daaac8a130d2ad97451c385f15007df5c2bb2e88aa916093
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:57:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2848
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
200 OK 6.6 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 8dbc83609732df819f92b83eb703a5d6
a8ae2c000c3ff4e7e346ed895a8da9e201dfe672
d4721220375194a3772e8a50873e005b875e315b26673e2b404412e94089365b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 05:02:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6614
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.2
200 OK 1.0 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2620), with no line terminators
Hash 906c4decdcd32482c1cf583b07925d30
30e726b9febb4b651544266df656a21251f0e8e3
53f86e9641d0e35772d6b54294cc6dd685fb9a376a1baad151da120fef609423
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:57:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1047
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
200 OK 3.3 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10544)
Hash 91688768290ed2717b9ddc9215658083
432cee8210d0ef8f40da132acc902802d8301f90
75ab8eae0a290a9f8b4df112c5d63ac29a23369874feed8a50b0cce568aab2be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:57:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3262
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.2
200 OK 12 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (40474)
Hash 76268060184cf8caaf63e8c85dbeead8
bb35cc751512ca885bbd2fc0c9f16adc292b5d16
95664f96251c42ae76b63207baa819a50489c8ae4657ab070c4c0d89e08b6e26
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:57:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11650
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.2
200 OK 12 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (43101)
Hash 78aeeb76114621e96107f807020734e0
2e8045541e67c7655267c843cb0d18601fc399de
88ba06028c5f9474889579dd4601700a702a43b3f2470e292023891fc9165590
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:57:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12505
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.2
200 OK 701 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (13766)
Hash b6c98e89c8fffd41bd9cd3c3e9fe843f
f3e1bc0560d944c630c024326d5ffb1ef7d52273
4b05dc5835355e144cb40eae08ca90edfaf6cd396667cd3c451875f41c951bbc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:57:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 701
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.2
200 OK 4.0 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (26516)
Hash 3f18e8ff525ed855633c8c49a194bea9
388b44854d406ded92532576ce543b5a80ef4351
40459026978983f9ec44e0abc2b8e2fb329142b45d947e44a956705b000cd794
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:57:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3953
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/datepick/jquery.datepick.js?ver=1.1
200 OK 22 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/datepick/jquery.datepick.js?ver=1.1
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 4642ef1c9a6c6e8573b08d34f0b88b79
0b1856af9a0a096fb90428b6d4996698a821024b
220a3a29b8c99531574797d9568a5b77a71a7189937355600f8923b888ddf8b6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/js/datepick/jquery.datepick.js?ver=1.1 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:05 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21595
date: Sat, 24 Sep 2022 11:02:05 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3598
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 11:02:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3598
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 11:02:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3598
Expires: Sat, 24 Sep 2022 12:02:04 GMT
Date: Sat, 24 Sep 2022 11:02:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:52:36 GMT
age: 47370
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:59:08 GMT
age: 46978
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9444e811-e2d5-4901-a86d-9e9269a6f846.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9444e811-e2d5-4901-a86d-9e9269a6f846.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b6b51846ec2b7d856b7dc12e4d720f4
5a69190a9a778a6979e11fafedd43e1031caf8e2
a497c04d1c9d0be88aa9c288423346e83c6a7b296295387b3b7b855c550492a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9444e811-e2d5-4901-a86d-9e9269a6f846.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10927
x-amzn-requestid: a4c6c1b1-3777-4410-bef1-5dd2518af86a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCjSEqfIAMF1kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e14-4cdfc5ea1c42120d4a085752;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:08 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2E3NtoZf88ePzaJgYpYqQhdCwUvRUcxFeqi3UAmx3INau5OGS6dHPQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:08:59 GMT
age: 46387
etag: "5a69190a9a778a6979e11fafedd43e1031caf8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a4b36e1bf29c9c82f069cdd3c50874c
d2180d40ceb16924a87a41aad90dedb0bb912085
aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:02 GMT
age: 47104
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09db434-67f2-44ab-86f2-081df7e6af92.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09db434-67f2-44ab-86f2-081df7e6af92.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b0e3ac4e16f6dc66a26a4389761d0a
e2e1b87dc1e205d437648f89cd6d0ad21019d662
1e2cd2c842e3aea339ba0c18267af45fd110e70d6e86ad1dab7b65b007afcc16
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09db434-67f2-44ab-86f2-081df7e6af92.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8208
x-amzn-requestid: 0fd39a74-3b99-41d6-ba1c-87cb53d8a03b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shFFwQoAMFfvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-5774d24f791810730183da18;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xnh0Z31k7bB0YOTDFrGKElc7qZjiNxIEpl_Vl8i8jn7GUDLE31Azxg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:55:51 GMT
age: 47175
etag: "e2e1b87dc1e205d437648f89cd6d0ad21019d662"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/uploads/2022/09/1-e1662493027778.jpg
404 Not Found 22 kB URL HTTP/2 bassadventuresmexico.com/wp-content/uploads/2022/09/1-e1662493027778.jpg
IP
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13078)
Hash 1b4f240877b2939da9d244cc1803e665
f10897eae8436f45a683835e3af280540d7dccb3
4b5913825f4b416f509ee4dc6acd5335ecd638a69fee255ee8c755748f27b1a0
GET /wp-content/uploads/2022/09/1-e1662493027778.jpg HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
x-powered-by: PHP/8.0.22
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://bassadventuresmexico.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
200 OK 3.6 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (19233)
Hash 02c4f94115f8681969b252f66547025d
c71a93f68a06ba93e71d5959b60fd08363a40909
cc9d76ac56892c5e6eb7839ace310103c6753b16fbcb26f718922fa9806aa364
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:56:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3626
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.2
200 OK 18 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65497)
Hash 39155ff5f98966e15b5e70b33a22dbb5
418da5acf0d4a8b20c1b8c8bb47363faba769ed1
69d64701d33b581ad0a4ab5431e0644937c9195a2c6016192e4e7d86dc2338f4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:57:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18380
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/uploads/elementor/css/post-1464.css?ver=1661389242
200 OK 441 B URL HTTP/2 bassadventuresmexico.com/wp-content/uploads/elementor/css/post-1464.css?ver=1661389242
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1628), with no line terminators
Hash d2d481ba251acb968589336cc2a5b563
6d48e12331a4238b077bca9bdf0df487a7f63570
40e8e073891a2727d298ab6bcd8f9d60de202a2700c08bd090ac017136f704f1
GET /wp-content/uploads/elementor/css/post-1464.css?ver=1661389242 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:00:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 441
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.7.3
200 OK 39 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.7.3
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65493)
Hash 17685338b6a604e345b8a2c89c568a32
38c5afc918e282c4e3e3d74ce7acdc0169a58166
d3f71338d25554220f62d6870efd67fb6a087bec2529a44cb8d47588e05e894a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.7.3 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Mon, 15 Aug 2022 20:44:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 38640
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.2
200 OK 12 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (59158)
Hash 1a18e4235e62d6fa2e4dc034e145cff9
6b0f4071cf2ffa226cfada99e50ce64457be3c44
e3be1d4f6fc29a16f1d13472f5404aa6fa90330a5657264f67cb73897e15a2db
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:57:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12348
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/uploads/elementor/css/global.css?ver=1661389243
200 OK 3.5 kB URL HTTP/2 bassadventuresmexico.com/wp-content/uploads/elementor/css/global.css?ver=1661389243
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (30543)
Hash 9f46b45fabeae975df6ff7fa37a6e7d6
f13553f35acc5aff5630b18a01e6de678876a779
822c9783490fff28f6eaa9466e9c65cfa757fd1d920fec9b913245099dabcb05
GET /wp-content/uploads/elementor/css/global.css?ver=1661389243 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:00:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3497
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/uploads/elementor/css/post-650.css?ver=1662493187
200 OK 1.2 kB URL HTTP/2 bassadventuresmexico.com/wp-content/uploads/elementor/css/post-650.css?ver=1662493187
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9010), with no line terminators
Hash a92cc9a27a319db3ad517ed8558429b7
a1e493394ac828ee6da10940b2668b5272aedb93
10dd50e44fabc86b4af9eb649a4350fa2eb99f790b7758d07a124d907c553867
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-650.css?ver=1662493187 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Tue, 06 Sep 2022 19:39:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1186
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/uploads/elementor/css/post-1623.css?ver=1661389243
200 OK 359 B URL HTTP/2 bassadventuresmexico.com/wp-content/uploads/elementor/css/post-1623.css?ver=1661389243
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1302)
Hash 7041ccda74bb991e2b8b284e240cad81
6350102722269e8041cedc5cac313c546071b967
7dbb125d5827639eb00b6d4a9cc8fe779e64c8dbb0ed7e231a9e87ab527e2052
GET /wp-content/uploads/elementor/css/post-1623.css?ver=1661389243 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:00:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 359
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/uploads/elementor/css/post-1697.css?ver=1661389243
200 OK 227 B URL HTTP/2 bassadventuresmexico.com/wp-content/uploads/elementor/css/post-1697.css?ver=1661389243
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1056), with no line terminators
Hash c52ed4d59472d3dc0d045beb0eb2e854
9e5d6742f116969a8cbf28e6629faa54751810d9
c703ab1580bf5f0136c98d9cc51bbe7c8b52374e9f57fdae2dbe3c842a42647e
GET /wp-content/uploads/elementor/css/post-1697.css?ver=1661389243 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 01:00:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 227
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/css/bootstrap.css?ver=3.3.5.1
200 OK 20 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/css/bootstrap.css?ver=3.3.5.1
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1068), with CRLF line terminators
Hash ff562663ce7171305e7ca0968a6ce254
a3651a93a7e20b51fe8cf50a8fd1505aee895494
3b6d27f93b7c056ce7a16b69771c87f446d86e40f06e718d7db28c0028d670bd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/css/bootstrap.css?ver=3.3.5.1 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 26 Mar 2020 16:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20476
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/css/bootstrap-theme.css?ver=3.3.5.1
200 OK 2.5 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/css/bootstrap-theme.css?ver=3.3.5.1
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 02af05ce1f892695a7eaf18ab35b49d5
e8589799c5d3036be7938b4c9e7117761fa179df
b9e734333aeda5c3301bdf18539edf2363a29414e8a807cd1ea5646e51815ab0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/css/bootstrap-theme.css?ver=3.3.5.1 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 26 Mar 2020 16:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2511
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/css/client.css?ver=8.7.6
200 OK 2.9 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/css/client.css?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
Hash 7e01f6d76eca40e85847d82cfb4524e5
5f042c3b6a38b193016d0c274d3bc67038dab26b
bc392f3e228ba31efb666e26f2c6ee55430a2cd96e764796a3e884fb341f6317
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/css/client.css?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 26 Mar 2020 16:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2854
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/css/calendar.css?ver=8.7.6
200 OK 3.6 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/css/calendar.css?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
Hash 7861174a00476fd74e01a42f909ddbca
edd09cee08cb3fec7f6d9ecc0853bc2a9f0b73a7
6a521e2bc70757f934d6d6d49a97a1426f06b3ba5657707e36861909f8ab73ac
GET /wp-content/plugins/booking.bl.8.7.6/css/calendar.css?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 26 Mar 2020 16:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3619
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/skins/premium-marine.css?ver=8.7.6
200 OK 1.9 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/skins/premium-marine.css?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
Hash 9096485c81993ff1780349210f679519
65cfaa852a241e491a5e4918bc59fc96c8b14ba7
1e9330de7dbc91000f8b2026cbcde4ae753d06b9098caaf3b78966ff0a5608ae
GET /wp-content/plugins/booking.bl.8.7.6/inc/skins/premium-marine.css?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 26 Mar 2020 16:37:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1870
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/css/search-form.css?ver=8.7.6
200 OK 1.2 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/css/search-form.css?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
Hash c4833b9da3b5445408c51d7d8da27862
cafe280aa0de29568ba7b29396e59069df06a4ec
78f6afef912f67c096af0a334c55dcc0cfd06bcd395ccd2b28c65935eeb003fb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/inc/css/search-form.css?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 26 Mar 2020 16:37:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1208
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/css/timeline_v2.css?ver=8.7.6
200 OK 3.4 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/css/timeline_v2.css?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 07d178f3150a0e88c142c1cddea9464c
7f4b8cb58c272aba138645f4e70c7507f641fc6c
1bed42bf062017f30f04530ba4490e2b37307844e845c4b989c118e4effeb861
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/css/timeline_v2.css?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 26 Mar 2020 16:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3356
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/css/timeline_skin_v2.css?ver=8.7.6
200 OK 2.1 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/css/timeline_skin_v2.css?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 18e610a35eb688adbb76315f48ad2c96
770b23eecc133545fdef98398f8bc2e76bbcb84d
763d0fc882722de6422e269726885526046b440ccd52dcba0d600cea05ae408b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/core/timeline/v2/css/timeline_skin_v2.css?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 26 Mar 2020 16:36:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2080
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
200 OK 12 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (57726)
Hash df089e1b628a4dd280cef3436a7c6bc2
6bb37810b1f5eb56a599da88830045e83e6c0f07
7c2c9fb6d1b9bec6fd6196c19a02e8db29d9d6a4f8bac0436516966db45135fd
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:57:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12098
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
200 OK 286 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (483)
Hash 8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:57:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 30 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65447)
Hash 6bd5da2d1bd0b5be823db778bac48d2d
9fa703cd35f3ff4e14d43df8e327cf048859d245
ac6b4c97768bd34aa24034b36618132ea9f27ce2b59846e9888299c739d12f9f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30094
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/wpbc_vars.js?ver=8.7.6
200 OK 1.3 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/wpbc_vars.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
Hash f1f4adc4648d7a1f80781fbf2ea806d8
c6b2ae2301870bafd565efda55f73aa34edc6958
434acf6c4fcbaee42df4e7ed4a17ce2ffb50deae889b7db5e3cd57e8b4aaa76e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/js/wpbc_vars.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1271
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/js/bootstrap.js?ver=3.3.5.1
200 OK 13 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/js/bootstrap.js?ver=3.3.5.1
IP
ASN #47583 Hostinger International Limited
Hash 6259a90c65a0629838b2ab947a28cf5a
a353cc8a017e7bc5da17e2d9b9296959195d01b4
8bfac8d304fd40dc03591e35fc561d96a15298a836136db319d3ed8a474961b1
GET /wp-content/plugins/booking.bl.8.7.6/assets/libs/bootstrap/js/bootstrap.js?ver=3.3.5.1 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13393
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/wpbc-migrate.js?ver=1.1
200 OK 526 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/wpbc-migrate.js?ver=1.1
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with CRLF line terminators
Hash 52c45f9211c1eace9a3368d4a79c891d
7b7952620d6ce6d601d88420eb5c9eb806347e5d
389c06b5f24380e92c52e3afa9c98be8578700030c1fd41340a7e8256954a5a5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/js/wpbc-migrate.js?ver=1.1 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 526
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/client.js?ver=8.7.6
200 OK 14 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/js/client.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (373)
Hash 1be2217b198186b2c8867d35e05312fd
af091fe1651d24cb9085d97355cb309548483d4f
fd5726eaa7e7127afa8cd177cc273c482d3c1a39251562a5aef23836e482df96
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/booking.bl.8.7.6/js/client.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:36:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14534
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/form-conditions.js?ver=8.7.6
200 OK 2.1 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/booking.bl.8.7.6/inc/js/form-conditions.js?ver=8.7.6
IP
ASN #47583 Hostinger International Limited
Hash de7301e529fb6dc7258391df3a5a690e
c9c29b78d01ceadccdf6d04ecdf5a57e5905f7ac
38197eb2510bbce63fb5752491b1ce436c87e541227a2e7faa0ee4ece22a3fdc
GET /wp-content/plugins/booking.bl.8.7.6/inc/js/form-conditions.js?ver=8.7.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 16:37:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2118
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/uploads/elementor/thumbs/23519191_1941711289416290_8225358242800792018_n-pudlmunyhtgk5tqsgz6dct49jdl4uug3j9iaihblo0.jpg
200 OK 58 kB URL HTTP/2 bassadventuresmexico.com/wp-content/uploads/elementor/thumbs/23519191_1941711289416290_8225358242800792018_n-pudlmunyhtgk5tqsgz6dct49jdl4uug3j9iaihblo0.jpg
IP
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 400x600, components 3\012- data
Hash 2c03dd3fafe703ff6b0e08bd05272e54
3496fb2ae60b2fdbd76337fb35a32623cc81a9d5
a7df2a48d707db7b464af288a5e5113a4c7fa640e47c65f5e20d0066a47c186f
GET /wp-content/uploads/elementor/thumbs/23519191_1941711289416290_8225358242800792018_n-pudlmunyhtgk5tqsgz6dct49jdl4uug3j9iaihblo0.jpg HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: image/jpeg
last-modified: Tue, 06 Sep 2022 19:07:49 GMT
accept-ranges: bytes
content-length: 58015
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.2
200 OK 2.4 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (10019)
Hash 0ff5c9c00e6ad8cfb6dbee2ad7f2034f
c0453bab166d64c8c014a2c32210482264d0ff51
925b038832863537ebb25012411091ccc20ed608e8a01edf6754b0665622cc7e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: text/css
last-modified: Thu, 25 Aug 2022 00:56:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2427
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
200 OK 3.2 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9115)
Hash 8aafe7e447302dbdb5a84f5c94266b6a
f1aac0c78ed1f732e67218bf49e92d1af516cd83
4a06fa88cf67f425eadc284795ea20687ef52fc5ac6b9633b11733c011898128
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.8.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 01:10:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3245
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
200 OK 972 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2
IP
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash d045d9ce7e463affafc3f915e223ba52
c6ae5ac29729d419b69597211a90cb3b91c47cb4
6b82c75f2308e128481b451379e534eaa37cd8a2d23f6aee576d0dafc87d9b2c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.8.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 01:10:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
200 OK 899 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1668)
Hash 22d65ba38528349e705d912ce26bf8ac
c89ba006009043d93b88ff155b4fec8797330550
6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.8.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 01:10:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
200 OK 934 B URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2938), with no line terminators
Hash cf25dd071a208312bdc07f34d2cee027
76119563119eaae392ecc8903c989d98d0b93002
8635ba2cad8f887e72779bd526f8738ff6343c74cba715caf2eddea383ba7ce6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.8.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 01:10:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 934
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
200 OK 3.7 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP
ASN #47583 Hostinger International Limited
Hash 49f2cbbe230fddf582099e1f57f1610a
4a7c5dace9749f4de71b4794107451ea9b55f73b
2e8623ca04c5c4f4ad2208811cd865bda0aad6f3e0f8b8937f2ffff1e713d5cd
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 05:02:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3715
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.7.3
200 OK 30 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.7.3
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65493)
Hash d30cf3b204d1438e22dca80f41f73341
63c000b53c02c73e6cbab331f78de5ab548e68c7
eb8b95662f47477eb822c0fc1a2d87aaa0cc9fb83d2f027dd7be2f07914690be
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.7.3 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 20:45:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29908
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3
200 OK 1.5 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3703)
Hash 7a67ac94b6ebafd94c82dfa591065fdc
5190d1ef32403a4ad195ece088c0fba145562f13
2bd8dfe375603969948af382eb62f2957f2c51bfe8fd1db0c2f64af284cb0107
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.3 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Mon, 15 Aug 2022 20:44:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1477
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
200 OK 4.6 kB URL HTTP/2 bassadventuresmexico.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (15660)
Hash e49cd72bf1b9328874f15cde4ab024ca
6689f7e40bfbb45ea7ac0acf3dbb7b91e8096296
d0814eb3e65f5fdedb6879d4b223859d294e1c8ae6af5734258976f4b30d84fa
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 26 May 2022 05:02:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4582
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
200 OK 34 kB URL HTTP/2 bassadventuresmexico.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65280)
Hash 3bc62278ab6ea875228816601151b8bf
4a2e8f640b8dd2a0099685b28ea6fccc683fcbbb
6e73cacfd010b98d36c648f40c8e042cbcd53214ed81f357103bbe20c6524cd0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: bassadventuresmexico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bassadventuresmexico.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 11:02:06 GMT
content-type: application/javascript
last-modified: Thu, 25 Aug 2022 00:56:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33665
date: Sat, 24 Sep 2022 11:02:06 GMT
server: LiteSpeed
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block;
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 11:02:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 11:02:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 11:02:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 11:02:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 11:02:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bassadventuresmexico.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:14:36 GMT
expires: Tue, 19 Sep 2023 21:14:36 GMT
cache-control: public, max-age=31536000
age: 395251
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bassadventuresmexico.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 15:39:46 GMT
expires: Sat, 23 Sep 2023 15:39:46 GMT
cache-control: public, max-age=31536000
age: 69741
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bassadventuresmexico.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 228479
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bassadventuresmexico.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 228479
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bassadventuresmexico.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:52:00 GMT
expires: Thu, 21 Sep 2023 14:52:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 245407
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 11:02:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d78fe23-176d-4858-a42b-1f7944845b79.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d78fe23-176d-4858-a42b-1f7944845b79.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2255aa8ee173094449d814a20238a8ac
7d480011939a32baf53926a144eac807ac397bcb
1db716c4c69c851100e788f78bd7c04282d6878068361e06a29fe44dd6ffee32
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d78fe23-176d-4858-a42b-1f7944845b79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4866
x-amzn-requestid: d96de29c-d64e-415e-9cf7-85a0fad34967
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tCNGjuoAMFpeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2874-548fc71f4a4a9ad74298ee7a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: SBMDqLaDDc-YOHE3gTp-QZSOxwzpsjHi8tLMpoQUmm8XqNdr3HFYmg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:18 GMT
age: 47455
etag: "7d480011939a32baf53926a144eac807ac397bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
151.106.103.193
108.156.28.51
93.184.220.29
23.36.77.32