Report - www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack

Report Overview

Submitted URL
www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack
IP
31.11.36.33
ASN
#31034 Aruba S.p.A.
Submitted
2022-11-29 06:56:06
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
88

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	4.9 kB	142.250.74.35
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.148.77.40
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	53 kB	34.120.237.76
ocsp06.actalis.it	190155	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	353 B	4.2 kB	109.70.240.114
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	87 kB	216.58.207.195
secure.gravatar.com	1671	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	435 B	2.0 kB	192.0.73.2
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	3.7 kB	142.250.74.10
www.riobrasilword.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	33 kB	1.3 MB	31.11.36.33
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
s.w.org	748	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	4.5 kB	192.0.77.48

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-29	medium	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack	Phishing
2022-11-29	medium	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/css/classic-themes.min.css?ver=1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.woff?v=1.8.6	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.ttf?v=4.7.0	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.woff	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff2?v=4.7.0	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.ttf	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.2.4	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/script.js?ver=0c62b6ec4f9fb8f301820d9739fa4206	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/masonry.min.js?ver=4.2.2	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/pagelayer/fonts/fa-brands-400.woff2	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/themes/bravada/resources/fonts/iconmeta.ttf?9qd1ry	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/pagelayer/fonts/fa-solid-900.woff2	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.10.0-dev1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/themes/bravada/resources/js/frontend.js?ver=1.0.6.1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0-dev1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/jquery.mobile.custom.min.js?ver=1.2.3	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-socicon.css?ver=1649501642	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/comment-reply.min.js?ver=6.1.1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/css/dashicons.min.css?ver=6.1.1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/style.css?ver=1.2.3	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/script.js?ver=f0806654071d159197fcf61cedea88b5	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/slider.js?ver=1.2.3	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/block/dist/style-wpzoom-social-icons.css?ver=4.2.4	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/style.css?ver=e01684e96c736f225b9510141c059823	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-social-icons-styles.css?ver=1649501642	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/pagelayer/css/combined.css?ver=1.7.2	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/themes/bravada/style.css?ver=1.0.6.1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311	Phishing
2022-11-29	medium	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/instagram-widget-by-wpzoom/assets/frontend/magnific-popup/magnific-popup.css?ver=1.9.5	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1649501642	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0-dev1	Phishing
2022-11-29	medium	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/genericons.css?ver=1649501642	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/slider.js?ver=1.2.3	10 kB	2023-03-07	2023-12-26
Pretty URL www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/slider.js?ver=1.2.3 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59:05 Last Seen2023-12-26 15:23:37 Times Seen63 Hash 6d3734401281eb0f775373b9430b53c5 dc33d9d2aa5e44b3d8b2f879e3fc501a228f5094 9d98b1c9005dd3e03083147c9f598708e738ef461c9971d3dfd587750da5699b Loading...

	www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/script.js?ver=f0806654071d159197fcf61cedea88b5	1.3 kB	2023-03-07	2023-11-21
Pretty URL www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/script.js?ver=f0806654071d159197fcf61cedea88b5 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:40:35 Last Seen2023-11-21 14:20:32 Times Seen20 Hash 346f4f2e55674d060c5f26d94877ffc8 db1765d453d25af76716c78601b3fb0c7939867b 61e735643fdbbab01c047d28ef7ae9949cb75bf98dba7750d8e6d265bc78f81c Loading...

	www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0-dev1	32 kB	2023-03-08	2023-11-27
Pretty URL www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0-dev1 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:41 Last Seen2023-11-27 13:43:59 Times Seen9 Hash 7cf6012fbe0b7ff58bc5c83086bc4fcd c7bebeb5d3ce660a82c42ba4862374ef5aabd755 c8c79426ccda7cf98a3c5fb0f898081a49d9347838f4374d23b22594e10742ef Loading...

	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/	955 B	2023-03-11	2023-03-12
Pretty URL www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/ IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:18:14 Last Seen2023-03-12 10:43:52 Times Seen1 Hash 4acd297f4192145c7247698107025130 830c8bbd4cdf8ac035783a2e98fdf1d38763ade8 ccda9b3a90e09630f2a9dbded018a5dcd73cdde81e5343c6f62ee0515e104d14 Loading...

	www.riobrasilword.com/wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.10.0-dev1	457 B	2023-03-08	2023-11-27
Pretty URL www.riobrasilword.com/wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.10.0-dev1 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:41 Last Seen2023-11-27 13:43:59 Times Seen9 Hash cf88e0a6d5286ed530d8e90a72faea52 ab0b2dc22271c731667262e863094604acc2c4ba 69207208e2da2d0068d549ed38dee48ab581197bca7f66bfc7ffa6ab51aad996 Loading...

	www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1649501642	860 B	2023-03-07	2024-04-18
Pretty URL www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1649501642 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:50 Last Seen2024-04-18 10:29:51 Times Seen739 Hash 6442171da4dc4093819153e31fe5d513 8b4bb7223ce0e3ddf41fd16ac73430dc847fb69a 6853d729a67593739860d399dc73e21340de4f57bda79cc930f536e428967b4f Loading...

	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/	2.2 kB	2023-03-11	2023-03-11
Pretty URL www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/ IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:16:18 Last Seen2023-03-11 22:18:22 Times Seen1 Hash 3c7b4b62ab7eb85976193a83eeaf87f0 40febd5e899ac35963ec11ee4c92b606bea519e4 6677582ad8be84d4b250ce1d03dd4ba80ddb1e4220a278598d1b7cf4a55bb26a Loading...

	www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/jquery.mobile.custom.min.js?ver=1.2.3	18 kB	2023-03-07	2024-02-05
Pretty URL www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/jquery.mobile.custom.min.js?ver=1.2.3 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59:05 Last Seen2024-02-05 05:49:07 Times Seen78 Hash 7ef119c697bcf89b01c58430195437b8 39aebc6348382fea1eee63d7a22248230beb248c 9f3df011f48d061e3d5ab048c632f3ae8547236e4046884c51c5262a70ca9860 Loading...

	www.riobrasilword.com/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7	9.1 kB	2023-03-08	2024-02-24
Pretty URL www.riobrasilword.com/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-02-24 11:36:51 Times Seen534 Hash 592b9c7153ec0d37ffb333c48c495942 8552783a593944f070d3509bdc0c9a3392df889a 3a5473b62e71d3164b95391e8342e6abe3215428bcaf828a72dc2f23fc540337 Loading...

	www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0-dev1	40 kB	2023-03-08	2023-11-27
Pretty URL www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0-dev1 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:41 Last Seen2023-11-27 13:43:59 Times Seen9 Hash 2ade95906cc802ba81c1749550285304 ec6cf88c872146c85ca215751d6159652e9e3165 f02bbe54a1b749ab2c2e5b918a9019b647e3dff05404c29a606f9c212de24842 Loading...

	www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/script.js?ver=0c62b6ec4f9fb8f301820d9739fa4206	4.9 kB	2023-03-11	2023-03-11
Pretty URL www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/script.js?ver=0c62b6ec4f9fb8f301820d9739fa4206 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:16:18 Last Seen2023-03-11 22:18:22 Times Seen1 Hash ee7f66da7f3c4c5cb7530dec6ae9d676 bc7838448f43c15f890774e928f26d966935c8bf 18a40d9a39620a4c4282b18806bca4245c54daa56a6a0a27a23e731080226934 Loading...

	www.riobrasilword.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	4.9 kB	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 02:30:18 Times Seen24382 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	www.riobrasilword.com/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311	5.3 kB	2023-03-07	2024-04-21
Pretty URL www.riobrasilword.com/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:10 Last Seen2024-04-21 16:07:42 Times Seen2581 Hash a1a09ff7531304767f85729061aecf3a a088b7f0da099a17b0f26ddaff8edaf94dd2fe3f 0598e98bc97e5b9aeb32aa40cae407814d13a7333e055071107519d7b4fcb0d7 Loading...

	www.riobrasilword.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-23
Pretty URL www.riobrasilword.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-23 20:07:07 Times Seen9801 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	www.riobrasilword.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-23
Pretty URL www.riobrasilword.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-23 19:01:07 Times Seen38028 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/	387 B	2023-03-11	2023-03-11
Pretty URL www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/ IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:18:22 Last Seen2023-03-11 22:18:22 Times Seen1 Hash 36f09140ecf9b0aaa0607ca0f7e23ad7 fd3dc35fdbbbf45678be87522250727b896e0d3f d1c1ae165519964bee7384305470e0a8cb634f0472f39dd61e5e2f03c5d2bd63 Loading...

	www.riobrasilword.com/wp-content/plugins/pagelayer/js/combined.js?ver=1.7.2	118 kB	2023-03-07	2024-03-18
Pretty URL www.riobrasilword.com/wp-content/plugins/pagelayer/js/combined.js?ver=1.7.2 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:25:07 Last Seen2024-03-18 17:32:28 Times Seen88 Hash 4e5f4d62800e1a6f8d32dc41885107b5 f558a10b463cd204eb4a0775e63b8a11cbeda11a 599c472f7b276ada53be5aba8a2aee919b9da0424e3855bc6849a479d1bdb2bc Loading...

	www.riobrasilword.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-23
Pretty URL www.riobrasilword.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-23 20:07:10 Times Seen15490 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	www.riobrasilword.com/wp-includes/js/masonry.min.js?ver=4.2.2	24 kB	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/wp-includes/js/masonry.min.js?ver=4.2.2 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-24 05:14:02 Times Seen15251 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	www.riobrasilword.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0-dev1	5.0 kB	2023-03-08	2023-11-27
Pretty URL www.riobrasilword.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0-dev1 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:41 Last Seen2023-11-27 13:43:59 Times Seen9 Hash a68e3e4dc809de824a767619d0a4ce55 f81c746320ba43bb3bcd5c1c107e9d1079f02f50 b2af3b7a87db83c180a81556563fdbd6d36b2d12d64e190a7938901d3a554d7c Loading...

	www.riobrasilword.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-23
Pretty URL www.riobrasilword.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-23 20:07:10 Times Seen31793 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	www.riobrasilword.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-24 05:14:01 Times Seen68576 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.riobrasilword.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca	498 B	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-24 06:49:10 Times Seen11713 Hash b0b80b0256874e70acdc820b52bbf1aa 9aace9a7989736bf535d65f229d0c10e9acea41b 166c7c3bb5f76f977a9f2a5490589b3466374eb2b3f064802e56f08bad71fbf0 Loading...

	www.riobrasilword.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae	10 kB	2023-03-08	2024-04-24
Pretty URL www.riobrasilword.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:32 Last Seen2024-04-24 02:30:18 Times Seen25609 Hash 8cd696505481e74ffee89b4995f37379 ee9aad199ef2bc60a3460f4c52f37d22907b2ec9 01c3955df67a9b9d1367957e2c187729eae46b72e92c2b52bdb217b14a8fc874 Loading...

	www.riobrasilword.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-24 06:20:49 Times Seen30959 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	www.riobrasilword.com/wp-includes/js/comment-reply.min.js?ver=6.1.1	3.0 kB	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/wp-includes/js/comment-reply.min.js?ver=6.1.1 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-24 06:49:09 Times Seen29247 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/	187 B	2023-03-11	2023-03-11
Pretty URL www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/ IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:16:18 Last Seen2023-03-11 22:18:22 Times Seen1 Hash 693237f86367116a3c3d73b6554684db e7acaa78a3b5c1809bbb5629e2d05250a19de2c5 ad6f1530fd5929bd9aa6802dad7ebfb6a69c8db2fc1c62a3ed4053195ea840e8 Loading...

	www.riobrasilword.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 06:31:47 Times Seen52645 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/	68 B	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/ IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 06:31:44 Times Seen22441 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	www.riobrasilword.com/wp-content/themes/bravada/resources/js/frontend.js?ver=1.0.6.1	30 kB	2023-03-07	2024-01-24
Pretty URL www.riobrasilword.com/wp-content/themes/bravada/resources/js/frontend.js?ver=1.0.6.1 IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:38:26 Last Seen2024-01-24 16:51:29 Times Seen6 Hash 03b2bf5a7da3e0ef54c37dcaed44350b 7be8367d87f107c6f49175c9195b7dca846c063c 9e2f94d5145fd63940a704d5b54aef12f341386a1ad88119768f89616dadd9c4 Loading...

	www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/	451 B	2023-03-11	2023-03-11
Pretty URL www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/ IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:18:22 Last Seen2023-03-11 22:18:22 Times Seen1 Hash 2d6ceb1b3781e5e99b4549e0df84104f ec6700ca9861c92fb2befdecccdb8976614cd38d a4c0053c5c173b50dfcc20fc325858da17fecb460719ae1c54a7304c85abfcc0 Loading...

	www.riobrasilword.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b	1.8 kB	2023-03-07	2024-04-24
Pretty URL www.riobrasilword.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b IP 31.11.36.33 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:32 Last Seen2024-04-24 05:14:00 Times Seen6643 Hash cd0eb3406096ff80266e7c9d7d419186 0e3709691bf96233766de30e2fd473b84166c5b6 c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25 Loading...

HTTP Transactions (101)

URL IP Response Size

www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack

31.11.36.33

301 Moved Permanently

168 B

URL HTTP/1.1
www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
168 B (168 bytes)
Hash
82f04704c04c2706b1b96a73be2ff3a9
8cd210a378b7f54ce8945cdf1c7ce1f696171eee
ede97dbf06b3e703cd950b3591a29351ce9b24eccab58b1a913b3c7e4571bf02

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: aruba-proxy
Date: Tue, 29 Nov 2022 06:55:54 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
Location: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack
X-ServerName: ipvsproxy254.ad.aruba.it

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4055
Expires: Tue, 29 Nov 2022 08:03:29 GMT
Date: Tue, 29 Nov 2022 06:55:54 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4801
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:54 GMT
Last-Modified: Tue, 29 Nov 2022 05:35:53 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16763
Expires: Tue, 29 Nov 2022 11:35:17 GMT
Date: Tue, 29 Nov 2022 06:55:54 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 06:48:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 454
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: xxlgHIBy1PC/DgW5TyBFIXDmIxuF9Klb8NCd7zHYcM5nEWNum9fG9YEegW4HPVuVv6iQNO1h4VQ=
x-amz-request-id: NK2B1G59AYWKRSW4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 06:45:21 GMT
age: 633
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:55:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp06.actalis.it/VA/AUTHDV-G3

109.70.240.114

200

3.9 kB

URL HTTP/1.1
ocsp06.actalis.it/VA/AUTHDV-G3
IP
109.70.240.114:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
3.9 kB (3926 bytes)
Hash
f3460b09330321a9a356983b9a59c107
f0bc3196bb607fe1897245deec7df04ae84c3ca6
c5f680d222d3903c53fd0dd190c8b9954a5fbc1b42f51f92145164a3d5414da6

HTTP Headers

POST /VA/AUTHDV-G3 HTTP/1.1
Host: ocsp06.actalis.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx
Date: Tue, 29 Nov 2022 06:55:55 GMT
Content-Type: application/ocsp-response
Content-Length: 3926
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 02:19:55 GMT
Expires: Wed, 30 Nov 2022 02:19:54 GMT
ETag: "f0bc3196bb607fe1897245deec7df04ae84c3ca6"

www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack

31.11.36.33

301 Moved Permanently

0 B

URL HTTP/2
www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
x-pingback: https://www.riobrasilword.com/xmlrpc.php
x-redirect-by: WordPress
x-servername: ipvsproxy254.ad.aruba.it
x-aruba-cache: HIT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.riobrasilword.com/wp-includes/css/classic-themes.min.css?ver=1

31.11.36.33

200 OK

217 B

URL HTTP/2
www.riobrasilword.com/wp-includes/css/classic-themes.min.css?ver=1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
content-length: 217
last-modified: Wed, 02 Nov 2022 09:00:58 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 06:08:56 GMT
cache-control: public,max-age=3600
age: 2819
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.ttf?v=1.8.6

31.11.36.33

200 OK

48 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.ttf?v=1.8.6
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
TrueType Font data, 11 tables, 1st "OS/2", 24 names, Macintosh, type 1 string, Academicons\012- data
Size
48 kB (47500 bytes)
Hash
1afcbd6a1c454e7b7f0bc58155558b9d
6946cb2f01c31c1e5dfdc6a7e4ad64dc2e4cdca8
107cca07d33ea31bbfe719513aa2b36e8cb8c8c8bcd521148746f652738c7101

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.ttf?v=1.8.6 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/ttf
content-length: 47500
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.woff?v=1.8.6

31.11.36.33

200 OK

48 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.woff?v=1.8.6
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
Web Open Font Format, TrueType, length 47576, version 1.8\012- data
Size
48 kB (47576 bytes)
Hash
2552b354cabf01815628a244fde0636e
3c5e7d85d7e5030b8db8177daeb760abf97ed7dc
bbf62cb77adfebbdcf36ef1cf8d2587f4cfa9bf56e23118613749778f94d8e14

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/academicons.woff?v=1.8.6 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/woff
content-length: 47576
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff?v=4.7.0

31.11.36.33

200 OK

98 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff?v=4.7.0
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Size
98 kB (98024 bytes)
Hash
fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/woff
content-length: 98024
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.ttf?v=4.7.0

31.11.36.33

200 OK

166 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.ttf?v=4.7.0
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Size
166 kB (165548 bytes)
Hash
b06871f281fee6b241d60582ae9369b9
13b1eab65a983c7a73bc7997c479d66943f7c6cb
aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/ttf
content-length: 165548
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.woff

31.11.36.33

200 OK

14 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.woff
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
Web Open Font Format, TrueType, length 13988, version 0.0\012- data
Size
14 kB (13988 bytes)
Hash
f3f73b280148eeed102d4a6874ac7886
973bfcd63513292f1bb220c241f6dde6509f1168
970a3fa15876d16dcc0fd70eb7c9ab44d733108b3ddca1a449edd0356c1b79a7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.woff HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/woff
content-length: 13988
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff2?v=4.7.0

31.11.36.33

200 OK

77 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff2?v=4.7.0
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/woff2
content-length: 77160
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.ttf

31.11.36.33

200 OK

22 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.ttf
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
TrueType Font data, 13 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size
22 kB (22188 bytes)
Hash
008827208ffc4eeab99bf3cc14fe1e56
e024a5229566e3864856d72b7796a56ca7127252
7cd8dcb9820d7558bcb35bde35d9923a77c8eb9d2a274366261ad55948dfed31

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/Genericons.ttf HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/ttf
content-length: 22188
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4889
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:55 GMT
Last-Modified: Tue, 29 Nov 2022 05:34:26 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.2.4

31.11.36.33

200 OK

73 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.2.4
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, socicon \012- data
Size
73 kB (72644 bytes)
Hash
d439c9e54f2e95a70fc541483b3c30b2
48c3d418b217ea38d9f4d1cc04301ed233b7f676
676ef1cd8eceb1e5a817ddd6c7803ebab7292e128a37419512143a1a8d94503d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.ttf?v=4.2.4 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/ttf
content-length: 72644
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.woff?v=4.2.4

31.11.36.33

200 OK

73 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.woff?v=4.2.4
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
Web Open Font Format, TrueType, length 72720, version 1.0\012- data
Size
73 kB (72720 bytes)
Hash
3ef76f73793f8665aa4edfe41585c48b
6e4b731e6c57f623fc9c1b607822bf976cf54948
af546563f18c7d142f869e8cec7c2653a537fe5b2433a0fd5903c834a77404ac

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/font/socicon.woff?v=4.2.4 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/woff
content-length: 72720
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/script.js?ver=0c62b6ec4f9fb8f301820d9739fa4206

31.11.36.33

200 OK

247 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/script.js?ver=0c62b6ec4f9fb8f301820d9739fa4206
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
247 kB (246884 bytes)
Hash
3783873c953054293a30541e9d41625b
f6594c3feadb8e485693b682bccbe4e2e0ce3028
9b34a4d24fcdde5cc0b726aa0f4cec01e5a5414efd6712edd9fcaec25cc430d6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/script.js?ver=0c62b6ec4f9fb8f301820d9739fa4206 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:52:35 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/masonry.min.js?ver=4.2.2

31.11.36.33

200 OK

21 kB

URL HTTP/2
www.riobrasilword.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
21 kB (20629 bytes)
Hash
2400d63b8677daaf2096302842b64f99
c1cb649249089be6c5679a40f6a37880fc8c0260
d432fd92581652d4d074b9921d2a727551a2d9712cec7a275c82db3304db384a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 12 Mar 2022 04:46:50 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

31.11.36.33

200 OK

5.6 kB

URL HTTP/2
www.riobrasilword.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
5.6 kB (5555 bytes)
Hash
db3e5a65c3dfd64342885c6eb46878b5
07a3984e46beaa583bfa6818d1a604d5ac6bf10d
1dc11c86080a27cbfc8c725bbf13472c707ee964c207285bebb7a6bb74389426

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 21:10:00 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.riobrasilword.com/wp-content/plugins/pagelayer/fonts/fa-brands-400.woff2

31.11.36.33

200 OK

77 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/pagelayer/fonts/fa-brands-400.woff2
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Size
77 kB (76736 bytes)
Hash
ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/pagelayer/fonts/fa-brands-400.woff2 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.riobrasilword.com/wp-content/plugins/pagelayer/css/combined.css?ver=1.7.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/woff2
content-length: 76736
last-modified: Tue, 22 Nov 2022 21:00:31 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b

31.11.36.33

200 OK

1.2 kB

URL HTTP/2
www.riobrasilword.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
1.2 kB (1188 bytes)
Hash
57ba24800b85e53940cbc54f552200d9
eece46fc5bfba00b1f6accdd0a6d41a3b01b4be3
4d3bb264f2c5ebd836b8d5ab735600821a5bafa43c1e0ade3f0e3521cfa81513

HTTP Headers

GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 12 Mar 2022 04:46:50 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/themes/bravada/resources/fonts/iconmeta.ttf?9qd1ry

31.11.36.33

200 OK

52 kB

URL HTTP/2
www.riobrasilword.com/wp-content/themes/bravada/resources/fonts/iconmeta.ttf?9qd1ry
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, iconmeta \012- data
Size
52 kB (51956 bytes)
Hash
cc0f8aecea3f8f8d7d446af8c7a8a5dc
33063a7c6d37b4defb3b32a72db8df4cf1f823a1
dce8c56589b57111eccf2c2a54cc6c3f54d4ef740ec8ec29c1591ca199bef23c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bravada/resources/fonts/iconmeta.ttf?9qd1ry HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/wp-content/themes/bravada/resources/fonts/fontfaces.css?ver=1.0.6.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/ttf
content-length: 51956
last-modified: Sat, 09 Apr 2022 14:37:13 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.riobrasilword.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 472907
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

31.11.36.33

200 OK

7.6 kB

URL HTTP/2
www.riobrasilword.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
7.6 kB (7587 bytes)
Hash
b85b9dd548bf77a90d0d1968a1113a93
00c7e62ddefc78dcf85f9d9ca822f92302a79d6b
9abfae84d8ebeef85fdba2da3b044c64923ce49c9044e8af66bf319bcb69f67e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 02 Nov 2022 09:00:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/pagelayer/fonts/fa-solid-900.woff2

31.11.36.33

200 OK

78 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/pagelayer/fonts/fa-solid-900.woff2
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196\012- data
Size
78 kB (78268 bytes)
Hash
d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/pagelayer/fonts/fa-solid-900.woff2 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.riobrasilword.com/wp-content/plugins/pagelayer/css/combined.css?ver=1.7.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: font/woff2
content-length: 78268
last-modified: Tue, 22 Nov 2022 21:00:31 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.riobrasilword.com/wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.10.0-dev1

31.11.36.33

200 OK

32 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.10.0-dev1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
32 kB (31511 bytes)
Hash
b44e07b9cc5fb6e26eeef1dee07713cd
7cc03c0caefe726780397b3bbaf017ad8afa63e1
1a3b5a74dfbb2ef4515f873fb87827a090b66fdbaf2cc141bd5554656a8ae95c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/lazyload.min.js?ver=3.10.0-dev1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 08 Nov 2022 21:00:31 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/themes/bravada/resources/js/frontend.js?ver=1.0.6.1

31.11.36.33

200 OK

34 kB

URL HTTP/2
www.riobrasilword.com/wp-content/themes/bravada/resources/js/frontend.js?ver=1.0.6.1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
34 kB (34515 bytes)
Hash
16da12f9dba6cc102114d00a757f9948
2584dd706a75c020ca3ebc2e3883cf0630b3364d
ded8b42a2c293315ee6f39272977041d3ff0256ddcf3b384dd984beca794debc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bravada/resources/js/frontend.js?ver=1.0.6.1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 14:37:13 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.riobrasilword.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 492503
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.riobrasilword.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:21 GMT
expires: Thu, 23 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 472894
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0-dev1

31.11.36.33

200 OK

28 kB

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0-dev1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
28 kB (28017 bytes)
Hash
a5b83007172ebf9ea9db4bc899411e65
aee7c0f1652a57b8e4f7d570ba689841e923d4db
3cd21eea7325f1a2e01577ca1262178082efd9d50a8db7fc99674f1640311daf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.10.0-dev1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 08 Nov 2022 21:00:31 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2

216.58.207.195

200 OK

36 kB

URL HTTP/2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Size
36 kB (35764 bytes)
Hash
60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8

HTTP Headers

GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.riobrasilword.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 15:03:06 GMT
expires: Wed, 22 Nov 2023 15:03:06 GMT
cache-control: public, max-age=31536000
age: 575569
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 06:55:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.148.77.40

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.77.40:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4S3rX0r3C4PdDRbftR7uvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: A3OXztMBdnkX0L3Ox1TPWe3dg/w=

s.w.org/images/core/emoji/14.0.0/svg/1f516.svg

192.0.77.48

200 OK

1.3 kB

URL HTTP/2
s.w.org/images/core/emoji/14.0.0/svg/1f516.svg
IP
192.0.77.48:0
ASN
#2635 AUTOMATTIC

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1269), with no line terminators
Size
1.3 kB (1269 bytes)
Hash
2424297076c0d1c8499820fc4f9d9f57
5722afe6b6bba7807dfba343505678187027b6b5
be8243f00b027aa5ef43f553467a45bcc6cb3f1a0a14723881eacdcaef1aebb9

HTTP Headers

GET /images/core/emoji/14.0.0/svg/1f516.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: image/svg+xml
content-length: 1269
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

s.w.org/images/core/emoji/14.0.0/svg/1f44a.svg

192.0.77.48

200 OK

1.3 kB

URL HTTP/2
s.w.org/images/core/emoji/14.0.0/svg/1f44a.svg
IP
192.0.77.48:0
ASN
#2635 AUTOMATTIC

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1325), with no line terminators
Size
1.3 kB (1325 bytes)
Hash
4601b0cf78b83ff531ea80756d6cc9c2
93d9d165766bcb2d33062b6b172ae556a4c936c2
8eb1aee1a6bdd89e42447bd3f190d4e9dbd768dc0981bd8ec21539375af59575

HTTP Headers

GET /images/core/emoji/14.0.0/svg/1f44a.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: image/svg+xml
content-length: 1325
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

s.w.org/images/core/emoji/14.0.0/svg/1f4e4.svg

192.0.77.48

200 OK

539 B

URL HTTP/2
s.w.org/images/core/emoji/14.0.0/svg/1f4e4.svg
IP
192.0.77.48:0
ASN
#2635 AUTOMATTIC

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (539), with no line terminators
Size
539 B (539 bytes)
Hash
13a4210298dfc7e57883c733259bda0a
34d71ce994f08cd58cfcf596e215272fdd690638
7d928d0a661f39bd4e200c34c45a6bbeaa069828788a1730338ae5499a710187

HTTP Headers

GET /images/core/emoji/14.0.0/svg/1f4e4.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: image/svg+xml
content-length: 539
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/uploads/2022/04/cropped-R-1.png

31.11.36.33

200 OK

27 kB

URL HTTP/2
www.riobrasilword.com/wp-content/uploads/2022/04/cropped-R-1.png
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 425 x 470, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (27151 bytes)
Hash
600477422b071ded766d6b76b64b35cc
1bbdc9ae0a6e5887b5e479ef35df01dcb946857d
a757e2bd58098c2a37b1e1ebf5d6399e13e3375ee021bd34cee63407d09b3afa

HTTP Headers

GET /wp-content/uploads/2022/04/cropped-R-1.png HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: image/png
content-length: 27151
last-modified: Sat, 09 Apr 2022 09:54:12 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/uploads/2022/04/cropped-R-1-150x150.png

31.11.36.33

200 OK

11 kB

URL HTTP/2
www.riobrasilword.com/wp-content/uploads/2022/04/cropped-R-1-150x150.png
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10565 bytes)
Hash
4e0bae77be02d92976db711dd260eefa
65f01d57a8b7931dd232946e8ef2b4e35a70d22a
c60c6bbe13c7fe2f36519920965c85e8e832263100d94befd20f6646584d01de

HTTP Headers

GET /wp-content/uploads/2022/04/cropped-R-1-150x150.png HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: image/png
content-length: 10565
last-modified: Sat, 09 Apr 2022 09:54:12 GMT
accept-ranges: bytes
x-servername: ipvsproxy254.ad.aruba.it
X-Firefox-Spdy: h2

secure.gravatar.com/avatar/e2a8940867de46b7c1054135323c6c2c?s=96&d=mm&r=g

192.0.73.2

200 OK

1.5 kB

URL HTTP/2
secure.gravatar.com/avatar/e2a8940867de46b7c1054135323c6c2c?s=96&d=mm&r=g
IP
192.0.73.2:0
ASN
#2635 AUTOMATTIC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 96x96, components 3\012- data
Size
1.5 kB (1528 bytes)
Hash
c7d444a35d350f37cf996778686f9fce
41d80eb83a0e887107ab47d84002a24aef786447
67f565f25c1bb8ae629cfca60c71766232073a0c905e0387e45895657b4ae3e7

HTTP Headers

GET /avatar/e2a8940867de46b7c1054135323c6c2c?s=96&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 06:55:56 GMT
content-type: image/jpeg
content-length: 1528
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/e2a8940867de46b7c1054135323c6c2c?s=96&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="e2a8940867de46b7c1054135323c6c2c.png"
expires: Tue, 29 Nov 2022 07:00:56 GMT
cache-control: max-age=300
x-nc: MISS arn 4
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8242
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:55:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8242
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:55:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8242
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 06:55:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:43:20 GMT
age: 29557
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8921 bytes)
Hash
823e92f62ff7b3c2093828817d7f2866
c501de9eaa581a10b0b5fce40b54bb10f57f7c29
7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: awi49MMMlK51wHPbyBrBkL4N4g9lX3ea40LxyrYbYxe_FsfqelTcTQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:57:05 GMT
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
content-type: image/jpeg
age: 32332
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8402 bytes)
Hash
faf3524970b0c3256eb5708f4ccf11ce
47295f2cf1b039c4b85cbe463d7893671a563989
ba0c2ce23eae865936caa7fb47dd1ef6346b8a7bc8340db700df6e2f5e27ec27

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8402
x-amzn-requestid: d2d62f85-b6be-4394-9668-1d913e4120d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYeaGbgoAMFdCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d45c-2b6bfdcc72011cf01ddbd66b;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:07:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1il1ILDPBUseZWYjae_R0BQhpdyPTqqI0GycCljovgxjqhYezCwxCA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:18:26 GMT
age: 9451
etag: "47295f2cf1b039c4b85cbe463d7893671a563989"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.0 kB (3004 bytes)
Hash
22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rb-NFzuOBQEOMHfs7L68ZBeBH_JMqKYfJhxWs4eNYq35L8duYylQdg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:07:34 GMT
age: 17303
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (6037 bytes)
Hash
b5e2bc1651b37b8e0467c2a6cb860fb3
3348f081a3357490a704592d105d02e81886df89
751c601e075c9338335c05b0f430ba8065b4e97440e6630993afd943f302b253

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6037
x-amzn-requestid: eb17903e-1fd3-4a41-a6d1-8b671d890400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPAJjFa3oAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382ad70-3db95fcd1aeb9c411c55d173;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 00:21:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mFiEmh1axlMNuIBb1YSzcciCdHzHGG7q0f3lQOuHJmjugWgdZKKiSg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 11:27:11 GMT
age: 70126
etag: "3348f081a3357490a704592d105d02e81886df89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10176 bytes)
Hash
03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:40:08 GMT
age: 83749
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4417 bytes)
Hash
a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jb1eLyzn88lV_UTId-Fl3OnftDn8c7o5j8d16_nzHCNST_68MZ1pvA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:50:08 GMT
age: 32756
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/instagram-widget-by-wpzoom/assets/frontend/swiper/swiper.css?ver=1.9.5

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/instagram-widget-by-wpzoom/assets/frontend/swiper/swiper.css?ver=1.9.5
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/instagram-widget-by-wpzoom/assets/frontend/swiper/swiper.css?ver=1.9.5 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:53:43 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/jquery.mobile.custom.min.js?ver=1.2.3

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/jquery.mobile.custom.min.js?ver=1.2.3
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cryout-serious-slider/resources/jquery.mobile.custom.min.js?ver=1.2.3 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 14:37:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 21:09:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-socicon.css?ver=1649501642

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-socicon.css?ver=1649501642
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-socicon.css?ver=1649501642 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 02 Nov 2022 09:00:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 21:09:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/comment-reply.min.js?ver=6.1.1

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 21:09:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Muli%3A%7CPlayfair+Display%3A%7CMuli%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CPlayfair+Display%3A700&ver=1.0.6.1

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Muli%3A%7CPlayfair+Display%3A%7CMuli%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CPlayfair+Display%3A700&ver=1.0.6.1
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Muli%3A%7CPlayfair+Display%3A%7CMuli%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%7CPlayfair+Display%3A700&ver=1.0.6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 06:55:55 GMT
date: Tue, 29 Nov 2022 06:55:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/css/dashicons.min.css?ver=6.1.1

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/css/dashicons.min.css?ver=6.1.1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 12 Mar 2022 04:46:50 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/style.css?ver=1.2.3

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/style.css?ver=1.2.3
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cryout-serious-slider/resources/style.css?ver=1.2.3 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 14:37:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 02 Nov 2022 09:01:00 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/script.js?ver=f0806654071d159197fcf61cedea88b5

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/script.js?ver=f0806654071d159197fcf61cedea88b5
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wpzoom-portfolio/build/script.js?ver=f0806654071d159197fcf61cedea88b5 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:52:35 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/slider.js?ver=1.2.3

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/cryout-serious-slider/resources/slider.js?ver=1.2.3
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cryout-serious-slider/resources/slider.js?ver=1.2.3 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 14:37:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0-dev1

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0-dev1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.10.0-dev1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 08 Nov 2022 21:00:31 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/block/dist/style-wpzoom-social-icons.css?ver=4.2.4

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/block/dist/style-wpzoom-social-icons.css?ver=4.2.4
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/block/dist/style-wpzoom-social-icons.css?ver=4.2.4 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/style.css?ver=e01684e96c736f225b9510141c059823

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/style.css?ver=e01684e96c736f225b9510141c059823
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wpzoom-portfolio/build/blocks/portfolio/style.css?ver=e01684e96c736f225b9510141c059823 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:52:35 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 21:09:58 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 08 Nov 2022 21:00:31 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-social-icons-styles.css?ver=1649501642

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-social-icons-styles.css?ver=1649501642
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/wpzoom-social-icons-styles.css?ver=1649501642 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/url.min.js?ver=bb0ef862199bcae73aa7 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 02 Nov 2022 09:00:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/pagelayer/css/combined.css?ver=1.7.2

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/pagelayer/css/combined.css?ver=1.7.2
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/pagelayer/css/combined.css?ver=1.7.2 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 22 Nov 2022 21:00:31 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/themes/bravada/style.css?ver=1.0.6.1

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/themes/bravada/style.css?ver=1.0.6.1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/bravada/style.css?ver=1.0.6.1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 14:37:13 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/academicons.min.css?ver=1649501642

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/academicons.min.css?ver=1649501642
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/academicons.min.css?ver=1649501642 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/font-awesome-3.min.css?ver=1649501642

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/font-awesome-3.min.css?ver=1649501642
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/font-awesome-3.min.css?ver=1649501642 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/pagelayer/js/combined.js?ver=1.7.2

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/pagelayer/js/combined.js?ver=1.7.2
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/pagelayer/js/combined.js?ver=1.7.2 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 22 Nov 2022 21:00:31 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/api-fetch.min.js?ver=bc0029ca2c943aec5311 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 21:09:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/ HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-pingback: https://www.riobrasilword.com/xmlrpc.php
link: <https://www.riobrasilword.com/wp-json/>; rel="https://api.w.org/", <https://www.riobrasilword.com/wp-json/wp/v2/posts/72243>; rel="alternate"; type="application/json", <https://www.riobrasilword.com/?p=72243>; rel=shortlink
x-servername: ipvsproxy254.ad.aruba.it
x-aruba-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.10.0-dev1

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.10.0-dev1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/modules/lazyload/frontend.min.css?ver=3.10.0-dev1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 08 Nov 2022 21:00:30 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/instagram-widget-by-wpzoom/assets/frontend/magnific-popup/magnific-popup.css?ver=1.9.5

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/instagram-widget-by-wpzoom/assets/frontend/magnific-popup/magnific-popup.css?ver=1.9.5
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/instagram-widget-by-wpzoom/assets/frontend/magnific-popup/magnific-popup.css?ver=1.9.5 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:53:43 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1649501642

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1649501642
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/js/social-icons-widget-frontend.js?ver=1649501642 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 02 Nov 2022 09:00:59 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 12 Mar 2022 04:46:50 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0-dev1

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0-dev1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.10.0-dev1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 08 Nov 2022 21:00:31 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A400%2C500%7CCabin%3A400%2C700&ver=1.7.2

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A400%2C500%7CCabin%3A400%2C700&ver=1.7.2
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A400%2C500%7CCabin%3A400%2C700&ver=1.7.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 06:55:55 GMT
date: Tue, 29 Nov 2022 06:55:55 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A400%2C500%2Cbold%2C300%7CCabin%3A400%2C700%2C600%7Croboto%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A400%2C500%2Cbold%2C300%7CCabin%3A400%2C700%2C600%7Croboto%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A400%2C500%2Cbold%2C300%7CCabin%3A400%2C700%2C600%7Croboto%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.riobrasilword.com
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 06:55:55 GMT
date: Tue, 29 Nov 2022 06:55:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A400%2C500%7CCabin%3A400%2C700

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A400%2C500%7CCabin%3A400%2C700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A400%2C500%7CCabin%3A400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.riobrasilword.com
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 06:55:55 GMT
date: Tue, 29 Nov 2022 06:55:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/instagram-widget-by-wpzoom/css/instagram-widget.css?ver=1.9.5

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/instagram-widget-by-wpzoom/css/instagram-widget.css?ver=1.9.5
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/instagram-widget-by-wpzoom/css/instagram-widget.css?ver=1.9.5 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:53:43 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 12 Mar 2022 04:46:50 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A400%2C500%2Cbold%2C300%7CCabin%3A400%2C700%2C600%7Croboto%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&ver=1.7.2
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A400%2C500%2Cbold%2C300%7CCabin%3A400%2C700%2C600%7Croboto%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&ver=1.7.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 06:55:55 GMT
date: Tue, 29 Nov 2022 06:55:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/themes/bravada/resources/fonts/fontfaces.css?ver=1.0.6.1

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/themes/bravada/resources/fonts/fontfaces.css?ver=1.0.6.1
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/bravada/resources/fonts/fontfaces.css?ver=1.0.6.1 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 14:37:13 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/genericons.css?ver=1649501642

31.11.36.33

200 OK

0 B

URL HTTP/2
www.riobrasilword.com/wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/genericons.css?ver=1649501642
IP
31.11.36.33:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/social-icons-widget-by-wpzoom/assets/css/genericons.css?ver=1649501642 HTTP/1.1
Host: www.riobrasilword.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.riobrasilword.com/2022/11/20/mcgraw-hill-connect-anatomy-and-physiology-answer-key-rar-repack/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Tue, 29 Nov 2022 06:55:55 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 09 Apr 2022 10:54:02 GMT
x-servername: ipvsproxy254.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations