firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 20:10:56 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: auJYr-9zRf6t53RbQlQFcRmQaSW6UzU3rcrE_pYDUS8gcXs-BGYZ8w==
Age: 65
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4299
Expires: Fri, 16 Sep 2022 21:23:40 GMT
Date: Fri, 16 Sep 2022 20:12:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VHQuOG54xlJDFw84bPJJjN-N4RdEOdYpYwdVLhAJFdXw_DVNsGtaLA==
age: 56206
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:12:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 16 Sep 2022 20:03:22 GMT
Expires: Fri, 16 Sep 2022 20:20:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ih3ZhjVVDew5j2lcHBqUg7C_HftdPn_mEhHplmwdMOe0NPCIJ50B-A==
Age: 520
cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
301 Moved Permanently 0 B URL HTTP/1.1 cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk HTTP/1.1
Host: cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Sep 2022 20:12:01 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
200 OK 471 B IP
Hash 3db421016cf0e3ad25f324cf0faf0fac
b15909de1105d4d2fb5be5b3920c454daf022445
914b15f28636e0a5e851540ffb0625ecd09d0546b2f1f7af90b267ceebcf1d5d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 999
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:12:02 GMT
Last-Modified: Fri, 16 Sep 2022 19:55:23 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dF7MPDqoh88VIjFpTht4Sg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hhMa/mKX5xLYwYnCOu7/hZDz/iE=
www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
404 Not Found 29 kB URL HTTP/1.1 www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13419)
Hash 9e732dac36201bf65b31befffbda9839
1bf66b290041a87a662a150e65a96efee80e28a5
d454db274aa6df16da05669b03f31586f24d01ff4e9f868c0626418369e2f5d9
GET /WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Fri, 16 Sep 2022 20:12:02 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.cctur.net.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7975b33417f675d21a178b997288d616
1d2e957c46d45d6cb2f44389f3dcc66c880b6065
daffff63daade8bb0c2fd63570229df8502c563dd079b4da4103f6ee89fa67e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:12:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cctur.net.br/wp-content/plugins/tutor/assets/css/tutor-icon.min.css?ver=2.0.9
200 OK 2.8 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor/assets/css/tutor-icon.min.css?ver=2.0.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14849)
Hash bbfb9bc8a66461b781c0bf2f63b61029
fa4642382f94c7320bd9d16110d707484c1cb33a
57381d1499b860958826ea934891f9cdab5735594f2c6a3c8111457a28c0c0d5
GET /wp-content/plugins/tutor/assets/css/tutor-icon.min.css?ver=2.0.9 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Sep 2022 18:38:43 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2757
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.10
200 OK 7.1 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.10
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069
GET /wp-content/plugins/woo-category-slider-grid/public/css/font-awesome.min.css?ver=1.4.10 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 31 Aug 2022 18:30:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7114
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.10
200 OK 820 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.10
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2518), with no line terminators
Hash 11266bf6f28798a1b5661542224b57b2
b8d33b15364377396a359204f23b4d5ba4cb14f7
056e6fc00be366e712bab6e12d3f5f0d5e51eda240eea3abe2f1e18cbd3b9a74
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/public/css/woo-category-slider-public.min.css?ver=1.4.10 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 31 Aug 2022 18:30:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 820
Keep-Alive: timeout=5, max=75
Content-Type: text/css
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:12:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cctur.net.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 409 Conflict
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3
200 OK 1.6 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash fb27c096c3ed57feb9d5c4a6b0b5df2f
10bcd1275b6dfc8003a20db07d1089023a3f83ef
3fd93e90772a13ec0db71447745eb79236ae8a6e796c88e9d6a28612ed3695b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/style.css?ver=1.1.3 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 18:30:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1554
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/tutor/assets/css/tutor-front.min.css?ver=2.0.9
200 OK 27 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor/assets/css/tutor-front.min.css?ver=2.0.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 028b509f7eb02230773060bdfa00afe4
fc6fdfac0077b6ead05da0a9a78a1ba10c470ab3
82b09da2cd6484048259f19612b5a873894d0493b2eb255b50fc63004d226502
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/css/tutor-front.min.css?ver=2.0.9 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Sep 2022 18:38:43 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
www.cctur.net.br/wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.29
200 OK 5.7 kB URL HTTP/1.1 www.cctur.net.br/wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.29
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (19378)
Hash 290fc4e1efb4eeb6fadf7c662fd6c73b
4faf165d7e69f62ce3d3d08d4dda1f629d2cced5
a64383ee47049f4a4f15d1da6ca2f593692b07dff0200b9025a794974bd3b928
GET /wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.29 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 21:28:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5720
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3
200 OK 377 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 77c6dcce307191146e34788900339fc5
1ff7fca2d0a33701a1df2fd369117745d93bcc9f
59d2d165059bb34638421f265f6cee2b913fc706c9a912e75ebb452026ff2f73
GET /wp-content/plugins/woo-category-slider-grid/deprecated/public/assets/css/responsive.css?ver=1.1.3 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 18:30:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 377
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/tutor/assets/css/tutor.min.css?ver=2.0.9
200 OK 62 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor/assets/css/tutor.min.css?ver=2.0.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8fb14f98d8b323cfdeaf264f6f0324f0
f3b1924e5f28e7de7999209e4eed90897d15981d
8574e08597280281aadb5890a0d7da2ae2cf926f3f0c7049363f49aca42bc8ae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/css/tutor.min.css?ver=2.0.9 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Sep 2022 18:38:43 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
www.cctur.net.br/wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.29
200 OK 8.2 kB URL HTTP/1.1 www.cctur.net.br/wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.29
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32676)
Hash 0b497123040c8c0fff1d14901855a6b1
90c6a1902dca2ca8f330eaa9ccd70f8381e85784
6f14920ec0a30eb830478c21285a191e3e8b4a818ae559316567fc1261408a5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.29 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 21:28:27 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8217
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.29
200 OK 2.5 kB URL HTTP/1.1 www.cctur.net.br/wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.29
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18613)
Hash 8ff3f748d5056546ffc349dca3e1cf6a
243053f099cef976430543f13118b0b88feb226d
4bf4d3407f986c00ce8f7a605c268010363ccbda6721e48d4e6922e867a3c194
GET /wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.29 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 21:28:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2452
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.29
200 OK 6.6 kB URL HTTP/1.1 www.cctur.net.br/wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.29
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27779)
Hash 0da3b8b642d2f8640b1e56f3a427b25b
117e05c19d345961b103f90a6a3cf4b39f08fa85
c99519fd2fcc283c456c1e583ecc40d8248578c2917414634f7867f7770fb8dc
GET /wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.29 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 14 Sep 2022 21:28:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6636
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/dokan-lite/assets/vendors/font-awesome/font-awesome.min.css?ver=3.6.5
200 OK 13 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/dokan-lite/assets/vendors/font-awesome/font-awesome.min.css?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59101)
Hash d9a0b590f767a088177deabcafe21816
bf5b779e11cb78edd5d4825aa2f2eac5eef71282
11faa50f33473534b16bb1f2768d2b85b1ff7b818432612e6dd606ac2c18c448
GET /wp-content/plugins/dokan-lite/assets/vendors/font-awesome/font-awesome.min.css?ver=3.6.5 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 17:52:58 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12847
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/cf7-conditional-fields/style.css?ver=2.2.6
200 OK 547 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/cf7-conditional-fields/style.css?ver=2.2.6
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8a6ea223da0b6c435cf28cdbd5b334f9
30c9658633c1233fe698084c48601c570eb175d1
708a816a722b7f2f240f925dfe7f685e7b0d663533784232295fa675c4a788e7
GET /wp-content/plugins/cf7-conditional-fields/style.css?ver=2.2.6 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 20:00:26 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 547
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/themes/kadence/assets/css/woocommerce.min.css?ver=1.1.29
200 OK 37 kB URL HTTP/1.1 www.cctur.net.br/wp-content/themes/kadence/assets/css/woocommerce.min.css?ver=1.1.29
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash a4a8848b857956c4ed4b824545259fa7
cdbf73173de2ca6d0f0c7e536570d7d6277913dc
cd372e6b69e4839a98235722ba604024a61a93a371d1a9d22192fe776ccb5a63
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kadence/assets/css/woocommerce.min.css?ver=1.1.29 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 21:28:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.cctur.net.br/wp-content/themes/kadence/assets/css/tutorlms.min.css?ver=1.1.29
200 OK 1.1 kB URL HTTP/1.1 www.cctur.net.br/wp-content/themes/kadence/assets/css/tutorlms.min.css?ver=1.1.29
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3735)
Hash 3e1ad30bf0f4856e88fdeeaad5042c23
b70b73d65b3db0362a4ee45242063789e8933c8b
246fb8c4615628fce4f126e11c631ddda047e50543ddfce68d2f58f8ffa91aaf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kadence/assets/css/tutorlms.min.css?ver=1.1.29 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 21:28:28 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1111
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/dokan-lite/assets/css/style.css?ver=1662659578
200 OK 38 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/dokan-lite/assets/css/style.css?ver=1662659578
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4c99ba1f19ea1f18ceb892b08cc6032b
1fd31d906634e357b5fb67d2288392849df7f603
9bd3ff866de68ce066cd39efd0c405069f1be41be51b239d1ff897d355d26b84
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dokan-lite/assets/css/style.css?ver=1662659578 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 17:52:58 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20030
Expires: Sat, 17 Sep 2022 01:45:54 GMT
Date: Fri, 16 Sep 2022 20:12:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20030
Expires: Sat, 17 Sep 2022 01:45:54 GMT
Date: Fri, 16 Sep 2022 20:12:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 512280055633fcce9abc7d11a9816a24
de5c3e010fca76659455a144875a52c25fa72bdd
435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JAzbRqinDuqQuQoESEsL26c1Y1UTQ5tO1thL3ugE6LPQtNTWGaGTLg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:48:32 GMT
age: 80612
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6d17788c7d2a1a91e68eff48df14bd1
8e1090346d90bc69e7a95384e6a7a01154e31567
1e1eefa02e4c55e73be87a309ad5c2335856125cb678cff6ebc42c5ff73a0e2b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9904
x-amzn-requestid: a23cb4b3-db6e-48ae-90b1-3ecf6478bf52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDpH_CIAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-15869210609a18587467d1e2;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RbKcO0CPRsex8VWdIVqctamGyJ7D1PHD04ry2wbrcDPDYL0Yy5vPPQ==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:35 GMT
etag: "8e1090346d90bc69e7a95384e6a7a01154e31567"
content-type: image/jpeg
age: 80489
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4f3e6b013d785036c9b9c16aef3404f
28bf10400e47ad48eee5db04829b88340e021840
98596627e914528b177b8a3d2be8766bdf210c62415961ab99afefa465440819
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8854
x-amzn-requestid: ae78dca7-cd78-40ad-8ef3-5b287d99b0e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1suGFuoAMFptg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3651-12f3fedb07f856af06e8b1e5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:01:37 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: h1Q93ahPFyzjb40UxQcoDZPKkpLtrkcj1vE_mB4AW2Gn9CAibFnd6A==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:03:47 GMT
age: 79697
etag: "28bf10400e47ad48eee5db04829b88340e021840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgjwYJ-ZzVF3bv7pl1l8TN8EAoENIcaSAXJU_YhFOSNRCzrCuPuKbQ==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:10 GMT
age: 80874
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Telex:regular,700%7CRubik:700,regular,500%7CHeebo:500&display=swap
200 OK 9.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Telex:regular,700%7CRubik:700,regular,500%7CHeebo:500&display=swap
IP
Hash 35a7b557159102e053ab201375977329
6b27c32904310df5c795583d1224b52c810f36a1
937e6b4a4200bf9e4fc7f5c0ec1f7355d42dd0dab39554d86491143e3be26caf
GET /css?family=Telex:regular,700%7CRubik:700,regular,500%7CHeebo:500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: 0
Connection: keep-alive
Referer: http://www.cctur.net.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 20:12:03 GMT
date: Fri, 16 Sep 2022 20:12:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20030
Expires: Sat, 17 Sep 2022 01:45:54 GMT
Date: Fri, 16 Sep 2022 20:12:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: 2beedee9-cf7e-47d6-ac4d-3ca9251aa565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfSWEFAZoAMFd6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322ca8d-37688e4a23c3234a25becf57;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:47:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: H2ySDtSQZtsrCA99y1a2_fLQcRI8hvN_nvA9U_V_iCm6c3cq3DigXQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:11:59 GMT
age: 79205
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick.min.css?ver=2.0.5
200 OK 773 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick.min.css?ver=2.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5514852c1eb1402f3ed1f08081f1206f
886d8c0c11403533aa774a19c58928e7b4197ac0
65bfd7ecc28b699309621823aac3f92598a83df19c216b8d5295244e2c5c914a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick.min.css?ver=2.0.5 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 15:14:38 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 773
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20030
Expires: Sat, 17 Sep 2022 01:45:54 GMT
Date: Fri, 16 Sep 2022 20:12:04 GMT
Connection: keep-alive
www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick-theme.css?ver=2.0.5
200 OK 1.0 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick-theme.css?ver=2.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 87576e0b70a6520c739f3e116165cf2e
6f63d380497a1c1606f022a202a3847fbf25c89b
ac01cc2f293695c0c6933b80d1ea1c11cca955ac3467b11b37e58f1a70059893
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/css/slick-theme.css?ver=2.0.5 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 15:14:38 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1041
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.4
200 OK 900 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3432)
Hash 1e0ef5b4ebd931aecd01564980628978
e618b92e03a6c4bd4abffed22abb1e835c05a601
1deef467f6db854d82e8c6288086664c7cf60a41b18bb7216d63bb83061ba878
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.2.4 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 21:29:42 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 900
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20030
Expires: Sat, 17 Sep 2022 01:45:54 GMT
Date: Fri, 16 Sep 2022 20:12:04 GMT
Connection: keep-alive
www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/css/tutor-elementor.min.css?ver=2.0.5
200 OK 5.0 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/css/tutor-elementor.min.css?ver=2.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21279), with no line terminators
Hash 667a16b547a8c2cad21bdb506fdbcd04
c3c7fa465301d1c692f35e4f8b56a00c150ddfa7
2196e38867835d7af1bedc551c9b673fc08d89fc3fa416648d499bfd0e782a28
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/css/tutor-elementor.min.css?ver=2.0.5 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 15:14:38 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4972
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 39 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash feb933ceca72e1d76b471ed9db278b0d
6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.6
200 OK 22 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.6
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash 4defb1ead13dbfd885f0a0dad5d8f3a5
f795ad49cb8382dec21051aea1fdcbb41293ad04
3082f49755b8c90d0916f82ba2215c1d88219aa604f1dc258fafb13044b6ff96
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.6 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:03 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 18:09:25 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.cctur.net.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.6 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/dokan-lite/assets/vendors/i18n/jed.js?ver=3.6.5
200 OK 13 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/dokan-lite/assets/vendors/i18n/jed.js?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type C source, ASCII text, with very long lines (2360)
Hash f1b627a255208c9da2a1780df5bf809f
d4c68dc7137b0669bf8653bff57ca9546bc1314b
c3f550fcf3ba5e3b8561957929f7c4aa47aec381472b77dfb8b20ed26203619d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dokan-lite/assets/vendors/i18n/jed.js?ver=3.6.5 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 17:52:58 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12737
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/dokan-lite/assets/vendors/magnific/jquery.magnific-popup.min.js?ver=3.6.5
200 OK 9.6 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/dokan-lite/assets/vendors/magnific/jquery.magnific-popup.min.js?ver=3.6.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21014)
Hash 006ebdd6b49adaffd1cb172bb699ba1b
34b1c1356f74b47f38ba4de7596693142c1794c5
82dcb093f13742e059bc47bebfdba4f9cbb517525731b9d7b782ea16947677f8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dokan-lite/assets/vendors/magnific/jquery.magnific-popup.min.js?ver=3.6.5 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 17:52:58 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9589
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/dokan-lite/assets/js/helper.js?ver=1662659578
200 OK 2.5 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/dokan-lite/assets/js/helper.js?ver=1662659578
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 88b6a8d17973bf6f84be0467c72af941
4ddc8b58c340fd7f59db5f6d2f7933257ac43c2d
3e6ad829012bb0b6e2e1e0b03576222bd72084af8089580fdd9704e9672abb00
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dokan-lite/assets/js/helper.js?ver=1662659578 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 17:52:58 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2516
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/js/slick.min.js?ver=2.0.5
200 OK 16 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/js/slick.min.js?ver=2.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3201)
Hash 5a2fac64f4e90a2bac4ade8e2360a0d2
3723b9b75c667e1b209c28991e24d3ba00272669
220ae286bf3572bf144ce659e03a00f61dcced8d502356f8f18c66217ac729c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/js/slick.min.js?ver=2.0.5 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 15:14:38 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15816
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/js/tutor-elementor.js?ver=2.0.5
200 OK 1.5 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor-lms-elementor-addons/assets/js/tutor-elementor.js?ver=2.0.5
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash 9b2c67216316bac20b4ccea6b5c8e6bc
3771ca39f0e339d763b743a2ae1d29536edfd5fc
05497996487268197abc69ab49566fba9168147adc9829f87ffb03263f16684c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor-lms-elementor-addons/assets/js/tutor-elementor.js?ver=2.0.5 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 15:14:38 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1528
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
200 OK 5.3 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-includes/css/dashicons.min.css?ver=6.0.2
200 OK 36 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/css/dashicons.min.css?ver=6.0.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (58981)
Hash ff6c9e677e54008818f72708ab0f9382
32746d4ae1f8fbeccb280d16fee8fc192f403aeb
88d3e64209eb0f3fb5098328ddfcb0da5bd11711f144d811536674b2ed36b1f3
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 03 Mar 2021 21:16:22 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/dokan-lite/assets/vendors/sweetalert2/sweetalert2.all.min.js?ver=1662659578
200 OK 23 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/dokan-lite/assets/vendors/sweetalert2/sweetalert2.all.min.js?ver=1662659578
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (41337)
Hash 131eea65fe25b787e3601e5e8698a90e
a56299d7ccdc45d825afbdbc0ca3c4dbcdf8eef7
ca556a0a9b7e4f28adba3e7c64ddb7d5bf3c489d7b835ffec33c23043471d45c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/dokan-lite/assets/vendors/sweetalert2/sweetalert2.all.min.js?ver=1662659578 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 17:52:58 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.cctur.net.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
200 OK 17 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 12:10:37 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16594
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.2
200 OK 3.0 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10435), with no line terminators
Hash a6099ee677b6d930b6b878cf0cb08422
a2eb69454196d4250d624d25aaec587e97686642
755acd6dc98e63baff6d8b105b1bcaf63b79f935381fb3f32a79dace7faae0ac
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 20:20:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2985
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/column-shortcodes//assets/css/shortcodes.css?ver=1.0.1
200 OK 725 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/column-shortcodes//assets/css/shortcodes.css?ver=1.0.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 753107ece975c3473e45c6b0f45fd752
7ffaa5f6c6d1de149a63d4b530ca4e3451e55712
af92dca8ae5ebb5a282745b72938f1484d1c0a1bbb6b15165498a7a6848b52b7
GET /wp-content/plugins/column-shortcodes//assets/css/shortcodes.css?ver=1.0.1 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 22:59:17 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 725
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
www.cctur.net.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 409 Conflict
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.cctur.net.br/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=680
200 OK 5.6 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=680
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12498), with no line terminators
Hash 868b9c227d815506dd4e748c92097e38
3eebaf9cc5bf9372f91bd11d811554f5843842c6
8f533dbeeeb5d8fa4468342a325ad8d7da5761314384c79af3eb2e949becf952
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=680 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 21:45:06 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5593
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 409 Conflict
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.cctur.net.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.2
200 OK 43 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 1bf4b51878f2594bb4254a12ffd30657
9863031a9d6bf79b49a3924d3abb24e9a124f9c2
dbee39d42ed139b5f63ddcef1473eeffa7db52fba13a2f77f364dbb96f8c5e23
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 20:20:00 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.cctur.net.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 2.7 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Mon, 11 Apr 2022 12:04:30 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2675
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 8.3 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash e49f0561a452c9d04fb7d1510a23cc8c
9e8fc2e3129da4fe2790eee565a6478b864bea83
ab4f9f418b022ab34d617ee2f95d70afff005ed4d4d92e313ce84a56b40bce75
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Mon, 11 Apr 2022 12:04:30 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8254
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
200 OK 4.2 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash a72df5f7a597c541e18a33abef3c11f5
9500913a0a3fca9979a0aed9cb745926d9f86f83
258da631753c1d8d88fb1316024b671fa4a9ac87c9d6c4f38a45bc2c3bf9f3fc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 15:12:47 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4234
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-includes/js/quicktags.min.js?ver=6.0.2
200 OK 4.0 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/quicktags.min.js?ver=6.0.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11097)
Hash b4ee910b04aae3459fc60c6db9f2324d
4c2c24cf5144deb9e196c63ee4b90435d0f069f9
a9a42d7ad2865851cb9fbfafad5f3c9fdf94f67a9a57c36b41b0ff6a9f0b8ac0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/quicktags.min.js?ver=6.0.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3994
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
200 OK 1.7 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4875)
Hash 6a452794a68bc140a53b30519b94edf6
68046f5611ba3cf5da1c46087609aff18f59fdc1
259990a9e6191a72a51ac9d038d0c52bb56d880a2b0d460b1fca3f3fee7961ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 11 Apr 2022 12:04:30 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1712
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:12:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cctur.net.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
200 OK 8.2 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8169
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
200 OK 1.2 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3233)
Hash a801c7d8c18f01dd2ff3ddc44a436a2e
81986f97a21ba6770298714e78a31e4a2738ec96
b35572a36837b78d0629063d26127fc404a2447e55fea21c44e4dc75753fdcd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1220
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:12:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:12:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cctur.net.br/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1
200 OK 8.5 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (25274)
Hash c53d78f43e29662ab2eeb6f0c9c1a049
c8e749954dbe7a500bacb0b0d604c4d95489d216
061bfb3550d7c84b5825cabe32d052580c7a053c52d7aa9715aca158e1dfd66b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8492
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cctur.net.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:08:19 GMT
expires: Tue, 12 Sep 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 342225
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/telex/v14/ieVw2Y1fKWmIO-fUDVs.woff2
200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/telex/v14/ieVw2Y1fKWmIO-fUDVs.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14432, version 1.0\012- data
Hash 5a6b42aa82fce5706171ae77564a2210
6a339335bb334cfdf826c6d8a7e90387c6324bd7
24658289a63f5cd6e3d89e2f2c2ec255563ee905a68654047be886b99ab856d7
GET /s/telex/v14/ieVw2Y1fKWmIO-fUDVs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.cctur.net.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 11 Sep 2022 16:46:59 GMT
expires: Mon, 11 Sep 2023 16:46:59 GMT
cache-control: public, max-age=31536000
age: 444305
last-modified: Wed, 27 Apr 2022 15:52:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:12:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cctur.net.br/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2
200 OK 585 B URL HTTP/1.1 www.cctur.net.br/wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (985)
Hash aad37c541dd386b8f576936bc196aba7
a2e597cf53dad5a9272b146e30553cd8555ce1fd
fefa4c5e6856a5fb8b5c90835e6dcb05fb585807355b44a36a26edfecf690a5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.ui.touch-punch.js?ver=0.2.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 11 Apr 2012 02:58:23 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 585
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/tutor/assets/packages/SocialShare/SocialShare.min.js?ver=2.0.9
200 OK 5.5 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor/assets/packages/SocialShare/SocialShare.min.js?ver=2.0.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15440), with no line terminators
Hash 2a6cd4a7b8bc172f9470e51696c39f96
41fd598fd4565d4509f16b93f4fb00316fbe51ad
729e1bada9bf835a82d617b6f561386e58ea049d9242cf603cc14d3f3792b835
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/packages/SocialShare/SocialShare.min.js?ver=2.0.9 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 18:38:43 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5453
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
200 OK 14 kB URL HTTP/1.1 www.cctur.net.br/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36560)
Hash 9ca93625e25e2cd51ca00e1d8b222e97
c1696012dc42fd84e7d5c9f9e03a9547af0be97f
3e7f45bc73caeee5023ab8a0e66721c9858770498b4049618df71090ec2b9542
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13817
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/tutor/assets/js/tutor-front.min.js?ver=2.0.9
200 OK 34 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor/assets/js/tutor-front.min.js?ver=2.0.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash ad742b7622be7e3fb90d3a930491c03c
5eabd965d3c75033a316ba0966141d1a9fe5385f
1f5fe6c6c07710166c6905b90fedcd11792d3a10ddf3c5b05a8b788b2398c068
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/js/tutor-front.min.js?ver=2.0.9 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 18:38:43 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2d46424be9fd82d5d89980a3f1478a07
f5fbafd0ec81bb6c15e4012292f0bcf18553ebae
fbfb7d9048d93193eabd5c327afb622fa7e09b4c46d2c388f5d7fa002ef89f3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FBFB7D9048D93193EABD5C327AFB622FA7E09B4C46D2C388F5D7FA002EF89F3C"
Last-Modified: Thu, 15 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18817
Expires: Sat, 17 Sep 2022 01:25:42 GMT
Date: Fri, 16 Sep 2022 20:12:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2d46424be9fd82d5d89980a3f1478a07
f5fbafd0ec81bb6c15e4012292f0bcf18553ebae
fbfb7d9048d93193eabd5c327afb622fa7e09b4c46d2c388f5d7fa002ef89f3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FBFB7D9048D93193EABD5C327AFB622FA7E09B4C46D2C388F5D7FA002EF89F3C"
Last-Modified: Thu, 15 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18817
Expires: Sat, 17 Sep 2022 01:25:42 GMT
Date: Fri, 16 Sep 2022 20:12:05 GMT
Connection: keep-alive
www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.10
200 OK 1.2 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.10
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash c1f2385f65bef35558cb802f8d8cdc38
a99dfde0645b2ffac783ff1bd824aa87b31ee36e
06d99363331cfc4fe776888d75685835c49b601cf39fb6789955181f9c4f4be0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/public/js/swiper-config.js?ver=1.4.10 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 18:30:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1240
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.10
200 OK 235 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.10
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (421), with no line terminators
Hash 214e507f202e3ca2403a375d9d844bbb
26ba1f121df7e41cc395d178a90dd22b1d772255
d772933b93714b57746827e2a7343cd82a9518f3b2bbe7cfe2ed45da08644792
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/public/js/preloader.min.js?ver=1.4.10 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 18:30:15 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 235
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.10
200 OK 244 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.10
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (447), with no line terminators
Hash b88ad9082cedbec869172af1422ff0fc
b74af2d24670bdbd82a852e7a328cfb31f4e4ebb
6d5e76d47c78b5364885b5af6dc1b684410ee74d983de7b529b05e367697567c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-category-slider-grid/admin/js/woo-category-slider-admin.min.js?ver=1.4.10 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Wed, 31 Aug 2022 18:30:14 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 244
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.2
200 OK 4.0 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9115)
Hash 30e4855ccd2fde73cd01838d073b8d4b
aa39e03ffb6e39bf82b6a04d72e3f7cf7509f778
cbcfd79d48b4735b59e17b77cb3930f8a51fcdcb3d4675718a45af6077469636
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 20:20:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3955
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/uploads/2022/08/cctur_transp_05-300x300-1-150x150.png
200 OK 8.5 kB URL HTTP/2 www.cctur.net.br/wp-content/uploads/2022/08/cctur_transp_05-300x300-1-150x150.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash cd7a06da27628f0f5506514ff42e46e3
5eba24a6b7aca8c02180aa8bd31a31a99ff8bfdc
246ab192e1cd9906bb8a6175d1a3e51acce32851ecac6f7c6b92be8febb36a69
GET /wp-content/uploads/2022/08/cctur_transp_05-300x300-1-150x150.png HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cctur.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:52:56 GMT
accept-ranges: bytes
content-length: 8488
content-type: image/png
date: Fri, 16 Sep 2022 20:12:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.cctur.net.br/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.2
200 OK 1.0 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1668)
Hash 0bebfb5722cbc8ac04e62aa40698be49
3bc5e4f29cb19a2d80d46dee242dabf7e42c0fd3
70d02eabbadbe176455a2bb53d8d567feca69847c067a5274987a8bdc65e3c05
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:05 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 20:20:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1000
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.2
200 OK 792 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2139), with no line terminators
Hash 1ca3f41c13e0027acc45f0601f8b640f
cced34af0c6a59e9cee4229faa66ab39c7031506
d3bc5eaf4c6be9473dbba690825cce9a1a6f4accb6721dae7875efef54942f41
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:05 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 20:20:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 792
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/tutor/assets/js/tutor.min.js?ver=2.0.9
200 OK 149 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/tutor/assets/js/tutor.min.js?ver=2.0.9
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (35270)
Size 149 kB (149140 bytes)
Hash 808e111b6d572898cd26182b56ba6589
6b1343e2fec1d6087fe6446406613e571ec9fa4c
cea9863c9796c50787afbac966edbb2b5727e866b5b0f48fb1a558ede30361d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/tutor/assets/js/tutor.min.js?ver=2.0.9 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Sep 2022 18:38:43 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.2
200 OK 1.1 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.2
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2938), with no line terminators
Hash 769e9d3f7fc383ec1a02024e39730474
4f5a5edf28ed19b48c5e40747ec6896f0df8f09e
4636689d57889e984a7a1a1c6e2516b7a2d951407ca826aaf505c50002e2b486
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.2 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:05 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 20:20:01 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1093
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.2.6
200 OK 44 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.2.6
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (595)
Hash 59003a5ea4a4ee98c11dd9f52e5af8a9
f9f35e463f88828e51675ecd87ecb29263142c99
ca4320d8cf1c7130c96527bfdeac1613d5e24cde350d906664e23b9e81712ded
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cf7-conditional-fields/js/scripts.js?ver=2.2.6 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:05 GMT
Server: Apache
Last-Modified: Thu, 08 Sep 2022 20:00:26 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.cctur.net.br/wp-content/uploads/2022/08/cctur-transp-white-300x300-1.png
200 OK 9.4 kB URL HTTP/2 www.cctur.net.br/wp-content/uploads/2022/08/cctur-transp-white-300x300-1.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 9defe586a4b4344837fd7b26b478cd4f
e416a43f9387bcaa91932acbe12b6a41968456a7
93df10a2e244a09e6b2e36f37538844f192f943d791788b03cb5a1615af6c453
GET /wp-content/uploads/2022/08/cctur-transp-white-300x300-1.png HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cctur.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 00:44:23 GMT
accept-ranges: bytes
content-length: 9406
content-type: image/png
date: Fri, 16 Sep 2022 20:12:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.cctur.net.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.4
200 OK 2.9 kB URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8016), with no line terminators
Hash 3fb911c81f788558bc6d1107199f3531
6dc32db62563450febea4e0f43b7da34defbb99a
7ac7ac2450edf5bb80788a92c271b0a0e806aacbfd4cced63e941a3035cf43c1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.2.4 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:05 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 21:29:42 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2938
Keep-Alive: timeout=5, max=63
Connection: Keep-Alive
Content-Type: application/javascript
www.cctur.net.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 409 Conflict
Date: Fri, 16 Sep 2022 20:12:05 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.cctur.net.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
409 Conflict 83 B URL HTTP/1.1 www.cctur.net.br/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 409 Conflict
Date: Fri, 16 Sep 2022 20:12:05 GMT
Server: Apache
Content-Length: 83
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.cctur.net.br/wp-content/uploads/2022/08/cctur_transp_05-300x300-1-100x100.png
200 OK 4.8 kB URL HTTP/2 www.cctur.net.br/wp-content/uploads/2022/08/cctur_transp_05-300x300-1-100x100.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bd7e16497b4a97efdd5758a3181e2492
d55dfbb0f9da87212f946b4f57e9075f1de36668
e5e1e6cd73f994380e045120c3a157a77a203d72a25b469b04784a01bff319fe
GET /wp-content/uploads/2022/08/cctur_transp_05-300x300-1-100x100.png HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cctur.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:52:56 GMT
accept-ranges: bytes
content-length: 4813
content-type: image/png
date: Fri, 16 Sep 2022 20:12:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.cctur.net.br/wp-content/uploads/2022/08/cctur_transp_05-300x300-1-300x300.png
200 OK 14 kB URL HTTP/2 www.cctur.net.br/wp-content/uploads/2022/08/cctur_transp_05-300x300-1-300x300.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash c710197ac34fc23ec7753fbf7fe6d64f
dba1749c98196f634bef270527bfaeaf2554322a
a6049436b66382f86854d3f6c6dfe27dcf7896f7b182b2a4f82299c51c8ba6c0
GET /wp-content/uploads/2022/08/cctur_transp_05-300x300-1-300x300.png HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.cctur.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:52:56 GMT
accept-ranges: bytes
content-length: 13908
content-type: image/png
date: Fri, 16 Sep 2022 20:12:05 GMT
server: Apache
X-Firefox-Spdy: h2
www.cctur.net.br/?wc-ajax=get_refreshed_fragments&elementor_page_id=0
200 OK 285 B URL HTTP/1.1 www.cctur.net.br/?wc-ajax=get_refreshed_fragments&elementor_page_id=0
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with very long lines (650), with no line terminators
Hash 9474712a19bf4ba0183202d40733cbd7
76ce5739b4cfff3de3cb57c74b7623b8621ff7e8
d584a9a273481bed0c1fc54bb2bc0aa65b6e96833bd1af97f969b92dc3cce112
POST /?wc-ajax=get_refreshed_fragments&elementor_page_id=0 HTTP/1.1
Host: www.cctur.net.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 42
Origin: http://www.cctur.net.br
Connection: keep-alive
Referer: http://www.cctur.net.br/WSec01bc/auth.php?md=jeRhIZdzDPnHXQYTvaWk&jeRhIZdzDPnHXQYTvaWk
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:12:05 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Access-Control-Allow-Origin: http://www.cctur.net.br
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Content-Encoding: gzip
Content-Length: 285
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
162.241.3.35
23.36.77.32
93.184.220.29
0.0.0.0