firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 11:15:52 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RrfH8pOxSy9W2k9qerfRvnVZqyAdJoksHh65NnTmHsC81J157Dtviw==
Age: 993
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6dd4587c98aef98ad0939030a6976a7f
92dc5966ac2deb0c3ac7fdd02bf8d28f9239801e
a382476d14b6ae14003333e7acdfbbd9ae8775d4c1a7d5c31116f33987043cff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3623
Expires: Thu, 29 Sep 2022 12:32:48 GMT
Date: Thu, 29 Sep 2022 11:32:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 29 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ac0OYQGLHa_BVwdCEdV9wO_30Fi3f5wZGrVYKw8dMWqy5Lx1S5MpLA==
age: 21838
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 11:32:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 11:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 29 Sep 2022 11:38:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JLdxwKEWC8365Ic1Mkz6C2C6awpuLzr0TEYBjnJpM5aSCluPgkjWUg==
Age: 172
nextmedia.com.uy/esri/umevlear
158.106.131.228301 Moved Permanently 0 B URL HTTP/1.1 nextmedia.com.uy/esri/umevlear
IP 158.106.131.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /esri/umevlear HTTP/1.1
Host: nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Thu, 29 Sep 2022 11:32:25 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.nextmedia.com.uy/esri/umevlear
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f09cb223e3dc028c58cf32c2274c3766
ca7f1663a1200941986e786353ed2f3ff50bd0b2
9b89a5534b1a84f0a86f150dc7f1f699bb972f7b8e151b29c02454dd939066ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5023
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 11:32:26 GMT
Last-Modified: Thu, 29 Sep 2022 10:08:43 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.237.239.70101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.239.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cVlyOUlnTy0N0zkbXKtzCw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ktic2iYRwo68T7amrDbo1jcjnr4=
www.nextmedia.com.uy/esri/umevlear
158.106.131.228404 Not Found 22 kB URL HTTP/1.1 www.nextmedia.com.uy/esri/umevlear
IP 158.106.131.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1820), with CRLF, LF line terminators
Hash 5aa01e3e52fd8f0336793013ea688ee2
43b8b4b2d14759fe3f53d1f129aa51162ea834d2
ead11a85ec8f379813749ee6ea5e4762e247da3533041304f56329323c09b9d6
Analyzer Verdict Alert fortinet Malware
GET /esri/umevlear HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Thu, 29 Sep 2022 11:32:26 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.nextmedia.com.uy/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3e9d3eab1fba386c4fdf3af9a757cfa9
b50127a1072c95ed71110b07dd58eab72747e6f8
869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 11:32:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nextmedia.com.uy/site/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10
158.106.131.228200 OK 54 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10
IP 158.106.131.228:0
File type ASCII text, with very long lines (27100)
Hash 2e7e1d1c1d4d446a1b6b63295757d859
27a1d9dcbdc4aff486016b5c9f3ece6ad0c028c1
8c626f0f9b5c109539b256b73e72c02b300a184f46b4535c2eb86599215c78af
GET /site/wp-includes/css/dist/block-library/style.min.css?ver=5.5.10 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 04:23:14 GMT
Accept-Ranges: bytes
Content-Length: 53907
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
158.106.131.228200 OK 1.9 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
IP 158.106.131.228:0
Hash c7fd42b5bb3873666b0c3fc87bf32c6d
721e0a33ef06d747b0131e5aff045ea6968a8020
892af9f95c881cde5c6c1810e0f45e4687174a1171504c96b36218dd54bb1486
GET /site/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 16:23:43 GMT
Accept-Ranges: bytes
Content-Length: 1920
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/reset.css
158.106.131.228200 OK 8.8 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/reset.css
IP 158.106.131.228:0
File type ASCII text, with CRLF line terminators
Hash 4742c8599e1b4c61257bad92f618525c
7a87b3f5f0372e7a4bcb0d0cd579e52a26240fec
55b0fcb673405777d1739e14e5f88c418af14a0a781208230c54ae49ea36c8aa
GET /site/wp-content/themes/elos-ORIG/css/reset.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:32:26 GMT
Accept-Ranges: bytes
Content-Length: 8753
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/responsive-leyouts.css
158.106.131.228200 OK 43 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/responsive-leyouts.css
IP 158.106.131.228:0
File type ASCII text, with CRLF line terminators
Hash 08fd54ec73d67b0af064a83ff9f625c8
ddb1be55a6aa21787e4b656aa04a8d4c079476c3
1e33b26dd791fa7e0a17c959d0b8dfe5b93ecd84233d7c96dc3d79ac7887343d
GET /site/wp-content/themes/elos-ORIG/css/responsive-leyouts.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:32:27 GMT
Accept-Ranges: bytes
Content-Length: 42602
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/sticky.css
158.106.131.228200 OK 2.2 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/sticky.css
IP 158.106.131.228:0
File type ASCII text, with very long lines (578), with CRLF line terminators
Hash cb115e57cb52b6bcf629c601cee548e6
753b472f9bf556cbc4611873e4e006afe609a308
b65bd205ea4b1b6dd9bdf430e44310499cb84b1e3cf21c8c103233e2267c676e
GET /site/wp-content/themes/elos-ORIG/js/mainmenu/sticky.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:25 GMT
Accept-Ranges: bytes
Content-Length: 2170
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.5.3
158.106.131.228200 OK 22 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.5.3
IP 158.106.131.228:0
File type ASCII text, with very long lines (21822)
Hash feda974a77ea5783b8be673f142b7c88
b71d1c7c315b67c614563382d1c2a868ac14d729
0fb1bbca73646e8e2b93c82e8d8b219647b13d4b440c48e338290b9a685b8de1
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.5.3 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 16:08:13 GMT
Accept-Ranges: bytes
Content-Length: 21984
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/fhmm.css
158.106.131.228200 OK 7.8 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/fhmm.css
IP 158.106.131.228:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 4fee8a2c63f79dec3e3ca80b8365fca2
673e064870f6f6364180e39a8fea2e5fb3ed908e
a70756c6da522740d0c52de1026daa9a554d38702260f8e940bdd64735b2ab6e
GET /site/wp-content/themes/elos-ORIG/js/mainmenu/fhmm.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:21 GMT
Accept-Ranges: bytes
Content-Length: 7788
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs.css
158.106.131.228200 OK 1.5 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs.css
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash 3be103a67ec588fa89a748f4f22b6261
faa77ba67de5ab33d15f9705f16c9949b791f91b
00edcfbaa6730afd232d9af9ffbcc87e3544cc67bcc83983bc572dd1e9ad3d93
GET /site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:42:19 GMT
Accept-Ranges: bytes
Content-Length: 1536
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/icomoon/css/icomoon.css
158.106.131.228200 OK 91 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/icomoon/css/icomoon.css
IP 158.106.131.228:0
File type ASCII text, with very long lines (24793), with CRLF line terminators
Hash 6dc4d76b93c283196bdaa251b01a891b
7e1148ec5586a34df55145d4d91f5b307968d4fc
8d563da1c29bdb0662e845dac2306993682369ba4cdce519fc14ef6529f4db2d
GET /site/wp-content/themes/elos-ORIG/css/icomoon/css/icomoon.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:32:01 GMT
Accept-Ranges: bytes
Content-Length: 91002
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs2.css
158.106.131.228200 OK 1.9 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs2.css
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash 324f9fa957b7b67d4da8494f918ddfa9
bea130ce88227f70737050b3cb7fa7f2aa42911a
019d90d71a7fe95561dadd2e36895b475017277337b2fa4bcafb1a765373188c
GET /site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs2.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:42:19 GMT
Accept-Ranges: bytes
Content-Length: 1854
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/bootstrap.css
158.106.131.228200 OK 103 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/bootstrap.css
IP 158.106.131.228:0
File type ASCII text, with very long lines (540), with CRLF line terminators
Size 103 kB (103221 bytes)
Hash fae68b053490fbb76a739788aa455092
b376ae336047098a2f0ae996055d00a98792c192
e8d33ef7b4a4891cabbf3d75f755eed9f769fefe4d94aa360d49f2c63f69d4f9
GET /site/wp-content/themes/elos-ORIG/js/mainmenu/bootstrap.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:16 GMT
Accept-Ranges: bytes
Content-Length: 103221
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/style.css
158.106.131.228200 OK 171 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/style.css
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Size 171 kB (171011 bytes)
Hash 624c6d5ad4191a2fde862ec361ea2c11
858303f29e46c41141988a2491b8194702bb1e9b
96cf83119dd0f07435c445ef9735afd4d63abd80a3793847f8f789691668a62f
GET /site/wp-content/themes/elos-ORIG/css/style.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Fri, 21 Oct 2016 19:53:36 GMT
Accept-Ranges: bytes
Content-Length: 171011
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/carousel/skin.css
158.106.131.228200 OK 8.6 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/carousel/skin.css
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash b9b2a71e9b2c75c04062ca864ac9067f
510a0b30cc8a5a4f1978992e53c24c92047168a3
d1e3085724a8e96f554613d5f7e5057747e3845758df79060e4cd01aa82d82bf
GET /site/wp-content/themes/elos-ORIG/js/carousel/skin.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:39 GMT
Accept-Ranges: bytes
Content-Length: 8616
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs3.css
158.106.131.228200 OK 2.4 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs3.css
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash ffa0c082ed960f8cd5f81e6377aee902
7485535eb1aa3ea90060d29cb5949bf6eb7b7d0d
7bce1b220daeba56b9b0b72f64dfb6a553c567abf2ec963309aa57054dcb779e
GET /site/wp-content/themes/elos-ORIG/js/tabs/assets/css/responsive-tabs3.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:42:20 GMT
Accept-Ranges: bytes
Content-Length: 2362
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/carousel/flexslider.css
158.106.131.228200 OK 6.7 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/carousel/flexslider.css
IP 158.106.131.228:0
File type ASCII text, with very long lines (361), with CRLF, CR line terminators
Hash f7bbc2938ac7c365c3c931854409e714
25a4246f9f6bedcae91e8f9367dcd89efccca507
4b88b35a507d00a05eb5fa313d804dddb8799dcffa73175bdb4d2afd1d9c0f78
GET /site/wp-content/themes/elos-ORIG/js/carousel/flexslider.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:33 GMT
Accept-Ranges: bytes
Content-Length: 6715
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9705
Expires: Thu, 29 Sep 2022 14:14:12 GMT
Date: Thu, 29 Sep 2022 11:32:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9705
Expires: Thu, 29 Sep 2022 14:14:12 GMT
Date: Thu, 29 Sep 2022 11:32:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11594ce7500d8776bfd5162b17f87d72
72603efba82d649ce5a7a0ca45dc830c0d9ef012
511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gP4V4fq53Z5BFfjDlx1LCR9AhUPTq0qusBaOY_UEXjJjM6SByqDgXg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:41:45 GMT
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
content-type: image/jpeg
age: 49842
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48e2707b-f3b2-4e52-99ae-03c359b698de.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48e2707b-f3b2-4e52-99ae-03c359b698de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 556ea631652cbb77ff38dbe3bbc8c4d1
ba797da9b2d6942161fa02a0e431de4868b84327
130dab67cb6d80c741a7f2dadfd536bd6900204880dc3b68b2afbfa53dd3d781
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48e2707b-f3b2-4e52-99ae-03c359b698de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8754
x-amzn-requestid: 175fc592-ed89-44fb-8cf7-8a4404f59d4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZC5OcHKkIAMFafA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633108c2-2c0c36007bc8bcb56a54e8a1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 02:04:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -AhTOJwgY3-DnA_pYXdBL18wPP_fNeyDmZjkdkQ2J-xrBZSyRcdK3Q==
via: 1.1 71e7943ea0729c284a06faa05a567236.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 20:59:31 GMT
age: 52376
etag: "ba797da9b2d6942161fa02a0e431de4868b84327"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aed4d25286420a1405c3274931194002
c17c7bdfa4b40f9a0634da65c610869e5c410bf1
f32058bdd49930b927d1f9fdfd204ed054b4f85e0d679eff067d522d42ac504a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4093
x-amzn-requestid: 4275d743-8507-4fbe-83d1-cc0da2adef7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKoPHCMIAMF7wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be34-5ddb717430e7b38e3ee53657;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H713oiiX6wslZytV_P5NblH5vT7KZ2fv1G3DLKLrH5nw0lHOquia4w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:48 GMT
etag: "c17c7bdfa4b40f9a0634da65c610869e5c410bf1"
content-type: image/jpeg
age: 49899
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30471179bd7cdeecea2fa4ea98701aef
2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb
967e070aec3942c64cc6c4cfdc13d430825c9e5c26dbec5bb3d66237d5978dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4235
x-amzn-requestid: 60825c64-7743-4b16-b80d-d1195ccb0f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK2nFsDoAMFRwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be90-1898e5d9111db7c843c1ebb4;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C-XC9qsktkENdI6lWZp5RQjeEvrrFMUfBq1mA5dxEjRq5tkfL5Jsxw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:46 GMT
age: 49901
etag: "2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 456968f691ae9464d69a37bffe9bd7ce
31b8538deb0f00d5b4182739a4a2fcc1b956a998
5cde1e3158e6c6c0b7a01d3bd32f2aa292b3b205f604e5c4ed71cafedad06bf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7810
x-amzn-requestid: 7f6d92e1-c7b1-4dd2-9efa-52ad324ca19d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK6pFvkoAMF_yA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334beaa-362b7368566955966db78385;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TbPFEVDpMOjK26iu1UGcx56vtP7Pywq05VAylNubOIfbMgo1qGsA-w==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 04:12:40 GMT
age: 26387
etag: "31b8538deb0f00d5b4182739a4a2fcc1b956a998"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ac86079d2901fb11bfaff81d91bb2d2
4fc0699c763f67a2602b4b3f46b8b4013d2049c6
8c25b9129fc01f6ffad911994e91436ab0026ed0b54568757a20ab7f92584467
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3332
x-amzn-requestid: 34214e89-7232-4fd5-9257-adf231670681
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDb3vGkOIAMFVhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63314031-3056111d48a5027a2062ad1b;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 06:01:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VosALWNOhCfUDfo2bXgYE0Cx2duyHRaLb5DCn9IydXtoIsYyg9vWhA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:49:13 GMT
age: 49394
etag: "4fc0699c763f67a2602b4b3f46b8b4013d2049c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/cubeportfolio/cubeportfolio.min.css
158.106.131.228200 OK 53 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/cubeportfolio/cubeportfolio.min.css
IP 158.106.131.228:0
File type ASCII text, with very long lines (762), with CRLF line terminators
Hash caf134d203ce8520bcc46888a19602e3
1d1c34eab5dd8102c0cd4e7b3527b2e9ca8fe372
dbadf5f616f21201ceb74122e6bfb6dbb3a1be58fe5bb14444fb522ad09adf15
GET /site/wp-content/themes/elos-ORIG/js/cubeportfolio/cubeportfolio.min.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:44 GMT
Accept-Ranges: bytes
Content-Length: 52590
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/accordion/accordion.css
158.106.131.228200 OK 2.0 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/accordion/accordion.css
IP 158.106.131.228:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (335), with CRLF line terminators
Hash 794393c6de5888a9ba780023509a4a7d
e482fd24c10dad26d998ed35156dda262de2c2d0
f96d47fa4963f1365c5c578dc0b60ac5b9edc7fd096c75d931e7c049fcb451d6
GET /site/wp-content/themes/elos-ORIG/js/accordion/accordion.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:29 GMT
Accept-Ranges: bytes
Content-Length: 1969
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/lightbox/jquery.fancybox.css
158.106.131.228200 OK 5.5 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/lightbox/jquery.fancybox.css
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash e281e808de3820ff76a48179e9835417
edd6b58aa5960bdc4965f686251d4263606305b0
09495bc7d998085ff26506d21de52e2b04743ce67286d34acbb78e6278f9aedc
GET /site/wp-content/themes/elos-ORIG/js/lightbox/jquery.fancybox.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:09 GMT
Accept-Ranges: bytes
Content-Length: 5468
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/style.css?ver=5.5.10
158.106.131.228200 OK 308 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/style.css?ver=5.5.10
IP 158.106.131.228:0
File type ASCII text, with CRLF line terminators
Hash 64dc91d86e794404f2ef1e86fc33f7c3
23edfc3c9f47adafbdff0440cb381e6566090a46
3fe90f29c27bdf03e52abfde6c56369b3ac98d028f82524f9e3bda4779f974cd
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/style.css?ver=5.5.10 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:44:33 GMT
Accept-Ranges: bytes
Content-Length: 308
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/form/sky-forms.css
158.106.131.228200 OK 37 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/form/sky-forms.css
IP 158.106.131.228:0
File type ASCII text, with CRLF line terminators
Hash a8946af7926e7b8a45875168a3726829
729a49185f8b6c16ac175b98a892b424d1a4686c
0959695904364235e1cf3d5806123149a13b483b4d2896c30dc186f3351caf8f
GET /site/wp-content/themes/elos-ORIG/js/form/sky-forms.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:02 GMT
Accept-Ranges: bytes
Content-Length: 36649
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/uploads/js_composer/custom.css?ver=4.5.3
158.106.131.228200 OK 24 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/uploads/js_composer/custom.css?ver=4.5.3
IP 158.106.131.228:0
File type ASCII text, with no line terminators
Hash 37ccb42421ed8d9b5f4ce8eb7156f0d6
6534374e222a2850e01e3ed4f74da1fba2b266e2
e9a5730a1649091ba089d6512de3722d32d52d0f68d17c585544df01c3c06806
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/uploads/js_composer/custom.css?ver=4.5.3 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 16:08:43 GMT
Accept-Ranges: bytes
Content-Length: 24
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10
158.106.131.228200 OK 14 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10
IP 158.106.131.228:0
File type ASCII text, with very long lines (11272)
Hash 878184c5d285d4d52d926d36ef19b718
dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9
07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847
Analyzer Verdict Alert fortinet Malware
GET /site/wp-includes/js/wp-emoji-release.min.js?ver=5.5.10 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 04:23:14 GMT
Accept-Ranges: bytes
Content-Length: 14229
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/plugins/masterslider/public/assets/css/masterslider.main.css?ver=2.16.0
158.106.131.228200 OK 77 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/plugins/masterslider/public/assets/css/masterslider.main.css?ver=2.16.0
IP 158.106.131.228:0
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash e4e0347627c9757bd7a99bc272688580
76f7e65c48c88e456773ddc0620e1896497a729a
b44d9d3d9976db79392b5c1b2dc0f6cd745b695e4a30795f2d393d501c7f0ffc
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/plugins/masterslider/public/assets/css/masterslider.main.css?ver=2.16.0 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 19:33:48 GMT
Accept-Ranges: bytes
Content-Length: 77127
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/uploads/masterslider/custom.css?ver=5.2
158.106.131.228200 OK 16 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/uploads/masterslider/custom.css?ver=5.2
IP 158.106.131.228:0
File type ASCII text, with very long lines (13730)
Hash 7935345e5d5062bf298a9b2167055e95
23570a8aeeb45ded5e2baa8d3c8aa7bc08755dc0
c7aded118d07e96c00926ebc8598b8f32455578274d2b77fb72f408803d27b8c
GET /site/wp-content/uploads/masterslider/custom.css?ver=5.2 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 16:29:55 GMT
Accept-Ranges: bytes
Content-Length: 15531
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/animation.css
158.106.131.228200 OK 81 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/animation.css
IP 158.106.131.228:0
File type ASCII text, with very long lines (460), with CRLF line terminators
Hash 8bd718967b4f3407f968e2ed8ffc0c5a
6d0c3489d974c5360aff0af7a49b10fd0c49d8d8
4a46c2149e9e4f7c29bf74ef3f93f7f6932f283eb0894502a424442dad91c02c
GET /site/wp-content/themes/elos-ORIG/css/animation.css HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:31:45 GMT
Accept-Ranges: bytes
Content-Length: 80674
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/form/jquery.validate.min.js
158.106.131.228200 OK 26 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/form/jquery.validate.min.js
IP 158.106.131.228:0
File type Unicode text, UTF-8 text, with very long lines (26310), with CRLF line terminators
Hash 9cdb694bc2a26d3e35c557de12091cb3
651cc4a9af54d5061dc29f27723e9b6e4ab64f22
0f2567283a8a55b8a5b156ae036e7938ac1bfd6673a944298063fa578d788603
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/form/jquery.validate.min.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:00 GMT
Accept-Ranges: bytes
Content-Length: 26465
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2
158.106.131.228200 OK 14 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2
IP 158.106.131.228:0
Hash 309e1a27ab5c8722dea8f46fc8c384d5
784a35686079a37cf469e27fd7efa1b2fac7ac97
a0ea735f765d5bc1230beb63bcb701b69c80d77c48572a61bb159a8915903278
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.2.2 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 16:23:43 GMT
Accept-Ranges: bytes
Content-Length: 14105
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/style-switcher/jquery-1.js
158.106.131.228200 OK 93 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/style-switcher/jquery-1.js
IP 158.106.131.228:0
File type Unicode text, UTF-8 text, with very long lines (65478), with CRLF, CR line terminators
Hash 6081f1fbf1d0955a6134d49dc81f970d
297454d38d9b55e59ee21829d9bd5f8928b8d5a1
9c9c3ca3597585fb0a014a91c26ffde9e787230a899c87e380bdad4700055a66
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/style-switcher/jquery-1.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:42:15 GMT
Accept-Ranges: bytes
Content-Length: 93437
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/style-switcher/styleselector.js
158.106.131.228200 OK 678 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/style-switcher/styleselector.js
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash 0a87f8cebb862dbf08d04de518021c61
5326dd4c31e7840d73841f283e3cc8cb28a026b1
1deb758ff379dd346eafd3e47cdc0b210b0caceb7a4ee23d832c4147c3c33e1a
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/style-switcher/styleselector.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:42:16 GMT
Accept-Ranges: bytes
Content-Length: 678
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
158.106.131.228200 OK 97 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 158.106.131.228:0
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer Verdict Alert fortinet Malware
GET /site/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 04:23:14 GMT
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/bootstrap.min.js
158.106.131.228200 OK 28 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/bootstrap.min.js
IP 158.106.131.228:0
File type ASCII text, with very long lines (27535), with CRLF line terminators
Hash a4d202d2888cc20f8b75d4fd3060a1f6
75dcbe3b5435824b206d3a9420f5f3dbade18e24
e76c76a35589d5617d58c02be0d9bff127ba1fce76c71f6c17e38c9e6ddedda9
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/mainmenu/bootstrap.min.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:20 GMT
Accept-Ranges: bytes
Content-Length: 27756
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/carousel/jquery.jcarousel.min.js
158.106.131.228200 OK 16 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/carousel/jquery.jcarousel.min.js
IP 158.106.131.228:0
File type ASCII text, with very long lines (15184), with CRLF, CR line terminators
Hash b331ff01eff188a116a44d89dc07e2f8
9a45ef1a50a2d13899ac33723fce36b2211ad418
722d33746fbe7ededf1be97b4a3fcbc34c80c59d29f4418aedae1fe2a2da26c6
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/carousel/jquery.jcarousel.min.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:27 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:36 GMT
Accept-Ranges: bytes
Content-Length: 15682
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/scrolltotop/totop.js
158.106.131.228200 OK 313 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/scrolltotop/totop.js
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash 9ee3aa00c97fbbd3bf254da318c2e199
68e16d1adc585649785055b74314f3c545ca2008
75dd5c44cc1d12f0b233cae1595478450ce175f1411a6d76d3208691919f0193
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/scrolltotop/totop.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:42:11 GMT
Accept-Ranges: bytes
Content-Length: 313
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/accordion/custom.js
158.106.131.228200 OK 960 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/accordion/custom.js
IP 158.106.131.228:0
File type ASCII text, with CRLF line terminators
Hash 95d3a823c6f4ad80b39271aba089d483
3e619c7375720375c1740183f0fb9fe8ef581e5c
4e0ae47030f09c4de9aaf47427b48d130cf1dd0df966a7bf7663ed67352ab26c
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/accordion/custom.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:30 GMT
Accept-Ranges: bytes
Content-Length: 960
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/modernizr.custom.75180.js
158.106.131.228200 OK 7.8 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/mainmenu/modernizr.custom.75180.js
IP 158.106.131.228:0
File type HTML document, ASCII text, with very long lines (7648), with CRLF line terminators
Hash d04d262a373ea40532c95624a1465926
4f640cd5d762777c81735776844882eeaf351d32
9937794f59d37f457793604d7f1d7d43f08c0718bc500ea3970e695b17eb46bb
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/mainmenu/modernizr.custom.75180.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:23 GMT
Accept-Ranges: bytes
Content-Length: 7764
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/uploads/2015/07/logo-NEXTMEDIA-120.png
158.106.131.228301 Moved Permanently 291 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/uploads/2015/07/logo-NEXTMEDIA-120.png
IP 158.106.131.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6844158eef86308f7f41925a2d4a71bc
9f752a65de0a0eca1e4e6749b79c5d3b314461f7
353de2dad9bf8284c518ebc9874e054873fba0c50b798bcc8a611f6dbf8cfd82
GET /site/wp-content/uploads/2015/07/logo-NEXTMEDIA-120.png HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Location: https://www.nextmedia.com.uy/site/wp-content/uploads/2015/07/logo-NEXTMEDIA-120.png
Content-Length: 291
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/cubeportfolio/jquery.cubeportfolio.min.js
158.106.131.228200 OK 41 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/cubeportfolio/jquery.cubeportfolio.min.js
IP 158.106.131.228:0
File type ASCII text, with very long lines (40999), with CRLF line terminators
Hash 4a03013d94472b55f27ac1acfc4d119e
62a3b21310127354f7cf9cdf0970c183a77bba17
618547129ca7904cc8618e62ae09feb01a805d0250de5e264ac8515a0e71ac31
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/cubeportfolio/jquery.cubeportfolio.min.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:45 GMT
Accept-Ranges: bytes
Content-Length: 41268
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/cubeportfolio/main.js
158.106.131.228200 OK 8.6 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/cubeportfolio/main.js
IP 158.106.131.228:0
File type ASCII text, with CRLF line terminators
Hash 649beae9d2ab0851c0eb587d1d2281ed
7a20674c49e9207bd6f9cd3487e743fa8b4f90de
55a6c96df5183cdfdea9a2b0a2974b1d4a27cc6c162bf1873afccf3d0de97d37
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/cubeportfolio/main.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:46 GMT
Accept-Ranges: bytes
Content-Length: 8602
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15dbf298fc5c3f79b34abf59118cc01c
c48dc908b9aa86adb5017683a23b625d8fd1b955
9061294bc67906630f52dfdb486941691a8b9291b938c032076cef3f7bf21ce7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 11:32:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nextmedia.com.uy/site/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.5.3
158.106.131.228200 OK 22 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.5.3
IP 158.106.131.228:0
File type ASCII text, with very long lines (21539)
Hash 9ec3c315b67f434aabc4da58eabc6c3a
51b3a7d882f438d53dc69ca5289e92254160c09a
0c853c2cc205bafe5d893017b6a03a2acf0f04a11b85f80605514cf0ae540fe6
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=4.5.3 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 16:08:13 GMT
Accept-Ranges: bytes
Content-Length: 21638
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/carousel/custom.js
158.106.131.228200 OK 354 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/carousel/custom.js
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash 465f014c37d909af0195ee4dd0fa3406
a0d1a2c24b16d43d2dde3f467d026ef03b6ec13e
4a1ac05e131d156aa6e92749a32b40a9e55f6163d2330a718a55111df668bbbd
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/carousel/custom.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:31 GMT
Accept-Ranges: bytes
Content-Length: 354
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/lightbox/custom.js
158.106.131.228200 OK 213 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/lightbox/custom.js
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash 61758005b6b440e788bb5137a4c5bf74
ceea0c09a475bf4aff34cf7fcf55241c9f070104
b92ec3fa1e85fc1e66713ff6fba20a80423d3352736bdac6cb9a9256116ce46b
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/lightbox/custom.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:04 GMT
Accept-Ranges: bytes
Content-Length: 213
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/lightbox/jquery.fancybox.js
158.106.131.228200 OK 53 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/lightbox/jquery.fancybox.js
IP 158.106.131.228:0
File type ASCII text, with CRLF, CR line terminators
Hash 5f05bf75fff7007e2211f4235903bb25
061bf98b37a295c69d7b884316f7236ee2aef34c
98d6859cac869ae5145a635a68502d8859bab8673ae8e82827a34345cbeb6180
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/lightbox/jquery.fancybox.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:11 GMT
Accept-Ranges: bytes
Content-Length: 52744
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/tabs/assets/js/responsive-tabs.min.js
158.106.131.228200 OK 2.2 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/tabs/assets/js/responsive-tabs.min.js
IP 158.106.131.228:0
File type ASCII text, with very long lines (675), with CRLF, CR line terminators
Hash d0c1c585a240cf7576b7843c8afed393
ebb45a61462071905319637823514164c2a6cb13
b9fc421f2cd73388065d2b4c5fef79b5a45def7e9814faaf079404a6e79354e8
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/tabs/assets/js/responsive-tabs.min.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:42:22 GMT
Accept-Ranges: bytes
Content-Length: 2224
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/dist/wow.min.js
158.106.131.228200 OK 7.1 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/dist/wow.min.js
IP 158.106.131.228:0
File type ASCII text, with very long lines (7052)
Hash 5fa2e4b6acb5db11843b66b812040de3
13895175fe8fc3bb341af017a197ce8599e59451
36a88df037dc6c940450a9e251a34c9321d76d894d3d1734ee8cede45028d84c
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/dist/wow.min.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:40:51 GMT
Accept-Ranges: bytes
Content-Length: 7082
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/main.js
158.106.131.228200 OK 9.4 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/js/main.js
IP 158.106.131.228:0
File type ASCII text, with CRLF line terminators
Hash 7e02507373dc0c52da8a508c46d3ff17
146fefccea29e62fd5874e2308d4f85a1d984d57
525e79d12c58db4c0141e541a6bb7d45cb7a98d54cfea1730393aa8774ffed79
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/themes/elos-ORIG/js/main.js HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:41:14 GMT
Accept-Ranges: bytes
Content-Length: 9430
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-includes/js/wp-embed.min.js?ver=5.5.10
158.106.131.228200 OK 1.4 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-includes/js/wp-embed.min.js?ver=5.5.10
IP 158.106.131.228:0
File type ASCII text, with very long lines (1391)
Hash 905225d5711b559d3092387d5ffbedbd
6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991
GET /site/wp-includes/js/wp-embed.min.js?ver=5.5.10 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/esri/umevlear
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Fri, 11 Mar 2022 04:23:15 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.nextmedia.com.uy/site/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff?v=4.2.0
158.106.131.228200 OK 66 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff?v=4.2.0
IP 158.106.131.228:0
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash d95d6f5d5ab7cfefd09651800b69bd54
7d65e0227d0d7cdc1718119cd2a7dce0638f151c
199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
Analyzer Verdict Alert fortinet Malware
GET /site/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/site/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.5.3
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 24 Sep 2020 16:08:13 GMT
Accept-Ranges: bytes
Content-Length: 65452
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff
www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/images/elements/pattern11.png
158.106.131.228200 OK 20 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/images/elements/pattern11.png
IP 158.106.131.228:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash e547a578794634635212f480b58e091d
b6980d2fed40a281b71d60f8817cc8deb0553168
de8a7fba9723a4995e2a07bde595860b671ba4a0faf361a23509ab97cb4797af
GET /site/wp-content/themes/elos-ORIG/images/elements/pattern11.png HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nextmedia.com.uy/site/wp-content/themes/elos-ORIG/css/style.css
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 17:38:34 GMT
Accept-Ranges: bytes
Content-Length: 19846
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
www.nextmedia.com.uy/site/wp-content/uploads/2015/07/logo-NEXTMEDIA-120.png
158.106.131.228200 OK 11 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/uploads/2015/07/logo-NEXTMEDIA-120.png
IP 158.106.131.228:0
File type PNG image data, 120 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 317b45a8a4909d181c812dc92e307a45
a425b455d2857c0dfcbeff3c421613e1782e2ffe
1ccfa41cad5f4beb8a3af6564ffbad2a7612717425f96bfd192d1a8265b50fde
GET /site/wp-content/uploads/2015/07/logo-NEXTMEDIA-120.png HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 16:27:25 GMT
Accept-Ranges: bytes
Content-Length: 11389
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 75eebff373cf84ae810a9e326f9e3d03
a5b22b0eee98dda385cb4e90d119205bc5f3a25f
f2089c63c7c2b3024972aba8cbc12dfcffc79dfc1ef9f7be801c79e7737b0d71
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 11:32:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nextmedia.com.uy/site/wp-content/uploads/2015/07/favicon.ico
158.106.131.228301 Moved Permanently 280 B URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/uploads/2015/07/favicon.ico
IP 158.106.131.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8602598134915272b6a5e617dabc9fa0
60a57a4d5f95e73c3835886b60261991e5aa05dd
770c0ff8e4a10414bfc20483003ef0cd3f2ec9264b60bf1d7c41cddc0385d661
GET /site/wp-content/uploads/2015/07/favicon.ico HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Location: https://www.nextmedia.com.uy/site/wp-content/uploads/2015/07/favicon.ico
Content-Length: 280
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
starcom.com.uy/nextmedia/wp-content/uploads/2015/07/footer2.jpg
190.64.214.123301 Moved Permanently 279 B URL HTTP/1.1 starcom.com.uy/nextmedia/wp-content/uploads/2015/07/footer2.jpg
IP 190.64.214.123:0
ASN #6057 Administracion Nacional de Telecomunicaciones
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 88ae91c4311d938bee406eb680d115fa
39c359b4274217e71710bbb5cf1b492b1a835488
8cdcf402b9edc006342fa294a17a28f2ccd76881796650fbd59cbd66a20c471a
GET /nextmedia/wp-content/uploads/2015/07/footer2.jpg HTTP/1.1
Host: starcom.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Location: https://starcom.com.uy/nextmedia/wp-content/uploads/2015/07/footer2.jpg
Content-Length: 279
Connection: close
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 253e735983d6b98808235295de508f8b
e47aa9e4c679c5215cd2d20cd3dcd7ce58fde86d
c4e13af46f6ab54af9a8d5a68fe5c12d8a5c41ed829568380bdeca8c729f1da5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 11:32:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nextmedia.com.uy/site/wp-content/uploads/2015/07/favicon.ico
158.106.131.228200 OK 1.2 kB URL HTTP/1.1 www.nextmedia.com.uy/site/wp-content/uploads/2015/07/favicon.ico
IP 158.106.131.228:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 321a038d5dac717a89c5f8e95a7646cd
0133052f55faf4f5efe18e0148e961641f4f6131
0f2b5dd76aca969af99524acc502ccc4bd258222fafc481ba546976600c633b1
GET /site/wp-content/uploads/2015/07/favicon.ico HTTP/1.1
Host: www.nextmedia.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=GA1.3.215708541.1664450515; _gid=GA1.3.189914167.1664450515; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 11:32:28 GMT
Server: Apache
Last-Modified: Thu, 20 Oct 2016 16:26:47 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/x-icon
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 64efebb51e5b4f12f97825c5944d0cfa
fc6830187fd786f3d7fefeda96bf0fbe15509927
a33a76aa921357b856b0f68c84f500cd12c40cce3172723b8cd77c250422ac43
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 11:32:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7f6c1bbbde940ad17ceda150b7b1664d
7273da22f182d9540784068537cc678ec27800d3
4d8a6cd94e298a71543331248750230237a56a67cef251c7a204291612dbb569
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 11:32:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
starcom.com.uy/nextmedia/wp-content/uploads/2015/07/footer2.jpg
190.64.214.123404 Not Found 315 B URL HTTP/1.1 starcom.com.uy/nextmedia/wp-content/uploads/2015/07/footer2.jpg
IP 190.64.214.123:0
ASN #6057 Administracion Nacional de Telecomunicaciones
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /nextmedia/wp-content/uploads/2015/07/footer2.jpg HTTP/1.1
Host: starcom.com.uy
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 29 Sep 2022 11:32:29 GMT
Server: Apache
Content-Length: 315
Connection: close
Content-Type: text/html; charset=iso-8859-1