r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3806
Expires: Tue, 15 Nov 2022 00:42:26 GMT
Date: Mon, 14 Nov 2022 23:39:00 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1594
Cache-Control: max-age=127131
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:00 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 10:57:51 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 14 Nov 2022 22:44:16 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3284
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c15cef160d1514fc977ed4c4e97086c
ffe4ce3199658a1fc7a45d1607df40ef3911621d
db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7693
Expires: Tue, 15 Nov 2022 01:47:13 GMT
Date: Mon, 14 Nov 2022 23:39:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Rz4LPqmhxZ7K5yH8a+YEBx3fQAocSVoaghQ5MrH4F3mphAHmklss3KID82YiCALsoacfCRmqZhw=
x-amz-request-id: 9P4GW35ZFZA95T2K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 14 Nov 2022 22:51:17 GMT
age: 2863
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
segurabr.com.br/
216.172.172.198301 Moved Permanently 0 B IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 14 Nov 2022 23:39:00 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://segurabr.com.br/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 23:39:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 14 Nov 2022 23:25:01 GMT
cache-control: public,max-age=3600
age: 840
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 796e5f0b3396b0c226b397a6a5b18835
08c5a7da6fbadd2ddf68ad3a7be17b273e1e30ce
65512225b34586b89eb0290b20ed2255d2681cf8160e6ad068fc21c6ce3e1503
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65512225B34586B89EB0290B20ED2255D2681CF8160E6AD068FC21C6CE3E1503"
Last-Modified: Sat, 12 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21576
Expires: Tue, 15 Nov 2022 05:38:37 GMT
Date: Mon, 14 Nov 2022 23:39:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3264
Cache-Control: max-age=123744
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:01 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:01:25 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.94.42101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.94.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sfmaUFgIqZma2or4t6mGrA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vwjdBKdObtHpQbASgfHK9kS1poA=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1af800aa2b326e8af0f2640db68a7a0d
4c617814f5c705737bf4bf111c53bf40bb932af5
594f573b6e73b1d385ae75a518c18a0bb833ac4a3f894fcea377096c756f8cc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segurabr.com.br/wp-includes/css/classic-themes.min.css?ver=1
216.172.172.198200 OK 189 B URL HTTP/2 segurabr.com.br/wp-includes/css/classic-themes.min.css?ver=1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 19:41:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 189
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/induscity-vc-addons//assets/css/flaticon.min.css?ver=1.0.0
216.172.172.198200 OK 539 B URL HTTP/2 segurabr.com.br/wp-content/plugins/induscity-vc-addons//assets/css/flaticon.min.css?ver=1.0.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2030), with no line terminators
Hash 011e46bec9164fd436ef041b7be1ac0e
b895907307660ef4b9e731f440097254eb311dd5
2331ca451df48cd9d2852cb302b90f0a85630b1095891e04ebe803319294f460
GET /wp-content/plugins/induscity-vc-addons//assets/css/flaticon.min.css?ver=1.0.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:34:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 539
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5
216.172.172.198200 OK 986 B URL HTTP/2 segurabr.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash af8993893cf0e8840cfa07c28152f7d7
020642adb362f41142e612a4aed05f187cc6fbe0
a76fed90a602ac9bc687d6889a8dac2bd929437f84af088f257a3559543841cc
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 11:41:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 986
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5
216.172.172.198200 OK 8.5 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7973e77b98802c0ea2d4016644d1f06c
3859b417c6bef2db0058724fad81e5df2166fe27
148eeddc5b558d00af2517b77f689158b9dea1a6bf52e6e8cd9ece6e0cf0cca9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 11:41:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8481
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/css/font-awesome.min.css?ver=4.6.3
216.172.172.198200 OK 6.7 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/css/font-awesome.min.css?ver=4.6.3
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28900)
Hash 832c8c42861a6def7818ee8a1d40d370
bf48b37492f84a2d3a99a8e6754b85f56b4a900d
d2fb84b34fe77304be1729f123d2776c93bd45590fcf6fb38301be6636172006
GET /wp-content/themes/induscity/css/font-awesome.min.css?ver=4.6.3 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6709
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-438691833
142.250.74.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-438691833
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 572ea36bccddab2a397d04f5be6bd02e
c32b3891951343822bc8d3a9d7768f665d917c07
8ac0059766d3fc3bbbab4cf0224741351440258ccf0edc44d139d993eeffd82d
GET /gtag/js?id=AW-438691833 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 14 Nov 2022 23:39:02 GMT
expires: Mon, 14 Nov 2022 23:39:02 GMT
cache-control: private, max-age=900
last-modified: Mon, 14 Nov 2022 22:32:10 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53027
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-E2BNRKHXXY
142.250.74.168200 OK 65 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-E2BNRKHXXY
IP 142.250.74.168:0
File type ASCII text, with very long lines (2917)
Hash 3a30da07b022b81da50fa737ee5b0e7c
c678c99d6f3c83d1ace0807b2d3cde906b534bf8
79215ddd728a378759641c95c6158fe51774f90832de1b6e5151f3ba8b767a64
GET /gtag/js?id=G-E2BNRKHXXY HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 14 Nov 2022 23:39:02 GMT
expires: Mon, 14 Nov 2022 23:39:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64608
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1af800aa2b326e8af0f2640db68a7a0d
4c617814f5c705737bf4bf111c53bf40bb932af5
594f573b6e73b1d385ae75a518c18a0bb833ac4a3f894fcea377096c756f8cc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segurabr.com.br/wp-content/themes/induscity/css/font-awesome-5.min.css?ver=5.15.3
216.172.172.198200 OK 13 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/css/font-awesome-5.min.css?ver=5.15.3
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (62433), with no line terminators
Hash a2b5c9055cc68efd44c636ea6fbed8a8
5d1e747fe7dac8e398ed4898840be8d9c8cf8028
2fd2dc5009a0ae5c1487daa2b2a91a6d028130695cd2f78832bcd373a3988402
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/css/font-awesome-5.min.css?ver=5.15.3 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12854
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity-child/style.css?ver=6.1
216.172.172.198200 OK 331 B URL HTTP/2 segurabr.com.br/wp-content/themes/induscity-child/style.css?ver=6.1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 948aa2fb8af61bfe23f458066f6fdbe2
68a65350c711c4cdf3ef280ad87cde59b70f8bc6
80f3f85279b967d21543a168224bfe069c9777c4187b9d53a0ded08052cb3a36
GET /wp-content/themes/induscity-child/style.css?ver=6.1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:35:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 331
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/css/slick.css?ver=1.8.1
216.172.172.198200 OK 1.4 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/css/slick.css?ver=1.8.1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b3a8aabdd71af02a06d52f5e8b34ef31
27f48e591e1195c5404d859943dce61b6ed3ae64
677eabaaee4b543ab045fda9ddd7b71453530bba469d4e7815ff6d953eb5fa5b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/css/slick.css?ver=1.8.1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1355
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/css/photoswipe.css?ver=4.1.1
216.172.172.198200 OK 3.4 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/css/photoswipe.css?ver=4.1.1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 82654ddff8b289614bfcfe78a9c333c3
c68840d002be2b74ee164a8bd750963bf0ba700d
13841063e917db29fb9f7ba67d8ff596e0b7c31f1265f3e39efe26bd33e7c8e6
GET /wp-content/themes/induscity/css/photoswipe.css?ver=4.1.1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:09 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3359
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
216.172.172.198200 OK 4.6 kB URL HTTP/2 segurabr.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 19:50:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/revslider/public/assets/assets/dummy.png
216.172.172.198200 OK 68 B URL HTTP/2 segurabr.com.br/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Mar 2022 14:55:18 GMT
accept-ranges: bytes
content-length: 68
content-type: image/png
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_TOP.png
216.172.172.198200 OK 12 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_TOP.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 220 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash f6326da5fc23b9ddf87c61616123d8cd
c37d2a71c8f07e9e73302363d15ddf59ad4f5982
356ed146fd70e25e3ed194ad92ff5d793a6fbccace2101dbce4a155bf9d2d44d
GET /wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_TOP.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Aug 2021 22:47:10 GMT
accept-ranges: bytes
content-length: 12357
content-type: image/png
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/js/waypoints.min.js?ver=2.0.2
216.172.172.198200 OK 3.1 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/js/waypoints.min.js?ver=2.0.2
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7813)
Hash 970c7e2d13d34a03358d67911f709753
60a77114717a9a7b1f7c0fc8f5c5e75e1aadd918
7de16f1719f00494e3da3937fbebff7b96cd85ebd0678876dd548f0859b1bc76
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/js/waypoints.min.js?ver=2.0.2 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3130
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/08/h775-portaria-virtual-400px.jpg
216.172.172.198200 OK 50 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/08/h775-portaria-virtual-400px.jpg
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x222, components 3\012- data
Hash 30f2d0804b56d3e9b892d58cc98289e0
2b76f38d34c23535c2e280e014794baa1c74001f
9556487aa049614f4fb09c2ad39fd28f79bf16b4fa2f758b22b5552d2959dac1
GET /wp-content/uploads/2020/08/h775-portaria-virtual-400px.jpg HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:18:06 GMT
accept-ranges: bytes
content-length: 49473
content-type: image/jpeg
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1
216.172.172.198200 OK 5.3 kB URL HTTP/2 segurabr.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 19:42:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/induscity-vc-addons/images/play-icon.png
216.172.172.198200 OK 2.2 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/induscity-vc-addons/images/play-icon.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 07a088c6f8801698be374a65fb034a32
3a50f09d144f10727010b212ea42ac98f826d295
619bbe65c68877e3781c4b5a935c401bf430e5df4edde0192477d0775d0b6c81
GET /wp-content/plugins/induscity-vc-addons/images/play-icon.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:34:26 GMT
accept-ranges: bytes
content-length: 2189
content-type: image/png
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0
216.172.172.198200 OK 4.4 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (34217)
Hash 63f7475a42505f823e6f1fdd44f1c196
9556e2580cda45f63b3626969c837feb3ec84d6d
06de1933a93a936b902e3f0dfc40bb5e66c7ec33b92bf9cb80c2d22135a231fb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4448
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
216.172.172.198200 OK 12 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (56243)
Hash f0bd0ea24375b9c2092118b511e451f6
a1a279b6d5658fcf366bb8b80c5ee20dab370063
04d1c7db00dea2597df9cd9fccd9d411073f3f70b72029d5acd38c68232d0672
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12216
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
216.172.172.198200 OK 7.5 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Mar 2022 14:55:50 GMT
accept-ranges: bytes
content-length: 7536
content-type: font/woff
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
216.172.172.198409 Conflict 83 B URL HTTP/2 segurabr.com.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4452
Expires: Tue, 15 Nov 2022 00:53:14 GMT
Date: Mon, 14 Nov 2022 23:39:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4452
Expires: Tue, 15 Nov 2022 00:53:14 GMT
Date: Mon, 14 Nov 2022 23:39:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4452
Expires: Tue, 15 Nov 2022 00:53:14 GMT
Date: Mon, 14 Nov 2022 23:39:02 GMT
Connection: keep-alive
segurabr.com.br/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19
216.172.172.198200 OK 16 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash b0bcbc394a62e7b2511c857f2901e3e3
19d84d3456aa647630c105dd748cd7d03018ceeb
72d751cf60ddc49d432a28e239ffa42025bf517a5f2891fd861b28b472382943
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Mar 2022 14:55:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16432
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.15
216.172.172.198200 OK 2.5 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.15
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6296), with no line terminators
Hash fec6ba784bbcac73f93e36fcfb78f1bc
5f1590cec792cb71e167a856017bc0847d316536
c55e71d262c67347c4ff3e7cb9dd53da79f4527ba2597304950d7dd01d404ff0
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.15 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 07:42:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2497
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:45:57 GMT
age: 6785
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/js/photoswipe.min.js?ver=4.1.1
216.172.172.198200 OK 15 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/js/photoswipe.min.js?ver=4.1.1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31625)
Hash 23e24a901a451a6cdf58084a1e5c4134
318b49171324411011ab8e0e3eea363e0a4b00d7
e07d1427052e2e0b8a4776b8810ec8577b56a9819c3d30f11f27637b7b801505
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/js/photoswipe.min.js?ver=4.1.1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14659
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c5f45accbd2d3551103631fa77deee8f
7295ef4c52bcea1be24b963d7ff170ef5bacf713
495e2cef9d9ebec66f1ddcf478512af7e37a301b562d7b75e5d28bb7753d2290
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F594089c3-0cc3-4e41-b8df-290b4d9aa986.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9311
x-amzn-requestid: ccbd88f7-a72f-4f7c-868d-907b2dbea1ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ9_UEQ4IAMFmzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d76c8-4c0b800d7bf5064346932e15;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 22:10:16 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: bJa_vwFYVNizWkPP2aLO8cOJiMqMfZmD34-hAnOlmJ0K2OO3dghWvw==
via: 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 22:09:42 GMT
age: 5360
etag: "7295ef4c52bcea1be24b963d7ff170ef5bacf713"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
segurabr.com.br/wp-includes/js/imagesloaded.min.js?ver=4.1.4
216.172.172.198200 OK 2.1 kB URL HTTP/2 segurabr.com.br/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 19:41:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2103
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4af82634a56d0978c9b4689c8b7eb8ae
4b40ef08bd37cabfcb937053dd58012abdd6620f
476a9f850cfbe41adea1d699fdf4f04424674c53b268681fa6fc0e226bed0797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F040363e6-40a3-4d68-bf2e-ca83ac195dcc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6318
x-amzn-requestid: 6469c84d-fc45-470e-a438-2fb81dae70c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhPtyHpXoAMFfWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63705ff1-53ab9291301773c048f69696;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:09:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wqcEh0RSwy9RNH7gsYRXlweR2UEaMMHPH4zIg-kY58Lfsx2wVcOKBA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 03:45:17 GMT
age: 71625
etag: "4b40ef08bd37cabfcb937053dd58012abdd6620f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/js/photoswipe-ui.min.js?ver=4.1.1
216.172.172.198200 OK 4.4 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/js/photoswipe-ui.min.js?ver=4.1.1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (9765)
Hash 7c4df84e961a68629ec61868030674de
4f903c76ad846ef6990e7a9312b2fde2f4189ab6
b9220202d8fc13cba2574e9ee0931b8d7c3d98e11ef6e3ad30482d16fba6ef16
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/js/photoswipe-ui.min.js?ver=4.1.1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4396
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b891dd714ee24b92f59f0697dd45c2b4
8b54f502df3eb318b87ff8a3313007876752e181
d50396bc97a46452ed3af30dbfffc9fe75cf7d4ec347c0a8460d99a6affd1fb2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11e6547-de5b-41d6-a923-9194b88afaba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5856
x-amzn-requestid: 5261109d-ca5e-4b77-b0a2-17b634a51fd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhPtpFvRoAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63705ff0-570bdfbd329fe34b47d8c7a4;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:09:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xzBHbUXe_VMnc5T1FV00IoyKZ075qXakhZTXJMW_QQ8bGi-1QL4z7A==
via: 1.1 ba55932f4947672586f0865cea81e028.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 03:21:25 GMT
age: 73057
etag: "8b54f502df3eb318b87ff8a3313007876752e181"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/js/plugins/jquery.counterup.min.js?ver=1.0
216.172.172.198200 OK 938 B URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/js/plugins/jquery.counterup.min.js?ver=1.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2cd783d418462db277dcafc7639d81e9
7e1d4de8bd82a5000a54bdda55e56d066942e703
3cbac9826a53c5558ad76217d62f2114bb50940360defabd75289836e9f57ac8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/js/plugins/jquery.counterup.min.js?ver=1.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 938
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82dd8907-ad5b-4fb4-8332-723bcde2ae7a.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82dd8907-ad5b-4fb4-8332-723bcde2ae7a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9aacb6df5831d597738a5d5b7ffba383
e20cf704cb5a12385d19d045cd221fdf3f913236
b990cc44ba753b916cf74f7b950833e58551dad0bcd380f1de311f54444f32bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82dd8907-ad5b-4fb4-8332-723bcde2ae7a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8814
x-amzn-requestid: 5227b724-752f-49df-845b-eb3d75d293f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOA9SFawIAMF5lQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368aebb-18843b2a043aa9f22513cc89;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:07:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NkGpNV_WQL5pPVRzIAdxuLfNjHmeRn3yFOYA-iugjpX3x3XOyTLb_w==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 02:01:11 GMT
age: 77871
etag: "e20cf704cb5a12385d19d045cd221fdf3f913236"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/js/plugins/jquery.tabs.js?ver=1.0
216.172.172.198200 OK 368 B URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/js/plugins/jquery.tabs.js?ver=1.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d17c8fc22894cdc5075269fc6b365d99
1893c85181e356a098f9c86230f829cffd9edcd1
7af87a1f424dfd381e7244cfd6bf98dd6eb79b12111bef95cc14477781875369
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/js/plugins/jquery.tabs.js?ver=1.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 368
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/
216.172.172.198200 OK 50 kB IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash dbbc8f3b5fb8c713630d9fb423338d31
c29c793645ce42c7aaf5c1a55a7c803147204e60
b00202cd670db62334948db41f7cf1078c58a91daa51516299c9ae173b9dd2a6
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://segurabr.com.br/wp-json/>; rel="https://api.w.org/", <https://segurabr.com.br/wp-json/wp/v2/pages/3503>; rel="alternate"; type="application/json", <https://segurabr.com.br/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Mon, 14 Nov 2022 23:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2600ea13-5799-4002-b4c4-17346e546f28.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2600ea13-5799-4002-b4c4-17346e546f28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd518be3073897688dda8b3e1fe3ec4a
ff06053f1c335644228a81b6caaae5a3e6f749fc
25e9e36eca5fe29b7b37b6cd506c38c6a684f5c37d7c859d45d286a089315619
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2600ea13-5799-4002-b4c4-17346e546f28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7086
x-amzn-requestid: b38b60d9-78ed-449e-9549-89ec04332e12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOA1oE3HIAMF2Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368ae8a-43dc43062e6d5cad5ef4ffa5;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:06:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HTVitxhQyDjv3h8xSnFgNAdHCiOC8EU1VKjf1YWacqa1hwCaGQZM0A==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 18:46:59 GMT
age: 17523
etag: "ff06053f1c335644228a81b6caaae5a3e6f749fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
segurabr.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.1
216.172.172.198200 OK 31 kB URL HTTP/2 segurabr.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (47826)
Hash 910941b56d49028e6200e8d494724626
aec02763ffa4cfce537195d943f4ebb4b91e227a
61d6a4fefa22bae742ed9689e843eeba5dbef36171291ba4c0b3e0ebec055054
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 19:52:02 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/js/scripts.min.js?ver=20171013
216.172.172.198200 OK 2.5 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/js/scripts.min.js?ver=20171013
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7075), with no line terminators
Hash c132b24e1a27c00afe35e0c43d48993f
96b0a2df1ebf062721c48edef527422a073ab79f
46710a9af236b2b431cd9fa4b6b86a84d1baa77caba4d61b0d2c44324c5c0687
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/js/scripts.min.js?ver=20171013 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2474
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.8.0
216.172.172.198200 OK 981 B URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.8.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2326)
Hash 16688a3bf02edcd4f3467ac2e52703e4
b02bb48ab012727900b070a5fab6e69428ff627f
59f4d4971d85febde80dc2233d4c4734b48394f12738a8f6a31f3af74ced900b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc-tta-autoplay/vc-tta-autoplay.min.js?ver=6.8.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 981
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/js/plugins/slick.min.js?ver=1.0
216.172.172.198200 OK 14 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/js/plugins/slick.min.js?ver=1.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (42862)
Hash e61b26be7b27fbf2a5c2f479364c12b8
ff046102856e16854639a9862521c193fa05e9d7
19f098db827ce2943ab549c6fb9b142c4cc70aa9ecd7d3afc657a3a0eed8be88
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/js/plugins/slick.min.js?ver=1.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14332
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.8.0
216.172.172.198200 OK 1.4 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.8.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3955)
Hash 9ec1ccfc366375ca44b576a935a95db7
6c1e9644ad7cf1b8c20225b35a0d7e9719b0dbdf
eef75027e7af220b209df085f03fb5914b046fda0d1cc4e6b5bff9abb7e20ffe
GET /wp-content/plugins/js_composer/assets/lib/vc_tabs/vc-tabs.min.js?ver=6.8.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1380
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
216.172.172.198200 OK 7.1 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19905)
Hash 11c71ebe3b5ee1cc9acd2fcfd152f186
2b36c7b86094a60c194187c30273fd4434b9ed6b
ac582bbaaf2eedfff77b28db99253070f31d0262e3c8ca7751cbfdb0ba1fa6f4
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7084
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
216.172.172.198409 Conflict 83 B URL HTTP/2 segurabr.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.8.0
216.172.172.198200 OK 3.2 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.8.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10896)
Hash dc3f75e43c4d4bf48b833bd4d2246097
7a27db01cb546748fb376247b9e1b711f7edd75b
5a51fed5944ded31a9d69384f06f7eefc353c1e398dc7101dab3cda64d5f222c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_accordion/vc-accordion.min.js?ver=6.8.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3205
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
216.172.172.198409 Conflict 83 B URL HTTP/2 segurabr.com.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/induscity-vc-addons//assets/js/frontend.js?ver=20171018
216.172.172.198200 OK 5.1 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/induscity-vc-addons//assets/js/frontend.js?ver=20171018
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d0512964e60882b132fd3cbb29d6d8d2
49a372e4e57c45cdecd08f72e8ccf3f88021401c
48601e5a847f42fb0c673d4bb2a37cb8cce10d3925d95356d2a9b212654e100d
GET /wp-content/plugins/induscity-vc-addons//assets/js/frontend.js?ver=20171018 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:34:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5056
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_footer-210.png;
216.172.172.198301 Moved Permanently 0 B URL HTTP/2 segurabr.com.br/wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_footer-210.png;
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_footer-210.png; HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://segurabr.com.br/wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_footer-210.png
content-length: 0
content-type: text/html; charset=UTF-8
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 35ad471bf7f157abedbe322e59bb00ae
6f8c57f1c20377b6a1f74fd06849705a6370e291
b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segurabr.com.br/wp-content/themes/induscity/img/menu-seperate.png
216.172.172.198200 OK 99 B URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/img/menu-seperate.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1 x 42, 8-bit gray+alpha, non-interlaced\012- data
Hash d17c7a04347d3f82092261c2c77b7980
57f1831c0d4f22bd0f3208a87b22350af1ff104c
b51b3d823da89cff40f9792435dbe5f64491e7ea6721d759b94635dbd10d2518
GET /wp-content/themes/induscity/img/menu-seperate.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:22 GMT
accept-ranges: bytes
content-length: 99
content-type: image/png
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 35ad471bf7f157abedbe322e59bb00ae
6f8c57f1c20377b6a1f74fd06849705a6370e291
b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 35ad471bf7f157abedbe322e59bb00ae
6f8c57f1c20377b6a1f74fd06849705a6370e291
b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfJpbERySjQ.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfJpbERySjQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16788, version 1.0\012- data
Hash fd24af413cb9cfdc66d2ff712bdfd614
978c3d524cc6a8114d11f78b6292b58c69cb8632
16ab274f0ede84be01a0361263faeb3ff18d2d95d155d6b9d654ef37f87db1f5
GET /s/hind/v16/5aU19_a8oxmIfJpbERySjQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://segurabr.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16788
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 18:51:58 GMT
expires: Wed, 08 Nov 2023 18:51:58 GMT
cache-control: public, max-age=31536000
age: 535625
last-modified: Tue, 26 Apr 2022 16:08:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfLZcERySjQ.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfLZcERySjQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16612, version 1.0\012- data
Hash e9224cf8a465a5349decdad3fd1412eb
53503e38c6c13a2d0cb2189ec56527b5340e3673
078751117ee4d17e09b4d4ac5d9f7358bc4487cb94561df738c6ee000eeffb4d
GET /s/hind/v16/5aU19_a8oxmIfLZcERySjQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://segurabr.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16612
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 19:47:56 GMT
expires: Wed, 08 Nov 2023 19:47:56 GMT
cache-control: public, max-age=31536000
age: 532267
last-modified: Tue, 26 Apr 2022 15:46:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 35ad471bf7f157abedbe322e59bb00ae
6f8c57f1c20377b6a1f74fd06849705a6370e291
b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segurabr.com.br/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.8.0
216.172.172.198200 OK 44 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.8.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e942b0663ec1f8565fea8ae887032e68
9d6857ba8b5872ff35318e5df11e63679bdc9ce7
976263482a3260d99b6c6ee715d7f70150badf5b8ecf9b28b3e0d554817d365f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer_tta.min.css?ver=6.8.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/fonts/hind/5aU19_a8oxmIfMJaERySixhc9V0.woff
216.172.172.198200 OK 12 kB URL HTTP/2 segurabr.com.br/wp-content/fonts/hind/5aU19_a8oxmIfMJaERySixhc9V0.woff
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 11532, version 1.1\012- data
Hash c6989c3b780aa3ee5c01149f93c400ff
44e247028f915da7960075ef6f37f375446d0493
f739370821978c868bfea4a40d0c5285b4b50aab30f2bafb477e5c14d5ab23dd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/hind/5aU19_a8oxmIfMJaERySixhc9V0.woff HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 May 2022 02:04:41 GMT
accept-ranges: bytes
content-length: 11532
content-type: font/woff
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/fonts/hind/5aU19_a8oxmIfLZcERySixhc9V0.woff
216.172.172.198200 OK 12 kB URL HTTP/2 segurabr.com.br/wp-content/fonts/hind/5aU19_a8oxmIfLZcERySixhc9V0.woff
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 11964, version 1.1\012- data
Hash 1aa6af1218ea763d19c34ad4f0ef9db5
9e456da351f9a60b1d2a575df12f92ff633db711
dbba11faa583abb799667d6cba54b064815a593a674e8e6438f5a2f43adaedab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/hind/5aU19_a8oxmIfLZcERySixhc9V0.woff HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 02 May 2022 02:04:42 GMT
accept-ranges: bytes
content-length: 11964
content-type: font/woff
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/fonts/fontawesome-webfont.woff2?v=4.6.3
216.172.172.198200 OK 72 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/wp-content/themes/induscity/css/font-awesome.min.css?ver=4.6.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:19 GMT
accept-ranges: bytes
content-length: 71896
content-type: font/woff2
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/induscity-vc-addons//assets/fonts/Flaticon.woff
216.172.172.198200 OK 10 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/induscity-vc-addons//assets/fonts/Flaticon.woff
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 10412, version 0.0\012- data
Hash fbf10cb40a4867ec46407fb83f88e40e
2263bc3e6f3e4b0f9694351f783a5dc429c6ff96
efdc9fc523faf0f3e734947a69e278f8cf3f5655e7ce9d1e34631049973a7953
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/induscity-vc-addons//assets/fonts/Flaticon.woff HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/wp-content/plugins/induscity-vc-addons//assets/css/flaticon.min.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:34:26 GMT
accept-ranges: bytes
content-length: 10412
content-type: font/woff
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/hind/v16/5aU69_a8oxmIdGl4BA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16216, version 1.0\012- data
Hash 4c5bc71b3cf6f2584725c0bb3e25d391
f051f482061dc48d09c328c45459dd04db5b5547
aca5dec430a7470ff1d8a16f9e7bb3ca30f2ff58f3bd60432cf1dddfa30c9d71
GET /s/hind/v16/5aU69_a8oxmIdGl4BA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://segurabr.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:11:17 GMT
expires: Fri, 10 Nov 2023 21:11:17 GMT
cache-control: public, max-age=31536000
age: 354466
last-modified: Tue, 26 Apr 2022 15:45:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/05/bg-miolo-1920px.jpg?id=3995
216.172.172.198200 OK 20 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/05/bg-miolo-1920px.jpg?id=3995
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x649, components 3\012- data
Hash 613afec322d808ae57d17d5cce69bd5e
662a9899aba93037e8e67694d97bbe70c546c95c
f608ec61d97a879b8d03b8263272cedc1f3ee6abe769ca67a056141f35ba4946
GET /wp-content/uploads/2020/05/bg-miolo-1920px.jpg?id=3995 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:16:00 GMT
accept-ranges: bytes
content-length: 20361
content-type: image/jpeg
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16268, version 1.0\012- data
Hash 376d4202f0309c9a844661c230736ccb
10731308876ef0b8b9763815352d6b18020026e0
5aed4a8f357d7edc1ac50eb4de07867c83e69a10a1711e10053bddce99294b7e
GET /s/hind/v16/5aU19_a8oxmIfNJdERySjQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://segurabr.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 17:27:53 GMT
expires: Wed, 08 Nov 2023 17:27:53 GMT
cache-control: public, max-age=31536000
age: 540670
last-modified: Tue, 26 Apr 2022 15:48:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/08/action-bg-1.jpg?id=4487
216.172.172.198200 OK 42 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/08/action-bg-1.jpg?id=4487
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x439, components 3\012- data
Hash 70267e2c1b2db2b286dddbd478911d6c
0c55e58c204d361d0a6caf990c6494ddf2dcbde9
f5de0e9e62b6b82d880c5fac96106a79f617b30a2ad9296e09d5c8463eec58b0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2020/08/action-bg-1.jpg?id=4487 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:17:50 GMT
accept-ranges: bytes
content-length: 42011
content-type: image/jpeg
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2021/12/segurabr-bg-orcamento.jpg?id=4873
216.172.172.198200 OK 15 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2021/12/segurabr-bg-orcamento.jpg?id=4873
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", Exif Standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2560x1707, components 3\012- data
Hash 4d1b618401bc2fe29ba24cb122d2a836
1a904c492a4cfbe982122791e08b21b03f10f15d
4d3e9aef743947126c09d3c01d69716bb9e9f724595f616c36824281b586b332
GET /wp-content/uploads/2021/12/segurabr-bg-orcamento.jpg?id=4873 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 08 Aug 2022 20:29:46 GMT
accept-ranges: bytes
content-length: 15338
content-type: image/jpeg
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/fonts/fa-regular-400.woff2
216.172.172.198200 OK 13 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/fonts/fa-regular-400.woff2
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/fonts/fa-regular-400.woff2 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/wp-content/themes/induscity/css/font-awesome-5.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:16 GMT
accept-ranges: bytes
content-length: 13276
content-type: font/woff2
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2022/11/sindico-topclass.webp
216.172.172.198200 OK 7.8 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2022/11/sindico-topclass.webp
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3087a8e191fe0f4c1f4bacc8d39c15bd
a23239d2c3844a5a2850e329db9fb3debde26941
60ce01590453243897f206a67d275dc2c83fc9edfc111e70517ae7a1ef9265a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/sindico-topclass.webp HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 17:03:24 GMT
accept-ranges: bytes
content-length: 7830
content-type: image/webp
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2022/11/sindico-york.webp
216.172.172.198200 OK 10 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2022/11/sindico-york.webp
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 167f8ec992621ae62bf37307133ba44c
d9d1202f317cb9ea9d75a16ddf5e61bf52babef4
b88520c700f44723b61e61ca235a10086a9e9dae2a0327fbda1730777475f766
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/sindico-york.webp HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 17:02:38 GMT
accept-ranges: bytes
content-length: 10320
content-type: image/webp
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2022/11/sindico-persona.webp
216.172.172.198200 OK 11 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2022/11/sindico-persona.webp
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b8bb51460a3b0ab3c11bfdf7c9ce7d45
fcb3f75365a3df98f7758fc015b41991d038fda4
c08eddb24beb583ccb4e975acc30792ca15c9fcdd9644fe05fedd333f3b4b4a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/sindico-persona.webp HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 17:00:06 GMT
accept-ranges: bytes
content-length: 11062
content-type: image/webp
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2022/11/sindico-artico.webp
216.172.172.198200 OK 20 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2022/11/sindico-artico.webp
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 320x180, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c19c5992215bf7f36a0ada279717a020
21400ab31daa64c677a2caa2dd6839cb5de58bb1
6d3eb84ac35f29a301b4839d37d07a62fc8a3f9d90457307f3157f880c9f2383
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/sindico-artico.webp HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 17:01:49 GMT
accept-ranges: bytes
content-length: 19820
content-type: image/webp
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/fonts/fa-solid-900.woff2
216.172.172.198200 OK 78 kB URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/fonts/fa-solid-900.woff2
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/fonts/fa-solid-900.woff2 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/wp-content/themes/induscity/css/font-awesome-5.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:17 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segurabr.com.br/wp-content/uploads/2020/06/mall.png
216.172.172.198200 OK 3.0 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/06/mall.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash bd94cf78c9cd639a93a88a474fef1e23
cb4141cd5c4bace1bbfddec7c9b2239d1e7c9d45
33e7cadb98e1b4f5218cae7838b50f496ace96c439c84e2aa5d4d469154f458d
GET /wp-content/uploads/2020/06/mall.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:17:22 GMT
accept-ranges: bytes
content-length: 2980
content-type: image/png
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/06/corporate-man.png
216.172.172.198200 OK 3.3 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/06/corporate-man.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a88fd1c465cafb0a46f497553164801
782d3f99b6051cbd8c04e9c502f3e0378785a03a
c70cbbac7a6bd02bd06c30369f259ed5875c8142e643c7b178b7f963a52361af
GET /wp-content/uploads/2020/06/corporate-man.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:16:52 GMT
accept-ranges: bytes
content-length: 3302
content-type: image/png
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/06/residencial-seguranca.png
216.172.172.198200 OK 3.2 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/06/residencial-seguranca.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 0456da156ecc59deea2420f531596911
2534fbb29e7b1ad127d84b935cde47a15b39fd63
58baace47048a8cd7e10edf0491c465dc9990edfa95f60e8465aef9449307bb2
GET /wp-content/uploads/2020/06/residencial-seguranca.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:17:33 GMT
accept-ranges: bytes
content-length: 3175
content-type: image/png
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/06/varejo-segura.png
216.172.172.198200 OK 3.2 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/06/varejo-segura.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d7d3f31c53a4b780048e2970a94f238
4441fd4e7ac67ef680512ad5394d74bccbd69b93
17d5e1c90b6c5c168b6ef439f859f7bd6a02dbd70c4afd2c5eee8dfe843ff353
GET /wp-content/uploads/2020/06/varejo-segura.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:17:36 GMT
accept-ranges: bytes
content-length: 3198
content-type: image/png
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
216.172.172.198200 OK 14 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data
Hash e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
content-length: 13564
content-type: font/woff2
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
216.172.172.198200 OK 75 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 75368, version 330.32636\012- data
Hash 859c4002d9954718cac1ddea5555698f
2392ce297c92bcf2c7d5a4c461a582dadc8039c8
5054ab369966fea3657ac6af00c3bc47bdc9e7b5114e61d1764be06213ca9781
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
content-length: 75368
content-type: font/woff2
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
216.172.172.198200 OK 76 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 75760, version 330.32636\012- data
Hash 832f6e62aaf3909d6b94c8a9c1e4dd51
4a06418cb56a66af5a1c0f59791469dea1dc87fa
8556fd48cf33ca3028e3fff4042979f224987ee317cc9032dd5bba996b363009
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://segurabr.com.br/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
content-length: 75760
content-type: font/woff2
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_footer-210.png
216.172.172.198200 OK 5.2 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_footer-210.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 210 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash 2aa1f9bd4e2d6ac720df1db8a07f4450
7c78fcfcd45566c85686a5ee6637a44223a712ef
bdb0fecefaa62d2face3dd3def1bd1a4038db77a9ec5941f1c1335355989bf1b
GET /wp-content/uploads/2021/08/SeguraBR-Logo-Estudo-Azul-HORIZ_footer-210.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://segurabr.com.br/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Aug 2021 22:53:36 GMT
accept-ranges: bytes
content-length: 5231
content-type: image/png
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
216.172.172.198409 Conflict 83 B URL HTTP/2 segurabr.com.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
216.172.172.198409 Conflict 83 B URL HTTP/2 segurabr.com.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Cookie: _ga_E2BNRKHXXY=GS1.1.1668469143.1.0.1668469143.0.0.0; _ga=GA1.1.1327589870.1668469143; _gcl_au=1.1.287926026.1668469143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.34.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.34.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 14 Nov 2022 22:41:09 GMT
expires: Tue, 15 Nov 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 3474
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c1abc90e3b0a3418b27aa617d9e6f6eb
ec09eabd2f48a4013c6ae13d0145d5cd5823aa96
57905b7c1951f7340d51107297e02bd848abecfcf701ea8bc1befa105ee0178f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/438691833/?random=1668469143372&cv=11&fst=1668469143372&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&did=dZTNiMT&gdid=dZTNiMT&auid=287926026.1668469143&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.34200 OK 917 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/438691833/?random=1668469143372&cv=11&fst=1668469143372&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&did=dZTNiMT&gdid=dZTNiMT&auid=287926026.1668469143&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (1945), with no line terminators
Hash 10caa65bf54d9cffc9fffe5515e496b8
d34f763059c27878c70eeb991d97554a2c720a4c
92c840678451b4e129ee34291f66ad58391ffd80ddff3806dba9fd7047c00b8a
GET /pagead/viewthroughconversion/438691833/?random=1668469143372&cv=11&fst=1668469143372&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&did=dZTNiMT&gdid=dZTNiMT&auid=287926026.1668469143&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 14 Nov 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 917
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 14-Nov-2022 23:54:03 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c1abc90e3b0a3418b27aa617d9e6f6eb
ec09eabd2f48a4013c6ae13d0145d5cd5823aa96
57905b7c1951f7340d51107297e02bd848abecfcf701ea8bc1befa105ee0178f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segurabr.com.br/wp-content/uploads/2021/08/cropped-favicon-segura-192x192.png
216.172.172.198200 OK 20 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2021/08/cropped-favicon-segura-192x192.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b62c1b4eb3c6866f4d4e19735c42aad3
d5bb4d1a20461a0bd7a45c52dd9621a97ddad079
5c5bac0abd671bd506af766e6c3e8187aeb68d549ecaa676f6b506258a2423c4
GET /wp-content/uploads/2021/08/cropped-favicon-segura-192x192.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Cookie: _ga_E2BNRKHXXY=GS1.1.1668469143.1.0.1668469143.0.0.0; _ga=GA1.1.1327589870.1668469143; _gcl_au=1.1.287926026.1668469143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Aug 2021 00:09:31 GMT
accept-ranges: bytes
content-length: 19988
content-type: image/png
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2021/08/cropped-favicon-segura-32x32.png
216.172.172.198200 OK 2.0 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2021/08/cropped-favicon-segura-32x32.png
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 17d627c83cba40f30f07ccf4b29fbc92
d6a9a6481ce9374800f3fc6b89631f55259ef0ec
b17bdad3bc133691714053996305dddea19755cd7b8e317965399b6747c1d3c0
GET /wp-content/uploads/2021/08/cropped-favicon-segura-32x32.png HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Cookie: _ga_E2BNRKHXXY=GS1.1.1668469143.1.0.1668469143.0.0.0; _ga=GA1.1.1327589870.1668469143; _gcl_au=1.1.287926026.1668469143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 31 Aug 2021 00:09:31 GMT
accept-ranges: bytes
content-length: 2012
content-type: image/png
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8094f6d66cd067b92b99cc3c1ec916c6
cdb6d27ace38846e7a770dafce189f90a30db886
f07248933eddbab19c1153daaece5a2c3bcb421598bfab2c4b0f4c547d75e817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3ed64b41b0a432ed6f8763fb24643390
a706034f8eaca414f20e2bde40ff84dde5509515
f5486847b03849b009bebe64683cd107ac2427ffbf109786938be5e06e620aea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/438691833/?random=1668469143372&cv=11&fst=1668466800000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4266099260&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/438691833/?random=1668469143372&cv=11&fst=1668466800000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4266099260&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/438691833/?random=1668469143372&cv=11&fst=1668466800000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4266099260&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 14 Nov 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/438691833/?random=1668469143372&cv=11&fst=1668466800000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4266099260&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/438691833/?random=1668469143372&cv=11&fst=1668466800000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4266099260&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/438691833/?random=1668469143372&cv=11&fst=1668466800000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsegurabr.com.br%2F&tiba=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4266099260&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 14 Nov 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3ed64b41b0a432ed6f8763fb24643390
a706034f8eaca414f20e2bde40ff84dde5509515
f5486847b03849b009bebe64683cd107ac2427ffbf109786938be5e06e620aea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 96c9e6a333b1f0fddf32f24e7b965151
647fee1eb0d6839e30115edebe8d0840e6152cdb
a2ac4ddc863a9d641d91d504db389e0116cf1699322d2391f17d5785bf5bc538
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 23:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
segurabr.com.br/wp-content/plugins/revslider/public/assets/assets/loader.gif
216.172.172.198200 OK 2.5 kB URL HTTP/2 segurabr.com.br/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.19
Cookie: _ga_E2BNRKHXXY=GS1.1.1668469143.1.0.1668469143.0.0.0; _ga=GA1.3.1327589870.1668469143; _gcl_au=1.1.287926026.1668469143; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes; _gid=GA1.3.59525176.1668469144
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Mar 2022 14:55:18 GMT
accept-ranges: bytes
content-length: 2545
content-type: image/gif
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-177228975-3&cid=1327589870.1668469143&jid=92131690&gjid=2036235375&_gid=59525176.1668469144&_u=aCDAgUIhAAAAAEAAI~&z=795302771
142.250.150.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-177228975-3&cid=1327589870.1668469143&jid=92131690&gjid=2036235375&_gid=59525176.1668469144&_u=aCDAgUIhAAAAAEAAI~&z=795302771
IP 142.250.150.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-177228975-3&cid=1327589870.1668469143&jid=92131690&gjid=2036235375&_gid=59525176.1668469144&_u=aCDAgUIhAAAAAEAAI~&z=795302771 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://segurabr.com.br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://segurabr.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 14 Nov 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/08/h775-portaria-virtual-remota.jpg
216.172.172.198200 OK 205 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/08/h775-portaria-virtual-remota.jpg
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x665, components 3\012- data
Size 205 kB (204988 bytes)
Hash 436f35e79179b6257f50cff43920e7f7
32d3c639ef1df80bce1f9c3d4125ea325560c7ab
f616497dceb037e404ee6426924356b5612485e83d65105b89dd2ee0be8c30ea
GET /wp-content/uploads/2020/08/h775-portaria-virtual-remota.jpg HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Cookie: _ga_E2BNRKHXXY=GS1.1.1668469143.1.0.1668469143.0.0.0; _ga=GA1.3.1327589870.1668469143; _gcl_au=1.1.287926026.1668469143; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes; _gid=GA1.3.59525176.1668469144; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:18:09 GMT
accept-ranges: bytes
content-length: 204988
content-type: image/jpeg
date: Mon, 14 Nov 2022 23:39:03 GMT
server: Apache
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-E2BNRKHXXY>m=2oeb90&_p=1739021108&gdid=dZTNiMT&cid=1327589870.1668469143&ul=en-us&sr=1280x1024&_s=1&sid=1668469143&sct=1&seg=0&dl=https%3A%2F%2Fsegurabr.com.br%2F&dt=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-E2BNRKHXXY>m=2oeb90&_p=1739021108&gdid=dZTNiMT&cid=1327589870.1668469143&ul=en-us&sr=1280x1024&_s=1&sid=1668469143&sct=1&seg=0&dl=https%3A%2F%2Fsegurabr.com.br%2F&dt=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-E2BNRKHXXY>m=2oeb90&_p=1739021108&gdid=dZTNiMT&cid=1327589870.1668469143&ul=en-us&sr=1280x1024&_s=1&sid=1668469143&sct=1&seg=0&dl=https%3A%2F%2Fsegurabr.com.br%2F&dt=Home%20-%20SEGURA%20%E2%80%A2%20Assist%C3%AAncia%20e%20Prote%C3%A7%C3%A3o&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://segurabr.com.br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://segurabr.com.br
date: Mon, 14 Nov 2022 23:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/08/h775-seguranca-eletronica-1.jpg
216.172.172.198200 OK 129 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/08/h775-seguranca-eletronica-1.jpg
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x665, components 3\012- data
Size 129 kB (128663 bytes)
Hash b152aaa7d736444c15d3a19ce9aaed04
0eb32a15056be46169d6760b30f27c8d4e426da1
4ada36569ef60ea1b4099a07c5f1f957a53126b9b785d775460f787d77a2c2d0
GET /wp-content/uploads/2020/08/h775-seguranca-eletronica-1.jpg HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Cookie: _ga_E2BNRKHXXY=GS1.1.1668469143.1.0.1668469143.0.0.0; _ga=GA1.3.1327589870.1668469143; _gcl_au=1.1.287926026.1668469143; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes; _gid=GA1.3.59525176.1668469144; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:18:11 GMT
accept-ranges: bytes
content-length: 128663
content-type: image/jpeg
date: Mon, 14 Nov 2022 23:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/uploads/2020/08/h775-cyber-security-1.jpg
216.172.172.198200 OK 131 kB URL HTTP/2 segurabr.com.br/wp-content/uploads/2020/08/h775-cyber-security-1.jpg
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x665, components 3\012- data
Size 131 kB (130976 bytes)
Hash e85245287d4bed428424cdeaa934c1a1
6c505383facece382127de4fa3d08437f0333088
eead2076482ece3641188709cfa50480de9adadf337c6c7a165cf30cfdbc6bc7
GET /wp-content/uploads/2020/08/h775-cyber-security-1.jpg HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Cookie: _ga_E2BNRKHXXY=GS1.1.1668469143.1.0.1668469143.0.0.0; _ga=GA1.3.1327589870.1668469143; _gcl_au=1.1.287926026.1668469143; cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-non-necessary=yes; _gid=GA1.3.59525176.1668469144; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 20:17:57 GMT
accept-ranges: bytes
content-length: 130976
content-type: image/jpeg
date: Mon, 14 Nov 2022 23:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefdb26c1-8eff-4c41-9245-7fc53604cb29.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefdb26c1-8eff-4c41-9245-7fc53604cb29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 08bd66bbd19e46a42ef8acb8bce6388d
b4b7e3421eb3f1c434c65cb468ec46ba1ff54afa
b7dc233e1415accc4e2eab0784255f250bb188e381721f76d4ced3eaf86d0184
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefdb26c1-8eff-4c41-9245-7fc53604cb29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6118
x-amzn-requestid: af3049d8-11b3-42d4-816f-bcdf7af4bb24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bnEi5GwVoAMFYQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6372b478-37caf4ec59319ee72aa531af;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V9HtFSwH7ALAODbiW__wB0BFoU5wQL0zCHcKAOzua0Bbn_c9u8LuxQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:45:33 GMT
age: 6816
etag: "b4b7e3421eb3f1c434c65cb468ec46ba1ff54afa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/style.css?ver=20161025
216.172.172.198200 OK 0 B URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/style.css?ver=20161025
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/themes/induscity/style.css?ver=20161025 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
216.172.172.198200 OK 0 B URL HTTP/2 segurabr.com.br/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:48:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/js/plugins/owl.carousel.js?ver=2.2.0
216.172.172.198200 OK 0 B URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/js/plugins/owl.carousel.js?ver=2.2.0
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/induscity/js/plugins/owl.carousel.js?ver=2.2.0 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/themes/induscity/css/bootstrap.min.css?ver=3.3.7
216.172.172.198200 OK 0 B URL HTTP/2 segurabr.com.br/wp-content/themes/induscity/css/bootstrap.min.css?ver=3.3.7
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/themes/induscity/css/bootstrap.min.css?ver=3.3.7 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Mar 2022 17:32:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19
216.172.172.198200 OK 0 B URL HTTP/2 segurabr.com.br/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.19 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Mar 2022 14:55:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5
216.172.172.198200 OK 0 B URL HTTP/2 segurabr.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 11:41:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10776
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
segurabr.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
216.172.172.198200 OK 0 B URL HTTP/2 segurabr.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 216.172.172.198:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: segurabr.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 19:50:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 14 Nov 2022 23:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Hind:500%2C600%2C700%7CRoboto:400%2C500&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Hind:500%2C600%2C700%7CRoboto:400%2C500&display=swap
IP 142.250.74.10:0
GET /css?family=Hind:500%2C600%2C700%7CRoboto:400%2C500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 14 Nov 2022 23:39:02 GMT
date: Mon, 14 Nov 2022 23:39:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Hind%3A400%2C500%2C600%2C700&subset=latin%2Clatin-ext&ver=20161025
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Hind%3A400%2C500%2C600%2C700&subset=latin%2Clatin-ext&ver=20161025
IP 142.250.74.10:0
GET /css?family=Hind%3A400%2C500%2C600%2C700&subset=latin%2Clatin-ext&ver=20161025 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://segurabr.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 14 Nov 2022 23:39:02 GMT
date: Mon, 14 Nov 2022 23:39:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2