firefox.settings.services.mozilla.com/v1/
18.165.201.80200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.80:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 22:05:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 19d5615c4d307c11803beb015d8f6562.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: TRrV3Pa-1KrbWsrYBhzOJuNzAsNF81uvC-daqney969_XmzmvZ8ZzA==
Age: 2030
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6163
Expires: Sat, 24 Sep 2022 00:21:49 GMT
Date: Fri, 23 Sep 2022 22:39:06 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.95200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.95:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 b349539e70f05aae8b25110799b51862.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: jyiW6NslPuskMriQ2pQbkJ46Fhk6yc46uW-DJtHka-Qc0o7rgnruSA==
age: 66364
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 22:39:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.80200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.80:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 23 Sep 2022 22:33:04 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 23 Sep 2022 22:37:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 cb9d66c261e91793be744f629d6e309e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: K3witpeFwxJqDXyHNH12tyvm5FpVBQVAvKqxxf7LgkSWEWMxL9mUfA==
Age: 366
jeribidaoturismo.com.br/
216.245.217.194301 Moved Permanently 0 B IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Sep 2022 22:39:03 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://jeribidaoturismo.com.br/
Content-Length: 0
Keep-Alive: timeout=10
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1698
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:39:06 GMT
Last-Modified: Fri, 23 Sep 2022 22:10:48 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.165.143.157101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.143.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JUfv6aa6yjU88wP53gteWw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eZLuUIuF7Zj5r7M0FVZphoi5/gI=
jeribidaoturismo.com.br/
216.245.217.194200 OK 25 kB IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 787b7edbf4fbacda7c09dca91ad2411c
04b6c725a0bd9bce780eacbfa0488ff0e6685cc1
fa3ce1f85dbef20f8b44d21f3fbe09bdc2d25e13a200119d1554daa992a0404a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
vary: Accept-Encoding,Cookie
content-encoding: gzip
link: <https://jeribidaoturismo.com.br/wp-json/>; rel="https://api.w.org/", <https://jeribidaoturismo.com.br/wp-json/wp/v2/pages/13>; rel="alternate"; type="application/json", <https://jeribidaoturismo.com.br/>; rel=shortlink
content-length: 25046
content-type: text/html; charset=UTF-8
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jeribidaoturismo.com.br/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=3ddcd78aeea4a59ca558cef209e13906
216.245.217.194200 OK 693 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=3ddcd78aeea4a59ca558cef209e13906
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
Hash 9b0f26cf8d22d4e9455f67b21c2f9759
f0240a4411d4a2eb073c574d37618e503392b76e
226456d9a9eef8f0831b6b181be100a49cbaec1651a8bd45d7d0cc897d161538
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gtranslate/gtranslate-style24.css?ver=3ddcd78aeea4a59ca558cef209e13906 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 12:31:26 GMT
accept-ranges: bytes
content-length: 693
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jeribidaoturismo.com.br/wp-includes/css/dist/block-library/style.min.css?ver=3ddcd78aeea4a59ca558cef209e13906
216.245.217.194200 OK 89 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/css/dist/block-library/style.min.css?ver=3ddcd78aeea4a59ca558cef209e13906
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (43771)
Hash b7915926fe42d76e9c802353ab01dae4
3a8192a4312f25f53de25b100d62829c0f14d67c
d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=3ddcd78aeea4a59ca558cef209e13906 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Jul 2022 02:57:39 GMT
accept-ranges: bytes
content-length: 88932
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-5.css?ver=1653519806
216.245.217.194200 OK 2.2 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-5.css?ver=1653519806
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (1403)
Hash a358faaa4411227a73796862878a5eae
fdd681717342dc3790ef680ceebf716d560d8cd0
a6be3ccd9f6e2f5487b98b4251ed7a01b919435b14af4086cc5d805bfce9dde7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-5.css?ver=1653519806 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 2153
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
216.245.217.194200 OK 6.1 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (6051), with no line terminators
Hash 1787ccb3d1d8e93d42790b792e0424fd
0aa761f70bbbfe08229c469bcb394269530c537a
bbdb1eb69c6b5cbffaf1be2df2bcbd4a97d2823de9f4b856aae722900a5e27c7
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 09:28:01 GMT
accept-ranges: bytes
content-length: 6051
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/css/wptripadvisor_all.css?ver=10.2
216.245.217.194200 OK 9.2 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/css/wptripadvisor_all.css?ver=10.2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (1529), with CRLF line terminators
Hash 1ae2b48d33911a9bf9f28a847561b021
dd9606db97ae985f09cfb1983f1560969dc951ba
174231e66af44ddee80f6e9ac546ad1ceabdec3b912ec0fa12734d49f2088cf0
GET /wp-content/plugins/wp-tripadvisor-review-slider/public/css/wptripadvisor_all.css?ver=10.2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Sep 2022 10:06:48 GMT
accept-ranges: bytes
content-length: 9183
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1
216.245.217.194200 OK 11 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (11362)
Hash 97a182cc9effe8fe6a07edd4105de212
fa01a701c4ef5fc47a9a0b129e1b958732ef85c5
5fd9cf801b38461c7c28caf280c94d4befad595e47c8e88fda2a256fa774c849
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 11405
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
216.245.217.194200 OK 16 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (15672), with no line terminators
Hash ae085723cb5effbc73d92251f60aaa30
9c3f510afd2bf1ac508cc22e4f071697ec1f3290
eee1ce2620eaf7f585a69794864001be0bde74b874d6a18b9f2d11f074229f2b
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 09:28:01 GMT
accept-ranges: bytes
content-length: 15672
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
216.245.217.194200 OK 19 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (19082)
Hash 50be31853049e4b4a10c277d5f95eb75
ac2dffc0c65ad6b209fedf2169d0c50eb4119a3e
b651d87ef113cba0c8ec8a33bfdb694171effeba56b20be12e3c77fc15f6ae9f
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 19128
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
216.245.217.194200 OK 677 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (491)
Hash 3eef8c9e589a6fd58292e79bbac4ba5d
d3ebdb629b8d9c92380b14b1676b123398f0841b
eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 677
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.5
216.245.217.194200 OK 108 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.5
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (65497)
Size 108 kB (107922 bytes)
Hash b68e0977c7b602c05cb294b35bf83612
f7ef213320913b39de927bf95c532ac6e974bf6a
b5e616193a9a5e9bbfe2bc8b0e984c3fa1b217dbffb16483cf36cdcbed0e33f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.6.5 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 107922
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10
216.245.217.194200 OK 15 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (15058), with no line terminators
Hash 8ef5bb46d2a81102437f957428bf0b2e
89ba59330b6a9b1d269af2c4da66922dc97cff03
e9a752eb30c3f09a1b1ac28d3c238d1fef0d26b1fd1c291b6b3ecc127c9b5e64
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 09:27:51 GMT
accept-ranges: bytes
content-length: 15058
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
216.245.217.194200 OK 675 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (489)
Hash 144e43c3b3d8ea5b278c062c202c92f2
3c037057a419245849747b4762d09d88cab66fc1
9cd63b8cea25045c14623c538d26752518a58c0c682795ce6ad3078976c65a37
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 675
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/js/wprev-public.js?ver=10.2
216.245.217.194200 OK 2.3 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/js/wprev-public.js?ver=10.2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
Hash 77935084bcedde648730ce2f346e29d6
c027843c74a5fd4c6512ef0521f010031a8eb901
6c9180eb1ef938894418d5a4ec84daf6e3913bb6811c7ceb3ce04127ff2e1cee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-tripadvisor-review-slider/public/js/wprev-public.js?ver=10.2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Sep 2022 10:06:48 GMT
accept-ranges: bytes
content-length: 2307
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
216.245.217.194200 OK 1.8 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (1801), with no line terminators
Hash 4d43b2fcb5ef3e6afdcd539f46148514
0ff4d5160beb004c439b20c6343044917c629d10
9aa9bb8be2b834059533ce5de7eed3a662ad3d3e70643bbe5f75265075e9bd28
GET /wp-content/plugins/elementor/assets/lib/jquery-numerator/jquery-numerator.min.js?ver=0.2.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 1801
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/fr.png
216.245.217.194200 OK 637 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/fr.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 930f08c6829077e96cf25d58f26bd6d3
0dfa244548435053bbebd2ed5914e2785f0f3dc3
594f333e3a8fe65a0466e4f9c140dab97e6b6a073579edf130a87b86614d7ec8
GET /wp-content/plugins/gtranslate/flags/24/fr.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 12:31:25 GMT
accept-ranges: bytes
content-length: 637
content-type: image/png
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
216.245.217.194200 OK 669 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (483)
Hash 9eb2d3c87feb6bb2ffa63b70532b1477
38f226335a05ab0e30497bc7419eb5e243a9e26c
37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 669
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.3
216.245.217.194200 OK 4.9 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.3
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with CRLF line terminators
Hash a079528054d6074533193f8b1d518ad5
59e68c8c7bc17581e4c52077a3aaea827a0a9e0b
90314118d91c5f1aaa8986d313bef048117ea665c082681d5cf0e9d0be8303c7
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.3 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Sep 2022 23:17:27 GMT
accept-ranges: bytes
content-length: 4948
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.3
216.245.217.194200 OK 7.4 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.3
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
Hash 166416dcbcf8483aad4a59a0ff71bba2
3e1092ade0a322824851a0932ceebce094d81a03
fca05d2db23bfc31025cd5ac710d2e691970ac639c8e498ecc33db093b86b4f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.3 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 13 Aug 2022 10:21:02 GMT
accept-ranges: bytes
content-length: 7359
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/imagesloaded.min.js?ver=4.1.4
216.245.217.194200 OK 5.6 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
216.245.217.194200 OK 11 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-178.css?ver=1659395354
216.245.217.194200 OK 13 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-178.css?ver=1659395354
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (12597), with no line terminators
Hash 5a7871029bb1cada4fee139d62196765
278b28798a2222dca7dca95a5087a4dc2023e539
412cdf57147b9827cbd2b2989ed8266ce2701491817c454e41d5f96124825b37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-178.css?ver=1659395354 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Aug 2022 23:09:14 GMT
accept-ranges: bytes
content-length: 12597
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1
216.245.217.194200 OK 3.2 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (3235)
Hash dbe4b3628220901277c0c4234475e5cb
c17291130bc11a7f39ce70fe869bf82946e7be8b
10a2cf3d16091fbc89cc987160b62093515cd31f0762a751775999311c7313f4
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 3236
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
216.245.217.194200 OK 12 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (11736)
Hash 51c447fc520e66e5c5cb823838933061
1f69ad3d82bdc0efdfb78997cce99c408e23997d
b15fa8074720c5c928c59479c505aa8872a60ab6e30570ea8b4329e4d96eb9ff
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 11775
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
216.245.217.194200 OK 3.2 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (3164), with no line terminators
Hash e846984437ce810e4757bb0d935e67f0
0cd5ea1fde5aceba86a2ed59e77e35eff4acd2df
7f161501494bc2f199eaf414c3104318a00e2072f272ebce45540eef58cfb08b
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 09:28:01 GMT
accept-ranges: bytes
content-length: 3164
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-23.css?ver=1662683364
216.245.217.194200 OK 13 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-23.css?ver=1662683364
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (6969)
Hash bb9f4aa3a55b4d4b073ce380e7b00651
dafdac2b3bf60a44e7f2d33ed238a3439c03358c
47c4a06d2128bf8c740b26272c2ab7dc010952b8c34f2faed78b6e248847ab23
GET /wp-content/uploads/elementor/css/post-23.css?ver=1662683364 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 09 Sep 2022 00:29:24 GMT
accept-ranges: bytes
content-length: 13043
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/js/wprs-unslider-swipe.js?ver=10.2
216.245.217.194200 OK 13 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/js/wprs-unslider-swipe.js?ver=10.2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (6344), with CRLF line terminators
Hash 9083f3c852087d8bd61cd636cf2263e2
89e4a843dadc79774d23f69960efd9b45a8f8116
11273c9e0e2705d677d5b5964c35e49538859af98e96b1ac2ce8fe45b55b9b5e
GET /wp-content/plugins/wp-tripadvisor-review-slider/public/js/wprs-unslider-swipe.js?ver=10.2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Sep 2022 10:06:48 GMT
accept-ranges: bytes
content-length: 13145
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/it.png
216.245.217.194200 OK 642 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/it.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 922efc02f080135a63137dde4ffea287
a4583be3e579a69a03a0d1f09995fdb6d1244f7d
510116996dc4979a225c07962d84bb76e2b6340234c2c5e4280596ad08a632cb
GET /wp-content/plugins/gtranslate/flags/24/it.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 12:31:25 GMT
accept-ranges: bytes
content-length: 642
content-type: image/png
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
216.245.217.194200 OK 4.9 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (4875)
Hash b33ab4d5dcf02436276a717e9d1b7c18
f47b9a9c41b3b11c9dffabca22945727c3ec6566
9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 4910
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
216.245.217.194200 OK 5.0 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (4921)
Hash d4be732d829fad2ba26dc46b43a86223
bf0380f5c0aaf1c45cf298f68f011d11cb1b3bfd
b6d39822e34f949768c8aa5d6c99e4cde5013f2221990bf58137e8e2913d4ba7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.6.5 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 4960
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1
216.245.217.194200 OK 5.2 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (5118)
Hash 40942ae6be8e9f5ce0503968e6304765
a0c40e8952d38a6e58ed93c8ae32938fa9eccaf4
d5286f59b39642363e8242db6560752945adb073358d26f5f688c3b3d77e8c35
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 5161
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5
216.245.217.194200 OK 18 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (10019)
Hash 4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.6.5 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 18468
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/elementor/css/global.css?ver=1653520194
216.245.217.194200 OK 40 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/elementor/css/global.css?ver=1653520194
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (14692)
Hash 9b2e76da78eb209615b0c7b3513c462b
6f2c2478cae6092daac46200bd68eb080715a56d
405b4f76745543a42fa22c5aea06b486788c2b6514d6a294c91df14ce93f50c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/global.css?ver=1653520194 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 39603
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
216.245.217.194200 OK 6.5 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (6475), with no line terminators
Hash 61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 6475
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
216.245.217.194200 OK 29 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (29344)
Hash 0c4f5e09c3cb88710a7983bb93f9d8ab
d95012d77616557a9973bd5db0506f01198e5c6a
7b51f87e5cd724d8da8922435b37fec7f165905f7b8382ba911b67270de056b1
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 29387
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/en-us.png
216.245.217.194200 OK 656 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/en-us.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash ae506a6c014bfeb8d8cbfdfbe94c14c9
f4e74440c4e79e71959b9b8f799f2e8a7e15b7ee
bc6dd978e70894c8a0148e6806f4fde9566ee59349adb03c02a61a3b2e25b6f1
GET /wp-content/plugins/gtranslate/flags/24/en-us.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 12:31:25 GMT
accept-ranges: bytes
content-length: 656
content-type: image/png
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10
216.245.217.194200 OK 8.0 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (8029), with no line terminators
Hash 9190b1b7464568a55e8ee95a3d338b75
4a59022743b051032d27d1f9bb7a0bcb1b4372f2
184d396a48886b5680cdeacfafad56683765c98a053edc1828b95ed9c572476e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Sep 2022 09:27:51 GMT
accept-ranges: bytes
content-length: 8029
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
216.245.217.194200 OK 58 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (57726)
Hash eeb705d0bdccfd645d3bbd46dd1fbab3
066def290f42ed8c00860e573cc880bd46e9ced4
d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 57912
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/pt-br.png
216.245.217.194200 OK 1.1 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/pt-br.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a5938d2e7f7d6f4026d6eb1b4b4f2cd
7a038177fe4deec455d61d3e9c90019fa4727d40
0ab6c46e677fa7e49b6344fcde39c06ff6c014d9163571cdb36f8b5fc59c17eb
GET /wp-content/plugins/gtranslate/flags/24/pt-br.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 12:31:25 GMT
accept-ranges: bytes
content-length: 1115
content-type: image/png
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
216.245.217.194200 OK 10 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
Hash f270dd1f483179fdcfb29ce5f91aea13
166661187a97f0b6b685ec4dbdff871e9824168f
1dc4b29dd0acbed77ec2fd81036c33efd4ab5989e8182705a30615a00a0117f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 10222
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/de.png
216.245.217.194200 OK 602 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/de.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 8a2ba86f3b7de7562445967e2c21843b
3046cd0b51721f180c2dc75513fd4bfd316b45b5
cc318f3be9ba75def2af54bd9d0fab4f3e316517de9bf138e40dee06d332602d
GET /wp-content/plugins/gtranslate/flags/24/de.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 12:31:25 GMT
accept-ranges: bytes
content-length: 602
content-type: image/png
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
216.245.217.194200 OK 12 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 12198
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/es.png
216.245.217.194200 OK 873 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/gtranslate/flags/24/es.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 8bf31a924501d6db655fe75696b5f046
94ba0f8d4db0c35c1246a55fcbd6e0ef3cd7f0e2
5ae9561f31199bf8a892f797a69db1bc5d477e2f8318f2b7e95487f025f66f28
GET /wp-content/plugins/gtranslate/flags/24/es.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 12:31:25 GMT
accept-ranges: bytes
content-length: 873
content-type: image/png
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
216.245.217.194200 OK 90 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 89521
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/partials/imgs/tripadvisor_outline.png
216.245.217.194200 OK 995 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/partials/imgs/tripadvisor_outline.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 233ff8c9431e561b511891fed24b8ac5
380189342092cdbdb3a45a5efb4d3570a514a9cf
1dd6395e59579acd4fea4e1cfc0e5507cd23258a3fb1402d955fe587c47625cf
GET /wp-content/plugins/wp-tripadvisor-review-slider/public/partials/imgs/tripadvisor_outline.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Sep 2022 10:06:48 GMT
accept-ranges: bytes
content-length: 995
content-type: image/png
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/partials/imgs/tripadvisor_stars_5.png
216.245.217.194200 OK 6.0 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/partials/imgs/tripadvisor_stars_5.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 100 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 454857c328c88cdae7d93b91adf9bec9
a77da865de1a12bb126c1688e35223f18b7cdfc3
cc6951bf32272b0d34cffa0c35e960ddff68d7bf0318eeef1c8be11f06ca00a2
GET /wp-content/plugins/wp-tripadvisor-review-slider/public/partials/imgs/tripadvisor_stars_5.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Sep 2022 10:06:48 GMT
accept-ranges: bytes
content-length: 6013
content-type: image/png
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5
216.245.217.194200 OK 14 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (14238)
Hash 6fbda71318de346ec1430e8202aaaecb
b60a62613c3dbbd6409677a76176523f339a5029
eebb7c9b62d8028d702b547bcef97e776ada693cbafa64161471b1f96f5d0556
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.6.5 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 14277
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/wp-emoji-release.min.js?ver=3ddcd78aeea4a59ca558cef209e13906
216.245.217.194200 OK 19 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/wp-emoji-release.min.js?ver=3ddcd78aeea4a59ca558cef209e13906
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=3ddcd78aeea4a59ca558cef209e13906 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
216.245.217.194200 OK 19 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 57459b58fd7665a5e20b2345463df9c9
71c3b177ad1412d5e0b56d99f18bc345148df88b
6fecb89a29ee2bd397bb1bf58ecaa530a76f0654db71fadefd3cc70b0bc302bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 19142
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
216.245.217.194200 OK 21 kB URL HTTP/2 jeribidaoturismo.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 6aaf0a4e8eac131defea126f5b1b5fbf
24da0326af36303e5a1e9799a3c26f7a1077928c
240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 20715
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1
216.245.217.194200 OK 21 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (20991)
Hash 561ea2048817c46dc239b7edec5f079a
91a1cbb8136115d5b84076284e19cea84dd6d6d4
806ea6d54f56778e10fa44bcb14755440cdccaa5f038d570d86a55cc125f9a40
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 21034
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
216.245.217.194200 OK 25 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (25115)
Hash 046405de007ff73e52d17dab2af75258
887cfb8a9de27005875f6e1c1d1ead43bd0865c8
533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 25202
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1
216.245.217.194200 OK 25 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (24836)
Hash 6c2b608374510ba489c3ce67d750729d
79355adad534884fe83689d9960066f98f76acdc
677425edd8f3d80f950d3ed998ca7b8130ff4a014238147e6ba2f73d48d2ce47
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 24879
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5
216.245.217.194200 OK 38 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (37702)
Hash 4373bd97c68561c372df737c04ecbe77
09bf1dd395b2039b32b1925cdc189a4018265661
bccb715aeac8a50b19f527b17f3a1e86142e1b8ad8711c3195ce297696feb490
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.6.5 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 37741
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2678
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:39:08 GMT
Connection: keep-alive
fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18212, version 1.0\012- data
Hash ca72fb4e277e59be50b8850190822581
159b97b22006fe2a483da0a13d33cfb3cc5aa031
f3c0fa2cd71bb91d0e3acf5d77b93c49a184e9ad941532ca8c07c82eb0bd6a6c
GET /s/dmsans/v11/rP2Cp2ywxg089UriASitCBimCw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jeribidaoturismo.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 20:33:04 GMT
expires: Fri, 22 Sep 2023 20:33:04 GMT
cache-control: public, max-age=31536000
age: 93964
last-modified: Thu, 21 Apr 2022 16:54:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2678
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:39:08 GMT
Connection: keep-alive
fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBimCw.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBimCw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18240, version 1.0\012- data
Hash 715796ddd1637e1334588181b0e9cdb5
1246cb17f39f9d54b03540c8cfe6ba11e4084080
e6997f451bbf8012dea5fb3b9f2e974a2f86861364126915097d81096392c800
GET /s/dmsans/v11/rP2Cp2ywxg089UriAWCrCBimCw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jeribidaoturismo.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18240
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 22:41:55 GMT
expires: Tue, 19 Sep 2023 22:41:55 GMT
cache-control: public, max-age=31536000
age: 345433
last-modified: Thu, 21 Apr 2022 16:54:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33edd8fdf7032227386d1514f99b2c4a
9fa34e0e3d456ed38d6e94911bf24990ed33ab0c
1d8ebbea41da3fbb5bd6784635f176bce0697a290635808166d269202bd3defa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cb80186-265b-4b0a-a4b1-38aef341bfc9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8557
x-amzn-requestid: 51f41597-b094-47d7-b372-4c4c0236577f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tAXEO3oAMFTWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2868-30ad6e877ee82fcc4d17a7e6;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:43:04 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bdBMNkuaglxOH1MgjC9wBgjWCi-XbYkdmzA22QMnM89SVtY54WeCsw==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:12:49 GMT
age: 1579
etag: "9fa34e0e3d456ed38d6e94911bf24990ed33ab0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4a034f8a3f2e69e852a69075d20b0e3
a7a6043178f05f547a08808ea8b34a6703154b42
8f1a045214d7049cb9f9a1ab2c55b6753907741b7cbfcb2e02f916f95a56ddcc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5179
x-amzn-requestid: 57451c31-0b96-4aa5-ae63-54f949ab3d68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQlGrRIAMFklA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2736-0bd483e47d880a837c7316ce;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OEBChdfqreTTNtWpSQfl4Eqsjj--P1EoJsFESumBcVJHdFNGSpN7gQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:26 GMT
age: 3042
etag: "a7a6043178f05f547a08808ea8b34a6703154b42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55d224ac83a417772c98bc5080fb6689
a30f9044330824e70dde0dcc785890d981e6fdf5
b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:58:23 GMT
age: 2445
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f10a12719b387d176497669ba75f0acc
16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: igIWZ2IhMA_GIovp4HgIHtGeDt5xoX0iThoQFKjnNJUYP_uMdO7FHw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:11:52 GMT
age: 1636
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rocknrollone/v10/kmK7ZqspGAfCeUiW6FFlmEC9guAJo7lOIXdAaKvxsd78XShUaFYmwvLa.119.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/rocknrollone/v10/kmK7ZqspGAfCeUiW6FFlmEC9guAJo7lOIXdAaKvxsd78XShUaFYmwvLa.119.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13244, version 1.0\012- data
Hash d75f316eff016fdb81a86398d870711d
82c57104540b24c4053a25cee88daba78e187421
f6f1f25c9e5f464ff7c88bf909f2daeb8eca22a092fd47d810f0333e86183ed3
GET /s/rocknrollone/v10/kmK7ZqspGAfCeUiW6FFlmEC9guAJo7lOIXdAaKvxsd78XShUaFYmwvLa.119.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jeribidaoturismo.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 03:21:34 GMT
expires: Fri, 22 Sep 2023 03:21:34 GMT
cache-control: public, max-age=31536000
age: 155854
last-modified: Wed, 27 Apr 2022 16:36:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rocknrollone/v10/kmK7ZqspGAfCeUiW6FFlmEC9guAJo7lOIXdAaKvxsd78XShUaFYmwvLa.118.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/rocknrollone/v10/kmK7ZqspGAfCeUiW6FFlmEC9guAJo7lOIXdAaKvxsd78XShUaFYmwvLa.118.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13252, version 1.0\012- data
Hash 11ede1239f70c1fda984979fab35bb5f
337731ac0b0c1f7fe5a7785f3c6006c7249d161c
16deabebc40372775126d5ac2712562717f8dae6e696be7509c367134c80e7ea
GET /s/rocknrollone/v10/kmK7ZqspGAfCeUiW6FFlmEC9guAJo7lOIXdAaKvxsd78XShUaFYmwvLa.118.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jeribidaoturismo.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13252
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 02:58:15 GMT
expires: Fri, 22 Sep 2023 02:58:15 GMT
cache-control: public, max-age=31536000
age: 157253
last-modified: Wed, 27 Apr 2022 16:36:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18096, version 1.0\012- data
Hash f29503a1895affee5ed85d0246238af8
f474c6e8a3e4e28fb68cf7fb29bd448cdfeb0278
7164a212fb4df27bf1e006342d1686badcba58f5a5d301772c14cc7adf1d4821
GET /s/dmsans/v11/rP2Hp2ywxg089UriCZOIHQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jeribidaoturismo.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 20:33:01 GMT
expires: Fri, 22 Sep 2023 20:33:01 GMT
cache-control: public, max-age=31536000
age: 93967
last-modified: Thu, 21 Apr 2022 16:54:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09db434-67f2-44ab-86f2-081df7e6af92.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09db434-67f2-44ab-86f2-081df7e6af92.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b0e3ac4e16f6dc66a26a4389761d0a
e2e1b87dc1e205d437648f89cd6d0ad21019d662
1e2cd2c842e3aea339ba0c18267af45fd110e70d6e86ad1dab7b65b007afcc16
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09db434-67f2-44ab-86f2-081df7e6af92.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8208
x-amzn-requestid: 0a3396bb-f9c8-4209-9df7-d12b6f47f491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7tqDGeloAMF7PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2973-4f084a72306cb5a630102476;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:47:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sKQoG6j2WyBNPBhY_X800fh91RS-afKY7mIC7PJUmG67h15S-HqzsQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:17 GMT
etag: "e2e1b87dc1e205d437648f89cd6d0ad21019d662"
content-type: image/jpeg
age: 2871
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f727cc665bfa383779422949037a83a7
24d4dcad1590e79e89a1ffe343bd7fe616528c5a
72dc66286d9ea7b71b6c9a116ff69380a97253c73f1ba2a5b3da34790e321e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8907
x-amzn-requestid: 974b20af-4775-45bd-9e3f-55e5aa363c2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQRGPtIAMFZCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2734-18aebf577efb8aaa0182aeed;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ANAYROIRBWe_Y5TxqYp9IDnqnuOHQGjvyj1K8Z85m7C9DGCXXuQ-Cw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:31 GMT
age: 3037
etag: "24d4dcad1590e79e89a1ffe343bd7fe616528c5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/exo2/v20/7cHmv4okm5zmbtYoK-4.woff2
142.250.74.163200 OK 40 kB URL HTTP/2 fonts.gstatic.com/s/exo2/v20/7cHmv4okm5zmbtYoK-4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 39772, version 1.0\012- data
Hash 82f7e35c99fed67bd51e1cfb7c73c3d7
7f40240f48e5783e59483cf9a8b4dd720115fab7
d2f675f4572825d07c6bd49d03a2e7db7b58165f8175c0e162a1a1221dede462
GET /s/exo2/v20/7cHmv4okm5zmbtYoK-4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jeribidaoturismo.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 06:36:35 GMT
expires: Fri, 22 Sep 2023 06:36:35 GMT
cache-control: public, max-age=31536000
age: 144153
last-modified: Mon, 11 Jul 2022 19:19:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:39:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
216.245.217.194200 OK 78 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
216.245.217.194200 OK 77 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/05/logotipo-branco.png
216.245.217.194200 OK 23 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/logotipo-branco.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 227 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash cb893be4327d935777a562c0df13f11f
dc4734c8a4906ec4c3ba0675d1d625d52e396459
ff953832cc7cacac7fbf811368f1b432097494abd927a8810a01a5d4755296bc
GET /wp-content/uploads/2022/05/logotipo-branco.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 22751
content-type: image/png
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/06/transfer-fortaleza-jericoacoara.jpeg
216.245.217.194200 OK 93 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/06/transfer-fortaleza-jericoacoara.jpeg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x960, components 3\012- data
Hash fc1bf2a7eef0dad32656ba7aad9233cf
b0d7dbce2fae231e64c0df1279feead47bb386cf
f7d56147984a984e5cdc7c8c72e7336229b3ef9fa6ab66fb58249f0bb7a18dff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/06/transfer-fortaleza-jericoacoara.jpeg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 93153
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/07/litoral-leste-passeios-incriveis-jeri-buggy-utv-quadriciclo-5.jpeg
216.245.217.194200 OK 112 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/07/litoral-leste-passeios-incriveis-jeri-buggy-utv-quadriciclo-5.jpeg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x1024, components 3\012- data
Size 112 kB (111559 bytes)
Hash cd113eee194a9b81758f62497e286f86
79e89bd5a373470aa28658bc6a1d66ed4b61a4a1
778e1e536c518a3e297da2e303c364cfbbd82f9333ca8c778b3b18d41e3e4df0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/07/litoral-leste-passeios-incriveis-jeri-buggy-utv-quadriciclo-5.jpeg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 11:24:12 GMT
accept-ranges: bytes
content-length: 111559
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/06/jeri-bidao-turismo-8.jpeg
216.245.217.194200 OK 37 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/06/jeri-bidao-turismo-8.jpeg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 581x1032, components 3\012- data
Hash 205c5838221abb725110ebbf5473da1f
4cc02b44606b9e13d7f7da9c1fecab76d1ccf89c
0160ff88f90f1747c9a29029a03c65afc27b6f94cff69c9dfa456a9f90298ae1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/06/jeri-bidao-turismo-8.jpeg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 36628
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/07/6f2fa148-9e30-4748-9bd8-4f44cdcb107c.jpg
216.245.217.194200 OK 205 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/07/6f2fa148-9e30-4748-9bd8-4f44cdcb107c.jpg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1261x960, components 3\012- data
Size 205 kB (205173 bytes)
Hash da0bac43ffad2f0aa7c5b3ad6de94ba0
c8231b5f79553782e44f8b087015da314e82d999
1eddb547094d6547d0dbd14fe2da309758a14ea130ac05b38350b7f7f30e3811
GET /wp-content/uploads/2022/07/6f2fa148-9e30-4748-9bd8-4f44cdcb107c.jpg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 24 Jul 2022 11:27:34 GMT
accept-ranges: bytes
content-length: 205173
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets//mask-shapes/circle.svg
216.245.217.194200 OK 128 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets//mask-shapes/circle.svg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash e662e6d5164fa486edced00fabc1f639
05ee616825a8c7d53c149e9ab45cf8be1c97b400
25b6e61c5526b58e2739ec03b54702de8668ed9da146c1fed844a5ad177151df
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets//mask-shapes/circle.svg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 128
content-type: image/svg+xml
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/05/jericoacoara.jpg
216.245.217.194200 OK 513 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/jericoacoara.jpg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1920x1440, components 3\012- data
Size 513 kB (513336 bytes)
Hash 44599e3c590a6dbf4042044d8c0e88ca
5a5babd83018fafde94fa142b8f21a0d3e074134
fa0c4aabe07a4b34c692d42cabda5af200736b58d7cb00568f18d96ce2008478
GET /wp-content/uploads/2022/05/jericoacoara.jpg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 513336
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.15.0
216.245.217.194200 OK 92 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.15.0
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type Web Open Font Format (Version 2), TrueType, length 92444, version 1.0\012- data
Hash e5d9164498f1649084fe6fb95d3ad593
29e71123f8ef22f20f8d50bc4caac9db6e04a824
1525cd3ea05d1c00e4b385e781749c3bac5c01570b5800198bec0a252bb6c715
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.15.0 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.15.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 92444
content-type: font/woff2
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
216.245.217.194200 OK 13 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 13276
content-type: font/woff2
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/05/Reey-Regular.woff2
216.245.217.194200 OK 56 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/Reey-Regular.woff2
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type Web Open Font Format (Version 2), TrueType, length 55716, version 1.0\012- data
Hash 89a1e07588a786a83af71960a563ac39
198ec4ddd2d6a58f5883dbe50417ed1c75323c71
8dfb726017dd46ec6cef09220381f904060403922d0baf0043fce01579003a2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/05/Reey-Regular.woff2 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 55716
content-type: font/woff2
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/05/transfer-aeroporto-de-jeri-para-jericoacoara.jpg
216.245.217.194200 OK 63 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/transfer-aeroporto-de-jeri-para-jericoacoara.jpg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 733x333, components 3\012- data
Hash 1371f68f6d3743418d335d2e6d80a98f
97e163d36be2539db1f6a5ed5a55d77d99c79eda
218982a8777a959fcd0699e76f3b7fdace60a3109b41ba358093774726eca13e
GET /wp-content/uploads/2022/05/transfer-aeroporto-de-jeri-para-jericoacoara.jpg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 63371
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/05/transfer-praias-jeri.jpg
216.245.217.194200 OK 52 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/transfer-praias-jeri.jpg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 733x333, components 3\012- data
Hash b99615b97c4237513254f981da55d8de
226b18478aaa55aa5d95b32961731e092fbcb2f7
60fd8650b5add7b3df121f5135e364cf1d81928835ae6702d901e669dfb99364
GET /wp-content/uploads/2022/05/transfer-praias-jeri.jpg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 52055
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/05/transfer-fortaleza-jeri-sw4.jpg
216.245.217.194200 OK 74 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/transfer-fortaleza-jeri-sw4.jpg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 733x333, components 3\012- data
Hash 45ef80454d0d162ca1c14c42dca35cd8
0c0a6fdb214398102c486ff73f88e71a7c81cec0
4db16dcec1f2ea0857b38ae364231df9d5b9687beadbf145f708700a40328790
GET /wp-content/uploads/2022/05/transfer-fortaleza-jeri-sw4.jpg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 74304
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/05/transfer-beach-park-jeri-fortaleza.jpg
216.245.217.194200 OK 86 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/transfer-beach-park-jeri-fortaleza.jpg
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 733x333, components 3\012- data
Hash f758836add68d7b7b5aab42b92ef8286
cb0bd40323f2c8233dbcfca2d169c95d8ea7b8e3
6fa926435cc53ccf089c5256c395faed6f0177041b06fbe1690d9c857cd0d99b
GET /wp-content/uploads/2022/05/transfer-beach-park-jeri-fortaleza.jpg HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 85772
content-type: image/jpeg
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/css/imgs/slider_arrow.png
216.245.217.194200 OK 196 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/css/imgs/slider_arrow.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 9 x 16, 8-bit gray+alpha, non-interlaced\012- data
Hash 2ef00a0cc7dce1f775b3418af1655781
a6d020af873f813c1fddb8bee1e8858e0d1a94be
16be0ced465b05ef7b5b40cdb3cc3e09a1fa52c540a22d327ad9e82ad806dd32
GET /wp-content/plugins/wp-tripadvisor-review-slider/public/css/imgs/slider_arrow.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/wp-content/plugins/wp-tripadvisor-review-slider/public/css/wptripadvisor_all.css?ver=10.2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 04 Sep 2022 10:06:48 GMT
accept-ranges: bytes
content-length: 196
content-type: image/png
date: Fri, 23 Sep 2022 22:39:05 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/alert.cbc2a0fee74ee3ed0419.bundle.min.js
216.245.217.194200 OK 623 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/alert.cbc2a0fee74ee3ed0419.bundle.min.js
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (584)
Hash 92f570fceded59868a7c5f7004998e4e
aaef780c56e27aaa70851b1f1da2971fe904f5ed
c69819eb82f35d4e2cf46ac7ff8fdbd5ed41caab4843f5d91cb42fd6b6c6654b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/alert.cbc2a0fee74ee3ed0419.bundle.min.js HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 623
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js
216.245.217.194200 OK 3.2 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (3201)
Hash 1faee0cf8e50dae365432dfff61ed18b
99c0cb98febdb25380d5fbf325329d082b6c495d
99b0f93f39b038bc3d2e44b62628b94146345c51b95bcea4a413b015d88bf83a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 3244
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/slides.79313cea2968367844b8.bundle.min.js
216.245.217.194200 OK 3.8 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor-pro/assets/js/slides.79313cea2968367844b8.bundle.min.js
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (3787)
Hash cfde5d055ed5c51724bcdc3c361ac795
d86885414a1fa01cb6f9822eea85fb07f17a6130
b6935351a56216abddf979f46391758cec8d8edef106953ed5f9b23e113fdb0a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/slides.79313cea2968367844b8.bundle.min.js HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 3830
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
216.245.217.194200 OK 1.4 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (1316)
Hash 48904c79b9e2c00a24e23ff5b9c27cff
cf9bbf6fc2b06a1e725e151b7ac0bd5ffa1dc96c
72bdbb7030f7d820cfdf4c207d90135ba9dd456ee612dd01ae5147e7e24a16f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.289ae80d76f0c5abea44.bundle.min.js HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 1355
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js
216.245.217.194200 OK 911 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (872)
Hash 1a37ea5d8a4871f895eb45ffdca636b0
39ec79b555a4de65590015e6845eb2060ce63638
cf4fc0191bb352c933b430dc9aab48d7fe7f6937403102bb1e05f40c1fa43b7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/counter.02cef29c589e742d4c8c.bundle.min.js HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 911
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
216.245.217.194200 OK 139 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type ASCII text, with very long lines (65280)
Size 139 kB (139153 bytes)
Hash 15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 139153
content-type: application/javascript
date: Fri, 23 Sep 2022 22:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 423331d8bae78ba045bea86f1e4c6e7f
8ed72a508ba25a95e6899569180a02728d5edb5c
fb27ab0f1591889639eff81fa012d5c185ecb1b04be5060af2e89e378fc264a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:39:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 423331d8bae78ba045bea86f1e4c6e7f
8ed72a508ba25a95e6899569180a02728d5edb5c
fb27ab0f1591889639eff81fa012d5c185ecb1b04be5060af2e89e378fc264a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:39:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jeribidaoturismo.com.br/wp-content/uploads/2022/05/logotipo.png
216.245.217.194200 OK 89 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/logotipo.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 227 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash 5bbb008a5f7c2b4d463cbe1ec6dbe3ee
9b95861dff5b46ad7c964a20a1e3c6d9aa97f480
c321ecf5e4fef7f7b6633120d988949fb04bbca61b37bf366dc631c7598d2d87
GET /wp-content/uploads/2022/05/logotipo.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 89365
content-type: image/png
date: Fri, 23 Sep 2022 22:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/2022/05/logotipo-150x123.png
216.245.217.194200 OK 20 kB URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/2022/05/logotipo-150x123.png
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
File type PNG image data, 150 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash ff8c6f33f696993b424591b2ca122cd3
e613987f70995858c79de30cec91d9f5381d5434
f6025618766f584f97efd60bd42bcda151bb363b9d30707d1f07646abba287dd
GET /wp-content/uploads/2022/05/logotipo-150x123.png HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 22 Jun 2022 13:44:13 GMT
accept-ranges: bytes
content-length: 19819
content-type: image/png
date: Fri, 23 Sep 2022 22:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.74200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.74:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 21:44:08 GMT
expires: Fri, 23 Sep 2022 22:44:08 GMT
cache-control: public, max-age=3600
age: 3301
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.99e50R6b4a4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpjUhGxFCXN4e2-zoCcY3WdFh3Ocw/m=el_main
142.250.74.74200 OK 94 kB URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.99e50R6b4a4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpjUhGxFCXN4e2-zoCcY3WdFh3Ocw/m=el_main
IP 142.250.74.74:0
File type ASCII text, with very long lines (1613)
Hash abe5dfbfca8f0907abb1bab1f3597906
ec03951a1465e01b2d4170e1c9aeaf34d21d16d0
4e9df864bff28fb550b7f19254a3d007ba4db0c3cdd7071cc9e6b5d8418d4238
GET /_/translate_http/_/js/k=translate_http.tr.no.99e50R6b4a4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpjUhGxFCXN4e2-zoCcY3WdFh3Ocw/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 93858
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 20:39:31 GMT
expires: Fri, 22 Sep 2023 20:39:31 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 21 Sep 2022 21:14:53 GMT
content-type: text/javascript; charset=UTF-8
age: 93578
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
142.250.74.46200 OK 28 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP 142.250.74.46:0
Hash 3513d8ddb88439944b47bf7f955d3658
168e47b9ffad74d7928d075944ccd0d5f290f98d
d78b1199a37cd1fc46d06edeeff5200c7c10fdbec75853f3efcac08e5abaf1d8
GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 23 Sep 2022 22:39:09 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+877; expires=Sun, 22-Sep-2024 22:39:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
216.245.217.194200 OK 0 B URL HTTP/2 jeribidaoturismo.com.br/wp-content/uploads/elementor/css/post-13.css?ver=1661277367
IP 216.245.217.194:0
ASN #46475 LIMESTONENETWORKS
GET /wp-content/uploads/elementor/css/post-13.css?ver=1661277367 HTTP/1.1
Host: jeribidaoturismo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 17:56:06 GMT
accept-ranges: bytes
content-length: 67210
content-type: text/css
date: Fri, 23 Sep 2022 22:39:04 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=DM+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRocknRoll+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CExo+2%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=3ddcd78aeea4a59ca558cef209e13906
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=DM+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRocknRoll+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CExo+2%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=3ddcd78aeea4a59ca558cef209e13906
IP 142.250.74.10:0
GET /css?family=DM+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRocknRoll+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CExo+2%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=3ddcd78aeea4a59ca558cef209e13906 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeribidaoturismo.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 22:39:07 GMT
date: Fri, 23 Sep 2022 22:39:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2