r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3385
Expires: Mon, 05 Sep 2022 21:19:06 GMT
Date: Mon, 05 Sep 2022 20:22:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 19:44:57 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TtLfW4EwsV6n3IQRQ-LW8OZQghhAgk4gmz_2X6YMp5k9yF5lta1wCA==
Age: 2264
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: k0ifdGb79eoRfmLKnnip96Hzbn89VSVyisx5vs_AHve_QtkArvDARA==
age: 68844
X-Firefox-Spdy: h2
treinavil.com/
108.179.252.43301 Moved Permanently 230 B IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8dce017942e414c90d08e75b94d06605
b913397e9f0653659b3e7d6d58d985ca93d554fa
9aaef95735e496a6af0c004be81d99d1ec1d9e3825aeb523366ab1eb232ae0d2
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 05 Sep 2022 20:22:41 GMT
Server: Apache
Location: https://treinavil.com/
Content-Length: 230
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 20:22:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 05 Sep 2022 19:38:16 GMT
Expires: Mon, 05 Sep 2022 20:29:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9oGCVsmCan9t9VP0VghM6Gk4dLCcd41CZ1KoYlSsQ2Gys_66rRUiww==
Age: 2665
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ea792c4e667b1ea668dacc95580aed47
3d4643c8b9c1e98dd3b7dec129e4a1b00b5ade5a
0090f21aa78863d21044e9a45ca62f6285dd1c94441d4208331a51ae3e5f1f0b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0090F21AA78863D21044E9A45CA62F6285DD1C94441D4208331A51AE3E5F1F0B"
Last-Modified: Sun, 04 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 06 Sep 2022 02:22:41 GMT
Date: Mon, 05 Sep 2022 20:22:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b57a9dd04797bf34612c80361f1dffb3
56573166d8b9cd9b8dae19fd905e4f3293af306b
b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2803
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:41 GMT
Last-Modified: Mon, 05 Sep 2022 19:35:58 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a73c40e0fed317f31e35a24d5b5e2d0d
fb19e9d403e37956762ebb527260576860161872
4a38f2cc8997dada402e2cce06bbd8776cbad2075b00696d00efa59ad5388644
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-168386923-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-168386923-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 5e8de1b81823b7cb8b23ebab5a845e1b
c5914cf01019b97f0c9da7657f04c67835fcb2ec
f04f02eb3b8d99707d038e0d9b33daa7a040a029c56b4eeb995c94f73ceba78f
GET /gtag/js?id=UA-168386923-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Sep 2022 20:22:42 GMT
expires: Mon, 05 Sep 2022 20:22:42 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41910
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
treinavil.com/application/wp-includes/css/dist/block-library/style.mind6ea.css?ver=5.0.9
108.179.252.43200 OK 5.7 kB URL HTTP/2 treinavil.com/application/wp-includes/css/dist/block-library/style.mind6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25658), with no line terminators
Hash 8b9c15e4f1b7293a57eb629c5dff499b
93bb7c3cc60324bd0d016c0e11e0ea67b700e9d5
13a48fe8fcbd79b1c5e818129bf6708e90842c870a8f87a6d83d8fb4ef48db73
Analyzer Verdict Alert fortinet Malware
GET /application/wp-includes/css/dist/block-library/style.mind6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:42:04 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 5674
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/css/font-awesomed6ea.css?ver=5.0.9
108.179.252.43200 OK 7.1 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/font-awesomed6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type troff or preprocessor input, ASCII text, with very long lines (392), with CRLF line terminators
Hash ae1088462a3645a2ba7ef97364d8a6ab
0357b94e0dad0a596c7a3b7314cd30e85416f1c4
6ff7ad94d5e4fbf70a0ac405a79a9be0c46ae366dcf045c307f19d5b46ca0a92
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/css/font-awesomed6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:59 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 7080
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/css/owld6ea.css?ver=5.0.9
108.179.252.43200 OK 1.6 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/owld6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 2d7faf4e373a3ca860fc5fc970c97628
b38cb78bf709f5f15800eb5bcb45ea9140afde53
ccfdf946c6ec4b49b4e735f537ace5d1e3cf6394a8a0e61aa49bce0db51685c6
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/css/owld6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:44:03 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 1598
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/revslider/public/assets/css/rs6b5e1.css?ver=6.1.5
108.179.252.43200 OK 16 kB URL HTTP/2 treinavil.com/application/wp-content/plugins/revslider/public/assets/css/rs6b5e1.css?ver=6.1.5
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 245173fc101e30884ba135bc1be370b6
01bc2bf308ead750abd1184d778fc6f404ebde2a
fe2a437b061eadb40d5fa29895fca49b080fd1c03af577b40d68e9937f037fa0
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/plugins/revslider/public/assets/css/rs6b5e1.css?ver=6.1.5 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:34 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 16041
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/css/flaticond6ea.css?ver=5.0.9
108.179.252.43200 OK 1.7 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/flaticond6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 3999dceb1e05944570fa63d8c09e76f3
7bbfe280429fa1edff0156d54184bddcc41a6830
79982a9da03d9d11d89a2566e823b0f8a435f588ffe1012a57682b7b07643a25
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/css/flaticond6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:57 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 1743
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/css/jquery.fancyboxd6ea.css?ver=5.0.9
108.179.252.43200 OK 1.7 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/jquery.fancyboxd6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e49072b64dac9836a868c76084dd4b30
273f64e33cce42a7b89a1a0d95b3d1f62e0796da
93e67096e2b6df100971c2dbb70cc0f659b8320caf63f847cad4644cc7207223
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/css/jquery.fancyboxd6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:44:01 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 1687
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CQuattrocento+Sans%3A400%2C400i%2C700%2C700i%7CSource+Sans+Pro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i&subset=latin%2Clatin-ext
142.250.74.10200 OK 2.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CQuattrocento+Sans%3A400%2C400i%2C700%2C700i%7CSource+Sans+Pro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash 79df54987cff9230780dfafbc82e5116
8af2ff1ac020d5d9da2394a7ba5942a3b5c483f8
9747af89cdfcf30081ffb94714c366a481d7bd3ae79b13de741a638d2821cbdd
GET /css?family=Lato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%7CQuattrocento+Sans%3A400%2C400i%2C700%2C700i%7CSource+Sans+Pro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Sep 2022 20:22:42 GMT
date: Mon, 05 Sep 2022 20:22:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.35.74.102101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.74.102:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: g/31XzUuIkEKakjVJvVAQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ezo8Z86GWw457B/AF1/boFbACPA=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
treinavil.com/application/wp-content/themes/bristol/css/animated6ea.css?ver=5.0.9
108.179.252.43200 OK 7.7 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/animated6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash e4198e1ffd7cfa2c816cb4c07d1a0636
1da3452b5c6a4a574d0096ac7c08d8f85f19ce71
2eade5d6cf08630e8fef0b5e4c74bcd56b0a8726508e0b905742a5f7e4f6bc4d
GET /application/wp-content/themes/bristol/css/animated6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:54 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 7668
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/iconsb246.css?ver=2.7.8
108.179.252.43200 OK 11 kB URL HTTP/2 treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/iconsb246.css?ver=2.7.8
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (35475)
Hash 36cebd2b9af4a00d9df14437a11876b0
9847f79be7005be676ebd433d5bc75e27dc8be10
e646d869729298cac80bf72bf90972943a2793127b10cc074d208a576416b71e
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/plugins/kingcomposer/assets/css/iconsb246.css?ver=2.7.8 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:01 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 11227
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-includes/js/jquery/jquery-migrate.min330a.js?ver=1.4.1
108.179.252.43200 OK 4.8 kB URL HTTP/2 treinavil.com/application/wp-includes/js/jquery/jquery-migrate.min330a.js?ver=1.4.1
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10709)
Hash e512470c02c04b9f1ff12226fb865f48
9436da65f365c46cd66243ff2bc94c354b2f2e43
3f302bd668e91c0fe3b7c62dc81d20e17798de97c35cc2dbad92f03f67280b4f
Analyzer Verdict Alert fortinet Malware
GET /application/wp-includes/js/jquery/jquery-migrate.min330a.js?ver=1.4.1 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:41:55 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 4840
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/images/logo-small.png
108.179.252.43200 OK 8.5 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/images/logo-small.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 6868a2dba61cc20533843d8d6c5b04f9
ab23c8920b712b84c06fe8d3b6faa874c8ecc16e
b030a2a6c72323c68b62153ae97f295975e64234d5c73b42a417f1161270cf93
GET /application/wp-content/themes/bristol/images/logo-small.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 28 May 2020 16:19:34 GMT
accept-ranges: bytes
content-length: 8520
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/images/logo.png
108.179.252.43200 OK 13 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/images/logo.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 250 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash afb5e3eecdd317ddc8d39609ee91e986
ee42ac1403a2283b1d211d73300ee21e9de439d2
a30bfca70537a6f1274880fcad548e718ac570e77df160b3b5cdb551424f8f6f
GET /application/wp-content/themes/bristol/images/logo.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 May 2020 16:16:21 GMT
accept-ranges: bytes
content-length: 12553
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/_file/banner/23/banner.png
108.179.252.43200 OK 159 kB URL HTTP/2 treinavil.com/_file/banner/23/banner.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1280x800, components 3\012- data
Size 159 kB (158826 bytes)
Hash 0aa0815e763bdd8b9dd946ab29c1dc02
5b34ff16870d4190202663bf77ac20a1c8d66ab7
ca7069a2b88c5209088e15e8d8d8d6c08a6f0ef36f0c8ee4404abe0334c6d2cb
GET /_file/banner/23/banner.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Sep 2020 21:45:18 GMT
accept-ranges: bytes
content-length: 158826
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/css/customd6ea.css?ver=5.0.9
108.179.252.43200 OK 2.1 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/customd6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 56f703d5487a84a986dda45ac7a101a1
2d8da6f23ba27d8ff8a4602f6ed95c62788eb92c
d8a3bfa7c9eab8a14d75590202e42d6d03a765e8e7878c116d377245b2fae4fa
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/css/customd6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:56 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 2102
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/animateb246.css?ver=2.7.8
108.179.252.43200 OK 3.7 kB URL HTTP/2 treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/animateb246.css?ver=2.7.8
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36512)
Hash e3f6e578fe7ca5362fccbfcce94ce996
b1deba8d80cae941d22051fda096e49d6274af3b
eb202c9ec2bc15da2ea3e218313eb25628179671965ed043c49fb711a63dfbfe
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/plugins/kingcomposer/assets/css/animateb246.css?ver=2.7.8 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:42:24 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 3656
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-includes/js/main.js
108.179.252.43200 OK 623 B URL HTTP/2 treinavil.com/application/wp-includes/js/main.js
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (750)
Hash b4d6495a27e72849a61c3971f7de66e5
73f65d4346a87e12c2a4659871b6409acab0b7cf
fdbd8fac8d221fce4970165d952af77d28cec4a34f2cce7901cd9ac37830f6b7
Analyzer Verdict Alert fortinet Malware
GET /application/wp-includes/js/main.js HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 31 May 2020 20:12:12 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 623
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-includes/js/wp-embed.mind6ea.js?ver=5.0.9
108.179.252.43200 OK 1.2 kB URL HTTP/2 treinavil.com/application/wp-includes/js/wp-embed.mind6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2153), with no line terminators
Hash c76c6410b417d2c24a7c932a4e7bea29
a3d9564540146b634d20a7f28dd1a26a15124536
bb4fe7a95dcf8ee6fda03a31a82567df820ebfa186864e65aa54ba4192ef02ad
Analyzer Verdict Alert fortinet Malware
GET /application/wp-includes/js/wp-embed.mind6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:41:58 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 1153
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-includes/js/comment-reply.mind6ea.js?ver=5.0.9
108.179.252.43200 OK 993 B URL HTTP/2 treinavil.com/application/wp-includes/js/comment-reply.mind6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1828), with no line terminators
Hash 8378314750258de976f28694d0bde014
a924f378ab2d00b787f1e7f7080974d76b22a0d2
39d11cbd4d2230358d4f43f20d23df3263f6ef356e52a70a9dc5408374b87757
GET /application/wp-includes/js/comment-reply.mind6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:41:53 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 993
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/css/responsived6ea.css?ver=5.0.9
108.179.252.43200 OK 4.1 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/responsived6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 34b4603f7b31fd41aef02ad6c1cce428
ef52ae684a2bcb102d89f4945cc9019b41edd971
7035cdfd169c79359add64e4a662ba25d407c29b4bf63064a2cd6c2d2a2f0ebc
GET /application/wp-content/themes/bristol/css/responsived6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:44:05 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 4123
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/js/jquery.fancybox-mediad6ea.js?ver=5.0.9
108.179.252.43200 OK 2.5 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/js/jquery.fancybox-mediad6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (761)
Hash c564f0b125763cdb0ebee780b2c9ff09
20900a4e75c3ce13a8add278bd96eec22cfae581
236bf99d6169b0e452f04f409bf565544b8aec1aa223156c2a1ffb07af2b68b6
GET /application/wp-content/themes/bristol/js/jquery.fancybox-mediad6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:45:07 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 2524
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/js/wowd6ea.js?ver=5.0.9
108.179.252.43200 OK 2.9 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/js/wowd6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7019), with CRLF line terminators
Hash c74ffd8a324813da1abe128b81fd46d3
38fd45b0d7c1f8075189ea5aa05ef242d3d86294
afd10f537d5375d5092f435e65fcf2aa2b5fcd6f43ac2ecbc7da8847eee7fdc7
GET /application/wp-content/themes/bristol/js/wowd6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:45:14 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 2903
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/js/scriptd6ea.js?ver=5.0.9
108.179.252.43200 OK 5.4 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/js/scriptd6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (761)
Hash 4a525aad6427aea0bda90360e2aad722
d297462e5ddebab046da969114ca44588dccffa1
279666bba66deaf9ccf37d58b601abfda26c812b25173ff394a3754498eadd77
GET /application/wp-content/themes/bristol/js/scriptd6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 31 May 2020 19:46:05 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 5394
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.minb246.js?ver=2.7.8
108.179.252.43200 OK 8.7 kB URL HTTP/2 treinavil.com/application/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.minb246.js?ver=2.7.8
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (17655)
Hash a4f9c20ccc326f5ee9aeb33880192d30
6f60988a582b0abbf154eab5cef99160175ad85c
674fcfd911e3987f749c8366c34f3e8cf24f548c7beb12d4857887d4c5370d34
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/plugins/kingcomposer/assets/frontend/js/kingcomposer.minb246.js?ver=2.7.8 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:15 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 8658
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/5.png
108.179.252.43200 OK 2.5 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/5.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 160 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash a12e927fc880c1465d47b685c88884c6
1ee6eff6f3bc023d727b5b3c54eb17ec9de785c8
55f509e52c72f97345cefddf32d2be0cf37d425564b57f330a1fc69d5d6a5116
GET /application/wp-content/uploads/2017/01/5.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:28 GMT
accept-ranges: bytes
content-length: 2511
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/1.png
108.179.252.43200 OK 2.4 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/1.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 160 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash bd56c8a4e6b3b1a55a5b638a1238defb
667b0f8b293b3589da945783f2476f06b80a778d
3b78fa3d793774d66df758ddec98aba66fccdaf75c357390f724154e1b0aa6cb
GET /application/wp-content/uploads/2017/01/1.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:56:10 GMT
accept-ranges: bytes
content-length: 2408
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/js/jquery.fancybox.packd6ea.js?ver=5.0.9
108.179.252.43200 OK 11 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/js/jquery.fancybox.packd6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1143)
Hash 06c3cecf61ee0e349976ffb267c8b112
577b89941d5d9d4ec395b1fa3bf98f214a4974b9
1b98262e400e9bff69e8b6c7acc31dca32722abf429f3feabfed9d8c2c679575
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/js/jquery.fancybox.packd6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:45:08 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 10834
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/3.png
108.179.252.43200 OK 3.1 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/3.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 160 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash ff2ac6ba996403faefba5235e075f919
7e22b45d194730825d532d3631bb8b07d652b1d5
e98d50693bcda4825381b42d8fe0f2bd8726400d22f961eaecc21fe3cada3a93
GET /application/wp-content/uploads/2017/01/3.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:07 GMT
accept-ranges: bytes
content-length: 3141
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/2.png
108.179.252.43200 OK 2.5 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/2.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 160 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash f11e8d93ffd048acd03c3751bc842e4d
1f51de846d953b5f874caccfccbf3f232683c91c
e9bb2484129ecfc58aaca22d17495ca4e483d5c8c09c43d9e37109517f55e32c
GET /application/wp-content/uploads/2017/01/2.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:05 GMT
accept-ranges: bytes
content-length: 2486
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/4.png
108.179.252.43200 OK 3.0 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/4.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 160 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 87dbede17b13c95eb5a329189e41d700
92bf1eed7d2107fbc51283f8524512c71aaaf94e
a35e301c1fb6b2dbc0cf3e7b6065090aa37d7d179d3215ff9d2a357e16beeb30
GET /application/wp-content/uploads/2017/01/4.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:13 GMT
accept-ranges: bytes
content-length: 2959
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/js/mixitupd6ea.js?ver=5.0.9
108.179.252.43200 OK 17 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/js/mixitupd6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (761)
Hash c668a5869f3e58cfe45389fe0c6d5661
bc1e8ff6384ae8fab06cc4014da902b1e6923c3d
50f77a507b1387d8be4ee2aa906ddbec1ac4bb7380f4d9d17dc8146682826002
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/js/mixitupd6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:45:11 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 16678
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/guard-1.jpg
108.179.252.43200 OK 19 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/guard-1.jpg
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 (12.0x20100115 [20100115.m.998 2010/01/15:02:00:00 cutoff; m branch]) Windows, datetime=2020:05:29 18:35:59], baseline, precision 8, 380x449, components 3\012- data
Hash 4e29d82ff4139ed9456330200233085d
be0ed30c8016664cf3ac51d87648693a13e75238
931501737f981ab3bb7c8f704a83edb7b090d7156605df7f5f98a534d2766861
GET /application/wp-content/uploads/2017/01/guard-1.jpg HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 May 2020 21:36:03 GMT
accept-ranges: bytes
content-length: 19121
content-type: image/jpeg
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/news-3.jpg
108.179.252.43200 OK 40 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/news-3.jpg
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x300, components 3\012- data
Hash ed9237f2c3560ce5805e361730d4d125
7574fbbf5aeca533b28dc97ace6e0c9eec029b96
c81166ce36f56c13486a2af73a1b11e1e588746e40b54d8bf4177f4b15df5788
GET /application/wp-content/uploads/2017/01/news-3.jpg HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:20 GMT
accept-ranges: bytes
content-length: 40490
content-type: image/jpeg
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/news-2.jpg
108.179.252.43200 OK 30 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/news-2.jpg
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x300, components 3\012- data
Hash 56568db1866c9a7dafae9849f348655a
49977a3e9b6c83d83c64a8889377e94edcf26954
ad02afca305d0230c1874a3f1dee2869ab141d32ca4194455aafa371f4f103e3
GET /application/wp-content/uploads/2017/01/news-2.jpg HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:29 GMT
accept-ranges: bytes
content-length: 30187
content-type: image/jpeg
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/news-1.jpg
108.179.252.43200 OK 47 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/news-1.jpg
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x300, components 3\012- data
Hash d18c73b3ff8e9864d4ca8e830a13ee8c
ddd8e462627cac905a05b7e44dfe96a563b7311c
6c7c84cedcd334a5ddec3ac936a4c1c1db32b12ede1dc06fe7e343becb689f9e
GET /application/wp-content/uploads/2017/01/news-1.jpg HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:49 GMT
accept-ranges: bytes
content-length: 47081
content-type: image/jpeg
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/_file/unidade/3/unidade.png
108.179.252.43200 OK 79 kB URL HTTP/2 treinavil.com/_file/unidade/3/unidade.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 700x350, components 3\012- data
Hash 3a3bc0c1333bf358695cc01772d947e9
de24b11e9defcf9d41a2fb132c4b8c12045641a9
89b8e932ece18bc8d6c31d9d36f68ff2cf799f289a0235b108bd093c582c3840
GET /_file/unidade/3/unidade.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 19:32:03 GMT
accept-ranges: bytes
content-length: 78978
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/_file/banner/21/banner.png
108.179.252.43200 OK 200 kB URL HTTP/2 treinavil.com/_file/banner/21/banner.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x820, components 3\012- data
Size 200 kB (199850 bytes)
Hash 7052f25df873cb942e3c420c1dd22cd9
169fbd383932f08239dbeeb8962681084368c17a
f789c0ed2b362f8cb4097665b2d437f64a1289b8998a7cfc4edbf114445c0d8c
GET /_file/banner/21/banner.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Sep 2020 21:44:24 GMT
accept-ranges: bytes
content-length: 199850
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/police-man.png
108.179.252.43200 OK 217 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/police-man.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 344 x 578, 8-bit/color RGBA, non-interlaced\012- data
Size 217 kB (217155 bytes)
Hash 1b17e9020d898d92f5ca4b90f6422201
93be388d877382ff39c272298873383cc3fc5011
a7347bdb3d61dc4bdb8fceb8168aeac9ffccb4a46182f7dc6daba7ea8e7d9b7b
GET /application/wp-content/uploads/2017/01/police-man.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:04 GMT
accept-ranges: bytes
content-length: 217155
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/js/bootstrap.mind6ea.js?ver=5.0.9
108.179.252.43200 OK 471 B URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/js/bootstrap.mind6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/js/bootstrap.mind6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:45:06 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-length: 14412
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://treinavil.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:10:21 GMT
expires: Wed, 30 Aug 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 529941
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://treinavil.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:26:57 GMT
expires: Thu, 31 Aug 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 435345
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://treinavil.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:26:57 GMT
expires: Thu, 31 Aug 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 435345
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://treinavil.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 17:10:21 GMT
expires: Wed, 30 Aug 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 529941
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://treinavil.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:26:57 GMT
expires: Thu, 31 Aug 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 435345
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type gzip compressed data, max compression\012- data
Hash 27ff168122d8a3edfb2d0d34ca946867
8c31b7ecd315f08238f3b84b6bbf9317a3aa8931
c6c99d3ede77e82c419eb6f1ffa16546b5eeb64b2a7e8826976a9745856e4646
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://treinavil.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 18:53:20 GMT
expires: Tue, 05 Sep 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 5362
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
treinavil.com/_file/banner/22/banner.png
108.179.252.43200 OK 325 kB URL HTTP/2 treinavil.com/_file/banner/22/banner.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x820, components 3\012- data
Size 325 kB (324976 bytes)
Hash 600cf36ae5dfc9ffaa057e678c6e80cd
5b35fa8d0a119cf622d5723495d7197e43c808c6
09bdb7c85a8b980dff2aded1d09743e72de82500fec06f3711ce0a79c7334339
GET /_file/banner/22/banner.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Sep 2020 21:44:45 GMT
accept-ranges: bytes
content-length: 324976
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/_file/unidade/2/unidade.png
108.179.252.43200 OK 509 kB URL HTTP/2 treinavil.com/_file/unidade/2/unidade.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 700 x 350, 8-bit/color RGBA, non-interlaced\012- data
Size 509 kB (509109 bytes)
Hash 7f697ad7f19e507e7aa511e6411a4ead
457803c745e15e291970d68622e4acd4657970e2
13205cece5eb288cf4ac5a0877ed760a2b76ff439c28bdf4fed38ff456f4f5cc
GET /_file/unidade/2/unidade.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Jul 2020 21:26:05 GMT
accept-ranges: bytes
content-length: 509109
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/_file/unidade/1/unidade.png
108.179.252.43200 OK 952 kB URL HTTP/2 treinavil.com/_file/unidade/1/unidade.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1107 x 571, 8-bit/color RGB, non-interlaced\012- data
Size 952 kB (951989 bytes)
Hash 690ed23ca993090433148697fd165e90
019528d06a9cd297a001e795137e31af829ea033
50780655e819c83c37c99d7ec54c305d5fb0609a2573ec185c336d1043fd6fc5
GET /_file/unidade/1/unidade.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 19:20:26 GMT
accept-ranges: bytes
content-length: 951989
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/_file/unidade/4/unidade.png
108.179.252.43200 OK 1.3 MB URL HTTP/2 treinavil.com/_file/unidade/4/unidade.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1456 x 706, 8-bit/color RGBA, non-interlaced\012- data
Size 1.3 MB (1338148 bytes)
Hash 1c99f2243f1ca28458a14f5593c3dd6b
bb9af8dbf810f2954996b871b3645645b72858f8
f52fa6127fe0204fbbf9ec93b353b181015b4f6e6070711ac25d367fb7d0da1f
GET /_file/unidade/4/unidade.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 19:39:03 GMT
accept-ranges: bytes
content-length: 1338148
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11793
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 20:22:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11793
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 20:22:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11793
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 20:22:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11793
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 20:22:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11793
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 20:22:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10318189f33f071dda64249ab9c8c5bb
e5b5b649a243e5c004d9923d19d4421d1ea96d23
3e775a1990e4d185024faf2fdff7a5eb9063f7ee19784f32fb4f7f10643c8102
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: 05fffcb2-43c0-4acf-81b2-1b914459e1e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwHErUIAMFmNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-47fe166763992ab271a87aa4;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nJTKTh88iyFXAiPJ-tCCEbqBo3A1cuTj2gCbfHkaVZ1WcgMOTyFfVg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 23:06:26 GMT
age: 76577
etag: "e5b5b649a243e5c004d9923d19d4421d1ea96d23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4b2d6a516e93799b54fe2bbd6630f86
b5a7380f294876dd308c7fde294f36a425c1be01
7463878d8967ff31d7ce20d5a4408c23ad59123032a990c21a47df0881edcb86
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5377
x-amzn-requestid: 2adc68e8-1889-4233-8ac4-e2a8d44ccbdd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X_4XzF1FoAMF3AA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63163a98-5918897d7de556f75bbfab34;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 18:06:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DpNb6dBygeDbRbFWIkeXYVddcgxlSVuq4y73JvG315Xp-wkwiDhZyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 18:06:16 GMT
age: 8187
etag: "b5a7380f294876dd308c7fde294f36a425c1be01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fe061740ad833cfe7ff0fe078d6810d
15d0fc3fdced758b5797361bae0fd53341e0581d
5409b6775bca5afd03901975c61c27f267efe2c8a8e739f05ebc52a938c5a368
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5459
x-amzn-requestid: a75bf8a5-dc96-4a88-9de5-b79d1d62ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxB_bFMFoAMFkEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631049fc-2685c90962d8af5f4a7b5908;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 05:58:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YqgTII0TYwznz5DfHLFpfzTPh08akwJSWc3wIf-YpBgUrs84AYM2Yw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:15:00 GMT
age: 79663
etag: "15d0fc3fdced758b5797361bae0fd53341e0581d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30bf854fd3e27e2313a3d26fc43b9990
032acf1bfb0c8e2cbce8f2ff4d2964424b044951
7641be64dd25487edf4f845d1fbb0b07daa80fa8fb58863dd09081d9d169bd13
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: de0e8998-4a52-4651-bcd6-3068c50193b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey2Eq4oAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-15da44d87bf486cb1738fe18;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nqxzicnkQPrjStpPaMIZAukyjtUBQaXfuxWzIs77YGDyJmnirlMsxw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 21:54:51 GMT
age: 80872
etag: "032acf1bfb0c8e2cbce8f2ff4d2964424b044951"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 290f6551c5ac539ea60810b135750f17
3633391a8dd87ef10fcb0d04d7b309738affc4a7
d94d133faaf232cf15b5c3f38f5b45d87d70bce0668d607b5c66a8d3f836540f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7830
x-amzn-requestid: c56af3b5-2c48-4243-b220-d56a9be47990
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey3H4JoAMFiMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-23ec24d867e3e5906fffa1a6;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fpKQlxOtyRwaZk2FUf11J62jlqcAvXgOQT-ipFQm6qW-dMHyXaEnNg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 21:49:31 GMT
age: 81192
etag: "3633391a8dd87ef10fcb0d04d7b309738affc4a7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
treinavil.com/_file/unidade/5/unidade.png
108.179.252.43200 OK 2.2 MB URL HTTP/2 treinavil.com/_file/unidade/5/unidade.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 960, 8-bit/color RGBA, non-interlaced\012- data
Size 2.2 MB (2245519 bytes)
Hash 04e3ba01bebb72d83aba000c3113e49d
b5e9ef2ab422174ce8b51eac49dab3f4932ee764
92af535d75b50b915063e57f99deb6878aae0af6ae737222dcea06879e8c0f23
GET /_file/unidade/5/unidade.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Jun 2021 11:43:11 GMT
accept-ranges: bytes
content-length: 2245519
content-type: image/png
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/images/icons/icon-dropdown.png
108.179.252.43200 OK 1.1 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/images/icons/icon-dropdown.png
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 8 x 6, 8-bit/color RGBA, non-interlaced\012- data
Hash 62bd605f092be491904df1799a6edce5
dc6382b152cafa1a69a96fa57912dc30a608f076
5c6be6c3f7fdb422dc132906d9c10a56f90be9dbae8f98c5c38787eb45f45c5b
GET /application/wp-content/themes/bristol/images/icons/icon-dropdown.png HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/application/wp-content/themes/bristol/styled6ea.css?ver=5.0.9
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:44:59 GMT
accept-ranges: bytes
content-length: 1149
content-type: image/png
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/fonts/flaticon.woff
108.179.252.43200 OK 29 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/fonts/flaticon.woff
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 29100, version 0.0\012- data
Hash 8ee00b060905595187e717bf5c786fbd
52f13c908244e0c14248180ff1533c690b85ecae
2e1f657eb9c17f3e34c442af4778f10e7cf895b780ef412d87da908977029bdb
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/fonts/flaticon.woff HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://treinavil.com/application/wp-content/themes/bristol/css/flaticond6ea.css?ver=5.0.9
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:44:12 GMT
accept-ranges: bytes
content-length: 29100
content-type: font/woff
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2
108.179.252.43200 OK 44 kB URL HTTP/2 treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 44068, version 1.0\012- data
Hash 84f351b3972185aed620f78489e48b2d
27c88aea3904d48cde4c8cd6fa85a414b547feea
cb7aa6b06aa5a8eea3670662c4b0c37104041c14575fc170dc48677a0506a33a
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/plugins/kingcomposer/assets/css/fonts/fa-solid-900.woff2 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/iconsb246.css?ver=2.7.8
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:42:51 GMT
accept-ranges: bytes
content-length: 44068
content-type: font/woff2
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/revslider/public/assets/assets/loader.gif
108.179.252.43200 OK 2.5 kB URL HTTP/2 treinavil.com/application/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /application/wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/application/wp-content/plugins/revslider/public/assets/css/rs6b5e1.css?ver=6.1.5
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:28 GMT
accept-ranges: bytes
content-length: 2545
content-type: image/gif
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/css/hoverd6ea.css?ver=5.0.9
108.179.252.43200 OK 48 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/hoverd6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 564b4018976c79e10dfb733beb401f2a
d35fce47b881d031c8209607094f20e1f292eab3
5e5b9e2bc02d6e222e6f90c869724ecb9197fcd2ed51bd2af3a1abd33aa5af0e
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/css/hoverd6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:44:00 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/1-1.jpg
108.179.252.43200 OK 476 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/1-1.jpg
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1246, components 3\012- data
Size 476 kB (476133 bytes)
Hash f614d5a19ccc1639a7e3b6c9845b972e
2fff5c0f188328bcdc844559776aabd422a3f429
57a624742e180eb5d44bb5949ec5766d869702b3dc66302dab1002eb8d7f9728
GET /application/wp-content/uploads/2017/01/1-1.jpg HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:55:36 GMT
accept-ranges: bytes
content-length: 476133
content-type: image/jpeg
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/uploads/2017/01/choose-us.jpg
108.179.252.43200 OK 71 kB URL HTTP/2 treinavil.com/application/wp-content/uploads/2017/01/choose-us.jpg
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 (12.0x20100115 [20100115.m.998 2010/01/15:02:00:00 cutoff; m branch]) Windows, datetime=2020:05:28 13:14:40], baseline, precision 8, 600x460, components 3\012- data
Hash 6a0e0a631352eb9e2d4648875c2b277e
4642b067aa3a95549551d34576e7e8d8db2a5f88
cbe17a8b18d9b93dc83bdda5f46dd950d01d87a7ddd8573c54c75c5b89daea85
GET /application/wp-content/uploads/2017/01/choose-us.jpg HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 28 May 2020 16:15:23 GMT
accept-ranges: bytes
content-length: 70938
content-type: image/jpeg
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/fonts/et-line.woff
108.179.252.43200 OK 55 kB URL HTTP/2 treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/fonts/et-line.woff
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, CFF, length 55220, version 1.0\012- data
Hash b01ff252761958325faab1535c90c87f
d33413e7bc42acc8837cc9030ca45d29c1ccf0c6
19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/plugins/kingcomposer/assets/css/fonts/et-line.woff HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://treinavil.com/application/wp-content/plugins/kingcomposer/assets/css/iconsb246.css?ver=2.7.8
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:42:32 GMT
accept-ranges: bytes
content-length: 55220
content-type: font/woff
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/fonts/sourcesanspro-black.woff2
108.179.252.43200 OK 72 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/fonts/sourcesanspro-black.woff2
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 72516, version 2.1310\012- data
Hash bbf770f7ef2894d7f6e60f03dc1a2fb6
7e2fc42f8af7d4d263eab5970d83d671f9c2a4fe
dcbed104e669d6801e39e3dc7f4f474088ab6708149b75658826d3814ce4d6de
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/fonts/sourcesanspro-black.woff2 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://treinavil.com/application/wp-content/themes/bristol/styled6ea.css?ver=5.0.9
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:44:33 GMT
accept-ranges: bytes
content-length: 72516
content-type: font/woff2
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons90c6.woff?5510888
108.179.252.43200 OK 7.5 kB URL HTTP/2 treinavil.com/application/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons90c6.woff?5510888
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
GET /application/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons90c6.woff?5510888 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://treinavil.com/application/wp-content/plugins/revslider/public/assets/css/rs6b5e1.css?ver=6.1.5
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:42 GMT
accept-ranges: bytes
content-length: 7536
content-type: font/woff
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ac94e66aa0d5e43073a587ca03c6194
fd55a52e1167144a2760793a647cf16da4756d97
d38dace01cd7104c0e5e32d16cb1d066b5c9cdae8c94311c8c775264d9f9351e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3338
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:43 GMT
Last-Modified: Mon, 05 Sep 2022 19:27:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 07869ddc8aa688fe8a93876ef1264055
636614db9c01c03fcc2d10f5f949b513e1a338c9
ab8f4fcf2e21b2e44d69d6e4a6478a7eb6cf8e451202c7dc2854ef68b8e91b2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4423
Cache-Control: max-age=162232
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:43 GMT
Etag: "63162004-1d7"
Expires: Wed, 07 Sep 2022 17:26:35 GMT
Last-Modified: Mon, 05 Sep 2022 16:12:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 05 Sep 2022 18:41:12 GMT
expires: Mon, 05 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 6091
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/pt_BR/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 8afb246f6d1059e3119dec27a6aec720
5b901877470a2aedd9185c2a724eb8219b442403
b150d41f5350111154549b5f6fd44d47c1492c74f60c41b9278d0b12c710aeb5
GET /pt_BR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://treinavil.com
Connection: keep-alive
Referer: https://treinavil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8084ce6118ad992700004c1d3f73a424
etag: "fd8fd8cb9b838dacb0643b7eba710979"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 05 Sep 2022 20:41:21 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ivskb20QWeMRnewnpq7HIA==
x-fb-debug: O6ts4V2XqOJMxelyfMsvTjZTzgClk3yPK3EwX3O31exC+8vUVWaLTNGk9TiaeY+C6FpT2eNHtqAP2DoG5nM4AA==
content-length: 1687
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:43 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 07869ddc8aa688fe8a93876ef1264055
636614db9c01c03fcc2d10f5f949b513e1a338c9
ab8f4fcf2e21b2e44d69d6e4a6478a7eb6cf8e451202c7dc2854ef68b8e91b2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4423
Cache-Control: max-age=162232
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:43 GMT
Etag: "63162004-1d7"
Expires: Wed, 07 Sep 2022 17:26:35 GMT
Last-Modified: Mon, 05 Sep 2022 16:12:52 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
treinavil.com/application/wp-content/themes/bristol/js/owld6ea.js?ver=5.0.9
108.179.252.43200 OK 29 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/js/owld6ea.js?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 3bf965bb2d861dda969f82ae54179311
bd05e9275f96ba912b2a351adea01c57ad8306ae
3046b42ff865358f145deb492394e018e7ff76b30afd8a4346600cdf12ef4c61
GET /application/wp-content/themes/bristol/js/owld6ea.js?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:45:12 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/fonts/fontawesome-webfont914c.woff2?v=4.6.1
108.179.252.43200 OK 71 kB URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/fonts/fontawesome-webfont914c.woff2?v=4.6.1
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 70728, version 4.393\012- data
Hash 926c93d201fe51c8f351e858468980c3
977357f82830f57fbdac2492dd421e5dcce44a1a
d3ebb498192527b985939ae62cc4e5eb5c108efc1896184126b45d866868e73d
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/fonts/fontawesome-webfont914c.woff2?v=4.6.1 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://treinavil.com/application/wp-content/themes/bristol/css/font-awesomed6ea.css?ver=5.0.9
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:44:21 GMT
accept-ranges: bytes
content-length: 70728
content-type: font/woff2
date: Mon, 05 Sep 2022 20:22:43 GMT
server: Apache
X-Firefox-Spdy: h2
connect.facebook.net/pt_BR/sdk.js?hash=dbcb7136b264a9675d35fd6c3e0f98f8
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/pt_BR/sdk.js?hash=dbcb7136b264a9675d35fd6c3e0f98f8
IP 31.13.72.12:0
File type ASCII text, with very long lines (13115)
Hash 345ee08684c5eae85e2f810b47481eb8
7d29ae77bb712afd2d1ddca2df14069dad6de908
7bfa0b573f76228a96b379a2531f831e303da4f2a1ab5a62c9679ec15f94fa3c
GET /pt_BR/sdk.js?hash=dbcb7136b264a9675d35fd6c3e0f98f8 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://treinavil.com
Connection: keep-alive
Referer: https://treinavil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0a57611a265ec31034984a1710aabc3a
etag: "73a2e6e78459fda3259c07c6ecd30026"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 05 Sep 2023 18:57:20 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: NF7ghoTF6uheL4ELR0geuA==
x-fb-debug: M0vKGbfztxYT4z263JmFdqDrkkJgVbh7XkCWtjzcJ03Oj3SHKgK54mBadzC5hWHBej1pjwo04H/O7NEqzzXqAg==
content-length: 86725
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:43 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca50f9c56ff869b0b63ca71b1a9f8170
13b16ca74113dfd52ccf23e6bb39307fc713f984
76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: s3I0upYLCPvbg_1jqc7qyhNxIc9i6tgfsFRVh6OsFHmUMXbtT86U1g==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 17:20:25 GMT
age: 10938
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=567202783392900&ev=fb_page_view&dl=https%3A%2F%2Ftreinavil.com%2F&rl=&if=false&ts=1662409358937&sw=1280&sh=1024&at=
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=567202783392900&ev=fb_page_view&dl=https%3A%2F%2Ftreinavil.com%2F&rl=&if=false&ts=1662409358937&sw=1280&sh=1024&at=
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=567202783392900&ev=fb_page_view&dl=https%3A%2F%2Ftreinavil.com%2F&rl=&if=false&ts=1662409358937&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Mon, 05 Sep 2022 20:22:43 GMT
expires: Mon, 05 Sep 2022 20:22:43 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.instagram.com/embed.js
31.13.72.174302 Found 0 B URL HTTP/2 www.instagram.com/embed.js
IP 31.13.72.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed.js HTTP/1.1
Host: www.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
location: https://www.instagram.com/static/bundles/es6/EmbedSDK.js/ab12745d93c5.js
cache-control: max-age=21600
date: Mon, 05 Sep 2022 20:22:43 GMT
content-length: 0
x-ig-origin-region: rva
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.instagram.com/static/bundles/es6/EmbedSDK.js/ab12745d93c5.js
31.13.72.174200 OK 4.8 kB URL HTTP/2 www.instagram.com/static/bundles/es6/EmbedSDK.js/ab12745d93c5.js
IP 31.13.72.174:0
File type ASCII text, with very long lines (4493)
Hash 3543e9a96bdb3772338c42d7dea55498
c5ec3c3d8ca05021774e45bc1e3788eee5e44b32
106e116a060079d2634c5a4afe862ae7abf1e0a53235f70f48d469511e45d3f0
GET /static/bundles/es6/EmbedSDK.js/ab12745d93c5.js HTTP/1.1
Host: www.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://treinavil.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-encoding: br
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
etag: "ab12745d93c5"
cache-control: public,max-age=31536000,immutable
edge-control: max-age=1209600, no-transform
date: Wed, 31 Aug 2022 01:08:42 GMT
content-length: 4843
x-fb-trip-id: 1679558926
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ac94e66aa0d5e43073a587ca03c6194
fd55a52e1167144a2760793a647cf16da4756d97
d38dace01cd7104c0e5e32d16cb1d066b5c9cdae8c94311c8c775264d9f9351e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3366
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:43 GMT
Last-Modified: Mon, 05 Sep 2022 19:26:38 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
static.xx.fbcdn.net/rsrc.php/v3/yL/l/0,cross/3qxx1w_4YTJ.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 22 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yL/l/0,cross/3qxx1w_4YTJ.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21049)
Hash d7668f9b25dacf93ee31e1f669486496
08557ffae46c6644bac3170c8fe2aaab1945874b
251401a999cf7ba2553d7d0ff3eca43eca4f2d7b66dc57dd48a122110a18abfe
GET /rsrc.php/v3/yL/l/0,cross/3qxx1w_4YTJ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 05 Sep 2023 15:28:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: CKqjYEGudJR1oBJFxs/YVQ==
x-fb-debug: /Q3qHPbJBrIYpAAyzqi3+fkPocXDOJpLhzeZuQ13HMEVMgwm2F69U84dKnoEZ7EBTTJ9aCcfMPNQXF7EWBuJsw==
content-length: 5077
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 29 Aug 2023 23:02:09 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: 6fz6C88YLD0zrDgQWE8WbxUG/2QD+QJb5c3Bqi5EOEiYGzUgoHH9EDt5l3xqbMjKQGMAVO6FQr4s7IUQKPFUsA==
priority: u=3,i
content-length: 827
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y3/r/6eAM8p9VdYI.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y3/r/6eAM8p9VdYI.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18501)
Hash 9a97eb8093ef826fa21437a09936a046
78307d9897fa74ea4aa2cd29349cb4d8b356e48a
729b99bf77fe42bb8d6c3f38524e2b827fe9fb327cd8ad5d154cf6be92664e66
GET /rsrc.php/v3/y3/r/6eAM8p9VdYI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 02 Sep 2023 03:41:48 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: mpfrgJPvgm+iFDegmTagRg==
x-fb-debug: mkwmxajbTuH4U+7dun8Rr36AHO16wNvTOQW+X19pdiSIzQJzF0qDO3G0t/pXZuUhf6TuLdlGAzWBDjGcpiJRtw==
content-length: 90719
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 29 Aug 2023 21:51:15 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: R+zzX7WmRf1X+q8q6BPoX98sZT9HHmBK8mBuiUDRylG8YQE2dqj5AWC1p+a8DynhyN64NvyDA/IKk4p+bhwmbA==
priority: u=3,i
content-length: 1657
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5261)
Hash 6059f2908fc78af36d89f372311116ef
431905421a858f26f5624203b0ecae7b6d8c6c42
33ba2a807c3a7a85d489d24e1a843c4361a791492fdbe68e471d2064155467f0
GET /rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 04 Sep 2023 16:13:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YFnykI/HivNtifNyMREW7w==
x-fb-debug: YQs2aq0nbp/h3uDN50vOAPYPOO9T0HhyH1PWoVMTwJQK2rLx7waDuFvPjsk03f6R49nuVvhhc5xcc6nt55ozyA==
priority: u=3,i
content-length: 12179
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (7299)
Hash 1626e8e828598e06ccd0c47e55b42304
af5c62af35bf22b593fdbe758a2feea6bc1b057f
3798dbb7df2694a222f65f4cadc92e6d133fc8f5fc2b00f326df521cd0c24b25
GET /rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 30 Aug 2023 20:19:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Fibo6ChZjgbM0MR+VbQjBA==
x-fb-debug: yKgrNO5aL8jb+7is7cpv3zTmYQAs08YuQEYt5P+/ugofGKtiaHzZqAKhY0ZhHozTJkXIPPQp216/kp+p01E//g==
content-length: 15844
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iL6L4/yL/l/pt_BR/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iL6L4/yL/l/pt_BR/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (2905)
Hash a4bcddc3d4e12b1d52eac8714c7f958a
c62ae075403d314bd12c40296e3ef57ebdac7742
cadc35bc039f36f6b054f5c5a7db02255667734933d75473c16d0fc1ae6a4d9f
GET /rsrc.php/v3iL6L4/yL/l/pt_BR/aNjKFj6YixL.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 31 Aug 2023 01:51:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: pLzdw9ThKx1S6shxTH+Vig==
x-fb-debug: LrTMwX4rgWhlyAUJrvNXb/yk6ieRAK+e3OP3RNGdeGko9Sm/4sXmgQGgCJDWloomyzdepl8I0ChtRac3P4ZcYA==
priority: u=3,i
content-length: 8365
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yQ/r/ifJqquhieUG.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 9.0 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yQ/r/ifJqquhieUG.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (9886)
Hash ed1095fc3d9a4c8ae24db874ba983b9b
92f90403959cb0cd4a598a166d3ffc7bff41fc2b
877fdb028d8e82d4553c435d1a4f27fbaf577b88b25eee2e7aaeea95d543ed0f
GET /rsrc.php/v3/yQ/r/ifJqquhieUG.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 30 Aug 2023 04:32:32 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 7RCV/D2aTIriTbh0upg7mw==
x-fb-debug: +Ha+DfMz3qRaLqiDDcalWcIlmI8iCCvfKtUqJdVYaUQWQTMB2AGMLA0TmYI8aLrfj71Epj+rU2UuZyTF3YG3yg==
priority: u=3,i
content-length: 9049
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iM-F4/yA/l/pt_BR/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iM-F4/yA/l/pt_BR/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (42036)
Hash 1a047174e06ed3d123da146c555677f6
8b29dd41f61d62f66d281c48c32319eabb615672
0e7137b220ece4340f5e4a6a776bfa6d9d9a5880b7777867ff60d152422ea907
GET /rsrc.php/v3iM-F4/yA/l/pt_BR/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 31 Aug 2023 02:50:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GgRxdOBu09Ej2hRsVVZ39g==
x-fb-debug: Dk4L3EiZlFPZdDv1wsC1dt8D4tZ+cfS04+4uOfZlTP+KCCynk2olKNKCIjuCNOz8CQbVgGRhtFYGxt4yUBHmUA==
content-length: 23359
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4061)
Hash d1ba68f146b01f4aef60d79aadb926ea
c6b4703c25d07fd2363e5d67d11e4846d9979b26
abbff04acf96f39a3121ed97505b5a23cbeee9057dd7040c58c4e423c899805d
GET /rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 02 Sep 2023 10:34:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0bpo8UawH0rvYNearbkm6g==
x-fb-debug: 86y3i3sy9jjDaSwZdKwWDNfT0jhSZgIC/wO/r6UsDn/zT5AA7hVmL+J1eWzgzylntf4RiG+L/nvUQSjPsoquGQ==
priority: u=3,i
content-length: 7236
x-fb-trip-id: 1904183273
date: Mon, 05 Sep 2022 20:22:45 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17584c6f248aa7a0b87b1e60b9ae2e48
01790527510c3531b823acd63ebf9256fcb1a22c
fcf2eeebc6c9e65051d4475c719ce32892369a56508bb9149c700325d337b2b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4732
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:46 GMT
Last-Modified: Mon, 05 Sep 2022 19:03:54 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17584c6f248aa7a0b87b1e60b9ae2e48
01790527510c3531b823acd63ebf9256fcb1a22c
fcf2eeebc6c9e65051d4475c719ce32892369a56508bb9149c700325d337b2b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3326
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 20:22:46 GMT
Last-Modified: Mon, 05 Sep 2022 19:27:20 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
graph.instagram.com/logging_client_events
31.13.72.53200 OK 0 B URL HTTP/2 graph.instagram.com/logging_client_events
IP 31.13.72.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /logging_client_events HTTP/1.1
Host: graph.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-asbd-id
Referer: https://www.instagram.com/
Origin: https://www.instagram.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-max-age: 300
access-control-allow-headers: x-asbd-id
access-control-allow-methods: GET, POST, DELETE, OPTIONS
content-type: application/json; charset=UTF-8
vary: Origin
x-fb-rlafr: 0
facebook-api-version: v8.0
access-control-allow-origin: *
strict-transport-security: max-age=15552000
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: AROmJbfdsP9spsnuJ-Sd8hc
x-fb-trace-id: EgoO/TXr9rq
x-fb-rev: 1006143464
x-fb-debug: BvuS+DK0QupI9km9+3LxJOW9t0w628vEjefCTd8RUQJDh/OmRMWp38Yei6crbjk3k4VIO+ISBykxL5oZDCs+mA==
content-length: 0
date: Mon, 05 Sep 2022 20:22:46 GMT
x-fb-trip-id: 1512268381
X-Firefox-Spdy: h2
graph.instagram.com/logging_client_events
31.13.72.53200 OK 107 B URL HTTP/2 graph.instagram.com/logging_client_events
IP 31.13.72.53:0
File type JSON data\012- , ASCII text
Hash 5f3497d048ece2767b63247b2e32c2e0
16ae56c905dd0cb9f82a648d5df1c9980050f6a8
9b7c9bb91016a0d17171d9a9307591530d2211c64f33104a1b87299a6b386f95
POST /logging_client_events HTTP/1.1
Host: graph.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-ASBD-ID: 198387
Content-Type: application/x-www-form-urlencoded
Content-Length: 2567
Origin: https://www.instagram.com
Connection: keep-alive
Referer: https://www.instagram.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin
cross-origin-resource-policy: cross-origin
x-fb-rlafr: 0
facebook-api-version: v8.0
access-control-allow-origin: *
strict-transport-security: max-age=15552000
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: Awcux-o1Dwbj1nX3Gv6VzYP
x-fb-trace-id: A9l0L07aJqu
x-fb-rev: 1006143464
x-fb-debug: uOixJJ0/7HdtOeGdlzx/tLd40SzagEFt21cPuMlR/ltRcrHELk4tYfqHQkq+xNy7s3+klC3bIxAnucrYegEQzQ==
content-length: 107
date: Mon, 05 Sep 2022 20:22:46 GMT
priority: u=3,i
x-fb-trip-id: 1512268381
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/styled6ea.css?ver=5.0.9
108.179.252.43200 OK 0 B URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/styled6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /application/wp-content/themes/bristol/styled6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Jul 2020 21:51:38 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
www.instagram.com/p/B9c97XZAaGW/embed/captioned/?cr=1&v=12&wp=368&rd=https%3A%2F%2Ftreinavil.com&rp=%2F
31.13.72.174200 OK 0 B URL HTTP/2 www.instagram.com/p/B9c97XZAaGW/embed/captioned/?cr=1&v=12&wp=368&rd=https%3A%2F%2Ftreinavil.com&rp=%2F
IP 31.13.72.174:0
GET /p/B9c97XZAaGW/embed/captioned/?cr=1&v=12&wp=368&rd=https%3A%2F%2Ftreinavil.com&rp=%2F HTTP/1.1
Host: www.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-accel-buffering: no
vary: Accept-Language, Cookie, Accept-Encoding
content-language: en
date: Mon, 05 Sep 2022 20:22:43 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000
cache-control: private, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: report-uri https://www.instagram.com/security/csp_report/; default-src 'self' https://www.instagram.com; img-src data: blob: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com https://*.facebook.com https://*.fbsbx.com https://*.giphy.com; font-src data: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com; media-src 'self' blob: https://www.instagram.com https://*.cdninstagram.com https://*.fbcdn.net; manifest-src 'self' https://www.instagram.com; script-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://*.cdninstagram.com wss://www.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https://*.www.instagram.com https://www.instagram.com 'unsafe-inline'; connect-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://graph.instagram.com https://*.graph.instagram.com https://i.instagram.com/graphql_www https://graphql.instagram.com https://*.cdninstagram.com https://api.instagram.com https://i.instagram.com https://*.i.instagram.com https://*.od.instagram.com wss://www.instagram.com wss://edge-chat.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net chrome-extension://boadgeojelhgndaghljhdicfkmllpafd blob:; worker-src 'self' blob: https://www.instagram.com; frame-src 'self' https://instagram.com https://www.instagram.com https://*.instagram.com https://staticxx.facebook.com https://www.facebook.com https://web.facebook.com https://connect.facebook.net https://m.facebook.com https://*.fbsbx.com; object-src 'none'; upgrade-insecure-requests
cross-origin-embedder-policy-report-only: require-corp;report-to="coep"
report-to: {"group": "coep", "max_age": 86400, "endpoints": [{"url": "/security/coep_report/"}]},{"group": "coop", "max_age": 86400, "endpoints": [{"url": "/security/coop_report/"}]}
origin-trial: AuqWincgAuXeuu3KypEMnrrFEJHySaesyJS3EaIH40zvafzrU0Irhb7+5QwZpOqMZrPTjgvFl7Z5jJgy1dNAcQMAAAB6eyJvcmlnaW4iOiJodHRwczovL2luc3RhZ3JhbS5jb206NDQzIiwiZmVhdHVyZSI6IkNyb3NzT3JpZ2luT3BlbmVyUG9saWN5UmVwb3J0aW5nIiwiZXhwaXJ5IjoxNjEzNDExNjYyLCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cross-origin-opener-policy: same-origin-allow-popups;report-to="coop"
x-content-type-options: nosniff
x-xss-protection: 0
x-ig-push-state: c2
x-aed: 69
access-control-expose-headers: X-IG-Set-WWW-Claim
x-ig-request-elapsed-time-ms: 24
x-ig-peak-time: 0
x-ig-origin-region: rva
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/revslider/public/assets/js/rs6.minb5e1.js?ver=6.1.5
108.179.252.43200 OK 0 B URL HTTP/2 treinavil.com/application/wp-content/plugins/revslider/public/assets/js/rs6.minb5e1.js?ver=6.1.5
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /application/wp-content/plugins/revslider/public/assets/js/rs6.minb5e1.js?ver=6.1.5 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:48 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.minb246.css?ver=2.7.8
108.179.252.43200 OK 0 B URL HTTP/2 treinavil.com/application/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.minb246.css?ver=2.7.8
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/plugins/kingcomposer/assets/frontend/css/kingcomposer.minb246.css?ver=2.7.8 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:06 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-includes/js/jquery/jqueryb8ff.js?ver=1.12.4
108.179.252.43200 OK 0 B URL HTTP/2 treinavil.com/application/wp-includes/js/jquery/jqueryb8ff.js?ver=1.12.4
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /application/wp-includes/js/jquery/jqueryb8ff.js?ver=1.12.4 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:41:57 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/plugins/revslider/public/assets/js/revolution.tools.minf049.js?ver=6.0
108.179.252.43200 OK 0 B URL HTTP/2 treinavil.com/application/wp-content/plugins/revslider/public/assets/js/revolution.tools.minf049.js?ver=6.0
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/plugins/revslider/public/assets/js/revolution.tools.minf049.js?ver=6.0 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:46 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/
108.179.252.43200 OK 0 B IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; path=/
ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679; expires=Mon, 05-Sep-2022 22:22:41 GMT; Max-Age=7200; path=/
vary: Accept-Encoding
content-encoding: gzip
accept-ranges: none
content-type: text/html; charset=UTF-8
date: Mon, 05 Sep 2022 20:22:41 GMT
server: Apache
X-Firefox-Spdy: h2
treinavil.com/application/wp-content/themes/bristol/css/bootstrapd6ea.css?ver=5.0.9
108.179.252.43200 OK 0 B URL HTTP/2 treinavil.com/application/wp-content/themes/bristol/css/bootstrapd6ea.css?ver=5.0.9
IP 108.179.252.43:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /application/wp-content/themes/bristol/css/bootstrapd6ea.css?ver=5.0.9 HTTP/1.1
Host: treinavil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://treinavil.com/
Cookie: PHPSESSID=caf32b0e9772f8064bf563848e745211; ci_session=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%222255e29e64cc017b0dd175de050c36bd%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A12%3A%2291.90.42.154%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A68%3A%22Mozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0%22%3Bs%3A13%3A%22last_activity%22%3Bi%3A1662409361%3Bs%3A9%3A%22user_data%22%3Bs%3A0%3A%22%22%3B%7D1e7f4cee318eda54359fe69f9b321d173f331679
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 May 2020 21:43:55 GMT
accept-ranges: none
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 05 Sep 2022 20:22:42 GMT
server: Apache
X-Firefox-Spdy: h2