firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 08:38:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _OT5Cnt2wbhzWSMXRHgz9QncYnrnfVcskrWoC9feT5rZyQWc966fyA==
Age: 2336
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9000
Expires: Mon, 26 Sep 2022 11:47:14 GMT
Date: Mon, 26 Sep 2022 09:17:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UY1eV-eMUorwTNThoXr1WWlHur_ilJoTe7TushyJk2Trg9EURNyK4Q==
age: 16919
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 09:17:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 09:10:47 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 09:19:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RJnHN_DQlnlQJHVq-RO2bbRlvEh76fJyYoK5txQOEQNlwHKEptpnzg==
Age: 388
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6084
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:14 GMT
Last-Modified: Mon, 26 Sep 2022 07:35:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
turisteiro.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
192.185.217.18200 OK 4.9 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (24504)
Hash 50b19b70e48fdd58e84f4a34a4516eb7
103f1389caaf956c15e48c7c9261daf4cb101e03
dea6a0db1a51ac1d8cd055c8e21b02cd2b1786072298b5c097e605d2b77b6f51
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 22 Jul 2022 22:16:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4861
Keep-Alive: timeout=5, max=75
Content-Type: text/css
turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
192.185.217.18200 OK 81 kB URL HTTP/1.1 turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Hash 2934c8f3582b0ff0810d0f4c90f7b2ee
4cb2a19fc94301e44c993b70c9628e92a3aa3435
6be2be4133ec2cb57699dcc18392a9e2fdd7963943d2206bdcf71a2079a43e44
Analyzer Verdict Alert fortinet Malware
GET /como-usar-o-uber-em-foz-do-iguacu/ HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:14 GMT
Server: Apache
X-Pingback: http://turisteiro.com/xmlrpc.php
Link: <https://turisteiro.com/wp-json/>; rel="https://api.w.org/", <https://turisteiro.com/wp-json/wp/v2/posts/18025>; rel="alternate"; type="application/json", <https://turisteiro.com/?p=18025>; rel=shortlink
Set-Cookie: apbct_timestamp=1664183834; path=/; HttpOnly; SameSite=Lax
apbct_site_landing_ts=1664183834; path=/; HttpOnly; SameSite=Lax
apbct_page_hits=1; path=/; HttpOnly; SameSite=Lax
apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; path=/; HttpOnly; SameSite=Lax
apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; expires=Thu, 29-Sep-2022 09:17:14 GMT; Max-Age=259200; path=/; domain=turisteiro.com; HttpOnly; SameSite=Lax
apbct_site_referer=UNKNOWN; expires=Thu, 29-Sep-2022 09:17:14 GMT; Max-Age=259200; path=/; domain=turisteiro.com; HttpOnly; SameSite=Lax
ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910; expires=Wed, 26-Oct-2022 09:17:14 GMT; Max-Age=2592000; path=/; SameSite=Lax
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
turisteiro.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=5.183
192.185.217.18200 OK 166 B URL HTTP/1.1 turisteiro.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=5.183
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash 1e5f9c2418b8c420781e5f7622d76407
abbc718b9e757beb013f61757786c9fb18033adc
fe4f082634a044c503686bbf2ae6d2e9f8c36af0469c398df83529f68e5f7d38
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=5.183 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 19 Aug 2022 18:31:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 166
Keep-Alive: timeout=5, max=75
Content-Type: text/css
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
192.185.217.18200 OK 7.1 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 09b8b6cbc1b0486aa66786792e8c6984
73a077a16ce58b6b5c7169a61989f7421a913936
a8e462cb54773ddf7cd4fdc03715c0cd12a537c633c026635d5810b621246db6
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7112
Keep-Alive: timeout=5, max=75
Content-Type: text/css
turisteiro.com/wp-content/themes/destination/css/responsive.css?ver=5.9.4
192.185.217.18200 OK 1.3 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/css/responsive.css?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash c450bb6ad2fca66cb7e57c36c0fa4825
1ee85afc9d8c97bed67e6668f3109e9d1631f3ff
9abb9babc6284dbf3a7826a8e43f11df2a5bf7a355bd41364ebbc3aec711ae4b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/destination/css/responsive.css?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:14 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1261
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
52.41.246.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.246.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6qI66FNgVTgEPyEqjD/Ubw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: K8SzSNX+vQb2VdQDEQwhhoQGZ70=
turisteiro.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
192.185.217.18200 OK 16 kB URL HTTP/1.1 turisteiro.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (39791)
Hash f9ff11f74e8529779b6d0a398d76be89
e6369c832d137f60420b232d6b8662cd65a50496
4e1528494bebb5f06ecdcb19fe8163aa967b12ff04ce04ec3badcb957433a3c7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 05 Apr 2022 22:43:55 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16047
Keep-Alive: timeout=5, max=75
Content-Type: text/css
turisteiro.com/wp-content/themes/destination/css/bootstrap.min.css
192.185.217.18200 OK 27 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/css/bootstrap.min.css
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65367), with CRLF line terminators
Hash 3c672383857039cf192b8f97e417d788
5bf30c8352c297e7a15ab0d9d51cd5750899078e
6f731e9df6fc3874d80baaf8fe3b97c67637c7b08ace6385e6a73debf8484de4
GET /wp-content/themes/destination/css/bootstrap.min.css HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
turisteiro.com/wp-content/themes/destination/style.css
192.185.217.18200 OK 25 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/style.css
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ab50df929a9bc0a2cf2b69e67c65c0a3
fd97152923cbc9994cb94928a8d8a4fab27c84b6
e0b1f29ff2e385c5f2461f505df789ceb5531c886da4ae2b71f89af3bd1718f0
GET /wp-content/themes/destination/style.css HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:14 GMT
Server: Apache
Last-Modified: Sun, 20 Mar 2022 22:16:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
turisteiro.com/wp-content/themes/destination/css/owl.carousel.css?ver=5.9.4
192.185.217.18200 OK 566 B URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/css/owl.carousel.css?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 28c39d7ed4643ea6e1a32f5b84294235
4b9d93b9ced6bdc9805fe7c70078acdd5b702df8
e21d960dc2c0caabc9b51a68dc6365d12c696285db8c25dd4629ea4ba837f038
GET /wp-content/themes/destination/css/owl.carousel.css?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 566
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/themes/destination/css/owl.theme.css?ver=5.9.4
192.185.217.18200 OK 528 B URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/css/owl.theme.css?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 1b1abc1e5750d887e63f38c3ea608827
ae273cf157eb6b94e35d9d43c76a1556a1121231
11308e624cb75d71658fce9b8a6feb12f53903af019630f94fd8cebc491d1aae
GET /wp-content/themes/destination/css/owl.theme.css?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 528
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/themes/destination/css/jquery.bxslider.css?ver=5.9.4
192.185.217.18200 OK 1.4 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/css/jquery.bxslider.css?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 07a8911bff5b4b0e410c6a5d2dc91697
989bf1aaafbe56ae36b7e67f1171aca11e677c03
06ff790a52306499eb71d34e84625a98ee0d7a834645a973a2c6739f833a2fcb
GET /wp-content/themes/destination/css/jquery.bxslider.css?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1365
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7
192.185.217.18200 OK 1.6 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13766)
Hash 7dea5eff68b30348ff16409c8893e79c
a020d9a6089363e2a619e2978cc9404a3993dfd2
81734a7fe7e2b448dbaaacdae3827153ce02f38737942ff8e538fde03c025864
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1608
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
192.185.217.18200 OK 4.0 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19233)
Hash 2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4008
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/uploads/elementor/css/post-19630.css?ver=1663714397
192.185.217.18200 OK 562 B URL HTTP/1.1 turisteiro.com/wp-content/uploads/elementor/css/post-19630.css?ver=1663714397
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1922)
Hash 792ef8261d6f3a8522718ac842f8122a
5aace98ec270f89dd1663238d3079c9a456144de
9facb1d2aeb2fc51a5305651d662d4999bbdcf6994b15b2ba5171a8af63a70b0
GET /wp-content/uploads/elementor/css/post-19630.css?ver=1663714397 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:53:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 562
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
192.185.217.18200 OK 13 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (59158)
Hash e6b67e11736ae36a062b381717f2ea9f
a663a79bc8d42aa58bfea1351cc27e0d0b09c9b2
a07a94d36246d0b3e5b9b18e274e31995d0e23cda955babf5e350e91a879523d
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12862
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7
192.185.217.18200 OK 32 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65497)
Hash fb36ab7436ef6fa136752101ad2be392
6cd240cd6112d56c8048534dce63f6d2083d27a0
90251f516b857f6d8b4ffcc8c5d6485078be3ad35b92bd3de3c089c654e6a829
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7
192.185.217.18200 OK 4.4 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (26516)
Hash fdd462f58aee3f9349eabdefb5ca0b57
bb6e017d5537630516ccb98952593690a8c69864
ca51806fcedbe90dd613c4c28673af8693381806a5cb3b43dce2ea4f43e8b314
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4436
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/uploads/elementor/css/global.css?ver=1663714398
192.185.217.18200 OK 4.0 kB URL HTTP/1.1 turisteiro.com/wp-content/uploads/elementor/css/global.css?ver=1663714398
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14692)
Hash 15fb554a607c3cf1fb8138060046db98
4d0e3bd9d6b97c42e6c5b04972c5a691d56edf9f
8ac571fd1a20e5780b98d41321bf0ea147c7490dc90c7fa5f45b518f321492e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1663714398 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:53:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3963
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/uploads/elementor/css/post-20522.css?ver=1663714398
192.185.217.18200 OK 522 B URL HTTP/1.1 turisteiro.com/wp-content/uploads/elementor/css/post-20522.css?ver=1663714398
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2333), with no line terminators
Hash 75ae402fa882cd60946ee9db46af64a6
3a35e7d2861e23fe5fb215943e4fbef628a6d93b
5df0eea0b55959a9c7ff673a0f7afa40cc2afa7d874c16535c8469b650cea303
GET /wp-content/uploads/elementor/css/post-20522.css?ver=1663714398 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:53:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 522
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
turisteiro.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
192.185.217.18200 OK 39 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash feb933ceca72e1d76b471ed9db278b0d
6179e8f9c9876a6c4df5e3138e9f8ee2ac25bcd1
9a525fa92f98fd5ac754d60ea6f3676bcaa3870dd9bf057c8c668399922c9bd0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
turisteiro.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.217.18200 OK 4.6 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.6.4
192.185.217.18200 OK 68 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.6.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65493)
Hash a483386ef1363ed82f84729e040b5726
cfb2dea868bbd1325d8cba15bf4e14ad7a22ecc8
91d1b817a5f98f3333afdcc59b95334d87b1db5140e15bd0b595424239db5892
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.6.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 17 Mar 2022 20:51:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
turisteiro.com/wp-content/themes/destination/dist/assets/js/bundle.js?ver=1
192.185.217.18200 OK 485 B URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/dist/assets/js/bundle.js?ver=1
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1004), with no line terminators
Hash cf12478a5f9de644491730e3e53fa061
a65840f1b4e3eb1b4b37b5b78712218863d0301f
f5252f599065dc97ef835b9ea508ffd95e5b87f5a67db94584b3337f00272f2a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/destination/dist/assets/js/bundle.js?ver=1 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 485
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=5.183
192.185.217.18200 OK 9.0 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=5.183
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23984)
Hash d3626cdf9c28081da25f2b903b8a624a
bdf3da106f89dbd3b3ea3ec29892824acd4f80ae
10e00e9f3e59674ea928bd86853394fd9ccce570601fc49d60461860b1231a8f
GET /wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=5.183 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Fri, 19 Aug 2022 18:31:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8969
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7
192.185.217.18200 OK 4.4 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14869)
Hash 7bab7ad64ffbd7846dd6819250b93e2e
c924918d540389aff62220088b6761f38a5da272
045250efe67364c953a91f6a60cf407ebb5cfdb2da04e84c3d98e5bab5eca9ba
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4359
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash e9f6146f509eedf609ea4b2ecca9ec96
7b80f661211540ce9193d2045fec1df9c22a260d
0d243bc54701c2fbdeb08c63a5e837c5b3fdce7d128829e7e4831b4680e29bc3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: ECS (dcb/7ECB)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: naoqNf9-w-7w9OqxLgA__Qy3DEX78QBw8UBvDxZ835RgpSNaOxusOw==
turisteiro.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
192.185.217.18200 OK 5.2 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15224)
Hash 00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 08 Jun 2021 22:15:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5243
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c9821adc79579895890a3b92e65f0764
7929d3421627266f9f8383203893dee6a7901bf9
7250affcb3d41b978af2aff1fdfbd8814f31ffecc15f50f96c3cc759286918d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7250AFFCB3D41B978AF2AFF1FDFBD8814F31FFECC15F50F96C3CC759286918D9"
Last-Modified: Mon, 26 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 26 Sep 2022 15:17:15 GMT
Date: Mon, 26 Sep 2022 09:17:15 GMT
Connection: keep-alive
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
192.185.217.18200 OK 13 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12577
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c9821adc79579895890a3b92e65f0764
7929d3421627266f9f8383203893dee6a7901bf9
7250affcb3d41b978af2aff1fdfbd8814f31ffecc15f50f96c3cc759286918d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7250AFFCB3D41B978AF2AFF1FDFBD8814F31FFECC15F50F96C3CC759286918D9"
Last-Modified: Mon, 26 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 26 Sep 2022 15:17:15 GMT
Date: Mon, 26 Sep 2022 09:17:15 GMT
Connection: keep-alive
banners.seguroviagem.srv.br/geral/seguro_viagem_geral_250x250.png
143.204.55.105200 OK 61 kB URL HTTP/2 banners.seguroviagem.srv.br/geral/seguro_viagem_geral_250x250.png
IP 143.204.55.105:0
File type PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 0b1b8ed415032522f72e9d7133f30fd9
3766b749a1e2a0862520d3b5fc7243c2cf1a0451
1665a90c7d6e5c34bb2c99c6ea049c9ea1fec0094e7430ec388aa3d8ef03a5ca
GET /geral/seguro_viagem_geral_250x250.png HTTP/1.1
Host: banners.seguroviagem.srv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 61209
last-modified: Wed, 19 Apr 2017 16:02:03 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 10:21:30 GMT
etag: "0b1b8ed415032522f72e9d7133f30fd9"
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ImVlJcl3uqWP6ZX7VykutqV8OAOIr2tulCPfxmFb7WDgVocsmBnblA==
age: 82546
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c9821adc79579895890a3b92e65f0764
7929d3421627266f9f8383203893dee6a7901bf9
7250affcb3d41b978af2aff1fdfbd8814f31ffecc15f50f96c3cc759286918d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7250AFFCB3D41B978AF2AFF1FDFBD8814F31FFECC15F50F96C3CC759286918D9"
Last-Modified: Mon, 26 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 26 Sep 2022 15:17:15 GMT
Date: Mon, 26 Sep 2022 09:17:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c9821adc79579895890a3b92e65f0764
7929d3421627266f9f8383203893dee6a7901bf9
7250affcb3d41b978af2aff1fdfbd8814f31ffecc15f50f96c3cc759286918d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7250AFFCB3D41B978AF2AFF1FDFBD8814F31FFECC15F50F96C3CC759286918D9"
Last-Modified: Mon, 26 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21555
Expires: Mon, 26 Sep 2022 15:16:30 GMT
Date: Mon, 26 Sep 2022 09:17:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ccd5bcb7e9d851ce6fe61035014995e8
eceff7fb347e316bfec0827d3f6cae42ed63eb69
48c67df95ea2f67980a16bc1481c3e2e1cde308327adaf09d8f9f9fecbf2e91a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48C67DF95EA2F67980A16BC1481C3E2E1CDE308327ADAF09D8F9F9FECBF2E91A"
Last-Modified: Mon, 26 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Mon, 26 Sep 2022 15:16:23 GMT
Date: Mon, 26 Sep 2022 09:17:15 GMT
Connection: keep-alive
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
192.185.217.18200 OK 308 B URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 308
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
192.185.217.18200 OK 309 B URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 309
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
turisteiro.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7
192.185.217.18200 OK 3.0 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2997
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 87037f1a6953e028975e38476815bc72
e8e44435ba1d4de9ee6f86d3b1d5382fa587fcb7
e847a7f128fa12e570493f9dc8739400c6141792c40c77ed0205028391f870a3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5171
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:15 GMT
Last-Modified: Mon, 26 Sep 2022 07:51:04 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
turisteiro.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
192.185.217.18200 OK 2.1 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5477)
Hash f0bd7ad12acdee26cbb2701c1ba3610b
53c5d15129860868b60b74cb010b2c6050a64f69
e6d0cb19e56d22e8e511c23ca2bd233bedb40e3c7cf4ff38fe6f059bc7e0c64f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Sat, 13 Jun 2020 18:53:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2103
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-includes/js/masonry.min.js?ver=4.2.2
192.185.217.18200 OK 9.2 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23966)
Hash 2a730dafa34e6ff81513d31e486cdbdb
1fce17d256f67ae086d74092a03006997d9b0add
7a5fd36a453a3a7471fa93b8169579f9a98e2df7a262c44d28d3de41a0f7ae1c
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Sat, 13 Jun 2020 18:53:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9216
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
www.paypalobjects.com/pt_BR/BR/i/btn/btn_donateCC_LG.gif
192.229.221.25200 OK 2.6 kB URL HTTP/2 www.paypalobjects.com/pt_BR/BR/i/btn/btn_donateCC_LG.gif
IP 192.229.221.25:0
File type GIF image data, version 89a, 99 x 47\012- data
Hash 2879cf0e08131f42e2c8ab7d3af32def
8520cef3b172c37cccde181758ac3d1930dc5270
ded9e6be6a69178269794c8e3e96f7f40b938d8599f5bd1391c561092a668370
GET /pt_BR/BR/i/btn/btn_donateCC_LG.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Mon, 26 Sep 2022 09:17:15 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637c5-a4c"
expires: Mon, 26 Sep 2022 10:17:15 GMT
last-modified: Fri, 16 Aug 2019 04:57:41 GMT
paypal-debug-id: 30734436629a4
server: ECAcc (ska/F6EA)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 2636
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 1bd38d6b8559abcb23739fbb163b9bde
d94aa6ff66505d6720837738c441b9632150a715
a0fb7f7828faf12602161c70f5093f29549a2d973aba9278e791b53b7ddb4734
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Fri, 30 Sep 2022 07:41:05 GMT
ETag: "d94aa6ff66505d6720837738c441b9632150a715"
Last-Modified: Mon, 26 Sep 2022 07:41:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750ae7cc48e4b51d-OSL
turisteiro.com/wp-content/themes/destination/js/jquery.bxslider.min.js?ver=5.9.4
192.185.217.18200 OK 7.9 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/js/jquery.bxslider.min.js?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (23441), with CRLF line terminators
Hash 223b65a3defb5c1c95585aa6f31c3bb1
fabc48213f1949ed3a68dc395ef029464934ec1f
dec70d386a1da4822eec9971cb9dc396ed146b80211e6749a104522e5921fbd0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/destination/js/jquery.bxslider.min.js?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7859
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/themes/destination/js/owl.carousel.min.js?ver=2.2.1
192.185.217.18200 OK 15 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/js/owl.carousel.min.js?ver=2.2.1
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32000), with CRLF line terminators
Hash 4abcf4ed418c59f48188925991bfb1cf
5adc48c03dfdfe91367b8eed76fbd7cdf9166a30
8911847696e35f16ee9057f65da5c3882ec9268b8b243bc7441a13a2fefb2fed
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/destination/js/owl.carousel.min.js?ver=2.2.1 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15332
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
192.185.217.18200 OK 724 B URL HTTP/1.1 turisteiro.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1626)
Hash e1b8f48388e00a715d3fe1f64ea15476
3ea75fd181dd3630bd8765a2b67f23d6da39edbf
87f4466dda6ad8e1c9aa26ef27e28b3b74ac40327d8daf4a7cf994e5b7893718
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 18 Aug 2016 18:55:30 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 724
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/themes/destination/js/bootstrap.min.js?ver=5.9.4
192.185.217.18200 OK 14 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/js/bootstrap.min.js?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32003), with CRLF line terminators
Hash 28ed915d3a0ec9fab34c0dd05e9bac24
98bbb569c8543b2a84b103a120b8f269c56f7445
9af6b1ad3ca70d6f70e4698cef88bc4cb394a947e7ac3b4cf01ec8b98f9fc73a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/destination/js/bootstrap.min.js?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14323
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/uploads/2021/01/cropped-Turisteiro-M-1.png
192.185.217.18200 OK 8.8 kB URL HTTP/2 turisteiro.com/wp-content/uploads/2021/01/cropped-Turisteiro-M-1.png
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 269 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash aba59512619150b360a65a59e4c7923e
470907f1337244c0c672473df94862ff4e14e48b
b880f1e20ebb007e7830a940f5ad259c1535b661942aa249b758b9d4882f6cd5
GET /wp-content/uploads/2021/01/cropped-Turisteiro-M-1.png HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 11:40:41 GMT
accept-ranges: bytes
content-length: 8768
content-type: image/png
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/themes/destination/js/jquery.sidr.min.js?ver=5.9.4
192.185.217.18200 OK 2.9 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/js/jquery.sidr.min.js?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6911)
Hash 5b7cdabef69a55122084e96e19596234
5344eaa4b464655c5d6342096bb49af510756171
aaebcba2a5263898d2a770433eb22fb6b12d116d846b6ee7285cf2d3fa6c26a5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/destination/js/jquery.sidr.min.js?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2869
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/themes/destination/js/plugins.js?ver=5.9.4
192.185.217.18200 OK 1.1 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/js/plugins.js?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (1781), with CRLF line terminators
Hash f85c5f7f403cd4ca7766344be673660f
2e07bd2e55441b9cb28b45d6d09d7a6d34d68a9e
b2996bfb3ee7d9e7df212717ca79ddf72877b9c31e3d69599ba4196f579362f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/destination/js/plugins.js?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1131
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e71a12876bbad2160974c2f25aa54c73
7bd91acf3751893d1f5eb929a2f9e9c96a53460e
30feac3343d07daac2e2d94a053e78d3ae0989be9de01d1ec5a6abbb38ee0012
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4368
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:15 GMT
Last-Modified: Mon, 26 Sep 2022 08:04:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/turisteiro.jpg
192.185.217.18200 OK 6.4 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/turisteiro.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 7a317da3064da555ff3fa5fd7244b984
ffb93ad77396e87d13cdd7491bfde5063ce26fb2
16a2817e40a2bcebe304ac561b5ba51d1b1fa6b6dec928bfa4c6279e08679e6f
GET /wp-content/uploads/sb-instagram-feed-images/turisteiro.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:43:58 GMT
accept-ranges: bytes
content-length: 6412
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/themes/destination/js/custom.js?ver=5.9.4
192.185.217.18200 OK 3.0 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/js/custom.js?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 708a08496f9609be845ce8eddf170cc1
bbf79cc33912a4328d4d25d3b60c409a5b3e95be
ab480a0aa6817fe135b5cf832e0d7b8646a6633cceb08ec493b9a90ca47b3de1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/destination/js/custom.js?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:29:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3040
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-includes/js/comment-reply.min.js?ver=5.9.4
192.185.217.18200 OK 1.5 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/comment-reply.min.js?ver=5.9.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2944)
Hash 9ac248baebac8a71f89142b07c50e1c8
d5ffce8d7c50d1becbc60001a2266e76fee9740b
f342ba88310a681c4bad012eef81003ab477e612c181ef58316f40ce3a3e17f5
GET /wp-includes/js/comment-reply.min.js?ver=5.9.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Mon, 01 Nov 2021 21:47:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1472
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6
192.185.217.18200 OK 9.7 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27481)
Hash 0c1aa0f032eb73f1ecf9ecbe84a50487
65715c2dbe225d87deaaf130f7d5fbc08c0c6c90
63fa635497485fc2160c77ce22cd0d32de16e7791b90de3a276a5ac7a9fae35c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Fri, 22 Jul 2022 22:16:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9688
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.4
192.185.217.18200 OK 2.4 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5082)
Hash d7c48b833a416e13373b2b361f7e4c09
312a8910f6a01d2cad605ff553a2e0634c040b45
e4b66a3e9553b628d7ef9f415b0bf6830ac2b9654853350a40bb8d044abd010b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Thu, 17 Mar 2022 20:51:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2426
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e71a12876bbad2160974c2f25aa54c73
7bd91acf3751893d1f5eb929a2f9e9c96a53460e
30feac3343d07daac2e2d94a053e78d3ae0989be9de01d1ec5a6abbb38ee0012
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4368
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:15 GMT
Last-Modified: Mon, 26 Sep 2022 08:04:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e71a12876bbad2160974c2f25aa54c73
7bd91acf3751893d1f5eb929a2f9e9c96a53460e
30feac3343d07daac2e2d94a053e78d3ae0989be9de01d1ec5a6abbb38ee0012
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5902
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:15 GMT
Last-Modified: Mon, 26 Sep 2022 07:38:53 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e71a12876bbad2160974c2f25aa54c73
7bd91acf3751893d1f5eb929a2f9e9c96a53460e
30feac3343d07daac2e2d94a053e78d3ae0989be9de01d1ec5a6abbb38ee0012
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4368
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:15 GMT
Last-Modified: Mon, 26 Sep 2022 08:04:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
turisteiro.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
192.185.217.18200 OK 13 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 0229436139252f7baac927ba68d0345c
87ee02aebdad682afc67a6c26e70f9f79be8772a
28a354f80539bbc54ab26d65cb735cb1962dd7e8e342de0f909f695078a525a0
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13281
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
192.185.217.18200 OK 2.3 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4918)
Hash 588e35a0201d8cb9b2d626e2ba2255f8
1e2a47393ada6f424b6fe6381c7d513eb778b344
87c1b9894474cedaf274df42dcefbfbdcad10b3bb4332dd58947f6964d8053c0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2313
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 4b26f5ea0bb005db5a965df2f53a1a46
0f3fe408aac9260b18153cab79a910bbd569d451
ae1d16f540596b1b5bc1faf71c0e676e3e7f26860a9ea026d51ea3e696add8c8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 14:00:00 GMT
Expires: Sun, 02 Oct 2022 13:59:59 GMT
Etag: "0f3fe408aac9260b18153cab79a910bbd569d451"
Cache-Control: max-age=534763,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750ae7ce7957b509-OSL
scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/225917607_543976056756837_6573134680714085333_n.jpg?_nc_cat=108&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGtuwDcymjUN_PnPYhTUv6-Mr8G3NYVzKMyvwbc1hXMoz6xjfteQTSjeZUU3zv0zBDOevtH225M5GPRE3IMdRZv&_nc_ohc=UJnZci7G2KsAX-nSo_v&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8AKqdyIw0j0VkWy2uga8UALUtehP9InFr4pYCCqL65LQ&oe=6267B2A6
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/225917607_543976056756837_6573134680714085333_n.jpg?_nc_cat=108&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGtuwDcymjUN_PnPYhTUv6-Mr8G3NYVzKMyvwbc1hXMoz6xjfteQTSjeZUU3zv0zBDOevtH225M5GPRE3IMdRZv&_nc_ohc=UJnZci7G2KsAX-nSo_v&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8AKqdyIw0j0VkWy2uga8UALUtehP9InFr4pYCCqL65LQ&oe=6267B2A6
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.2885-15/225917607_543976056756837_6573134680714085333_n.jpg?_nc_cat=108&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGtuwDcymjUN_PnPYhTUv6-Mr8G3NYVzKMyvwbc1hXMoz6xjfteQTSjeZUU3zv0zBDOevtH225M5GPRE3IMdRZv&_nc_ohc=UJnZci7G2KsAX-nSo_v&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8AKqdyIw0j0VkWy2uga8UALUtehP9InFr4pYCCqL65LQ&oe=6267B2A6 HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcLaHWzJSLMOx5Nn5GWkjFGGBW71X18kcJY2m5mfghsDC5JJLF96uLHO8IxcgCcHQ5kcqnpgY5891cQQ"; e_fb_vipaddr="AcJp-v4r8X_P1Yuxb9okzp5hgrpQYJQrSfoKH3t0FLnKJIeJ5unZ8VtClOHWRYmLZ90nCYg"; e_fb_builduser="AcLHqg7Rocl6ESq5xz_iHPhhAuXkNNtv33IJVIGuQGOmsk5i9gh8n_Z_Y9Kb1CnNJuQ"; e_fb_binaryversion="AcIH7uW2MBknVxcR3dlCQPfiq8r-EIM6dkIe-eyurAXN4f16CWQPs4wzMCXPM4YQdLcHP_8llvKvgsIg4uqUJPS3uMOTp0D92rE"; e_proxy="AcIhSuxGizURha4bxsnNRWH6B30thhONnnHk2NrGjztXR_Tv4C-YWdLkAtJ74nNsnoCA7mrbpff6InnB"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A400%2C400italic%2C600%2C700%7COpen+Sans%3A700italic%2C400%2C700%2C600%2C300&subset=latin%2Clatin-ext
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A400%2C400italic%2C600%2C700%7COpen+Sans%3A700italic%2C400%2C700%2C600%2C300&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash d8849f93d612081f25be273d14d796e6
d7d21451f1818f23ae9e4ee6fd4835f099aefbc6
1159951d8545be74ed1216ebc88afd9746bddb5cafac1b7dd37aa5fe5388de5c
GET /css?family=Montserrat%3A400%2C400italic%2C600%2C700%7COpen+Sans%3A700italic%2C400%2C700%2C600%2C300&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 09:17:15 GMT
date: Mon, 26 Sep 2022 09:17:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
scontent-dfw5-1.cdninstagram.com/v/t51.2885-15/234355345_554996305628371_1495213730005962797_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHC4rIlqJbRUdAThlQwD8v4Xc3M-SGOJXJdzcz5IY4lcjh8Yl_NoJS1VamDo6uJvjyPDnV_OMZYE7yk72XJPQOJ&_nc_ohc=uc6Kn-1Ay7gAX8cMWAT&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_aHx_4BYME5yY1pWK91yZ9uGB6CjCJfGmyJKOLOJOb8g&oe=6267E0E5
157.240.19.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.cdninstagram.com/v/t51.2885-15/234355345_554996305628371_1495213730005962797_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHC4rIlqJbRUdAThlQwD8v4Xc3M-SGOJXJdzcz5IY4lcjh8Yl_NoJS1VamDo6uJvjyPDnV_OMZYE7yk72XJPQOJ&_nc_ohc=uc6Kn-1Ay7gAX8cMWAT&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_aHx_4BYME5yY1pWK91yZ9uGB6CjCJfGmyJKOLOJOb8g&oe=6267E0E5
IP 157.240.19.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.2885-15/234355345_554996305628371_1495213730005962797_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHC4rIlqJbRUdAThlQwD8v4Xc3M-SGOJXJdzcz5IY4lcjh8Yl_NoJS1VamDo6uJvjyPDnV_OMZYE7yk72XJPQOJ&_nc_ohc=uc6Kn-1Ay7gAX8cMWAT&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_aHx_4BYME5yY1pWK91yZ9uGB6CjCJfGmyJKOLOJOb8g&oe=6267E0E5 HTTP/1.1
Host: scontent-dfw5-1.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcL9-yJINod9jfKL85iRRdoITrfpOXbb07CUwqQnOTefKU6vvQmJ-nT6qC35T31hF6ck7tIWDPJjWRi4"; e_fb_vipaddr="AcJ3HKRyMqX4rjOQsqlo4u_LT0QQ_WLlC1VZODrjXNPSvVJCYILhKVGlCEV7aAIN0n9ynclDmQ"; e_fb_builduser="AcJdA1T53LG-edJVF-5Z0wMySHH58KieoJdjSVCri8GKEwIl3erT7skm9-V7hNvo_mo"; e_fb_binaryversion="AcIZv6R2ePmngDNipDEKBt0q_LQH_itbW57QYRAY10LxEiah9gsv2FeoXYDtmBgEthcsJySgLDDpOvdMpWJ4RWqHAjPURQX_bWE"; e_proxy="AcLprE7TOhtHB9rNUtp4SOKAVGjqmrkGnG6K9VM9NaeJOi8OAt1rs-jiCwcEfxhvK4kfyCu5bDDg9s4"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/240778795_1307199873032839_8620640934442221608_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeFBhlRAHlPvcVBPCYC-5EjVgedQJqe3j4WB51Amp7ePhW8OSGUTWvBYbCzplvwXazr8tzJ97Y5dTBXXwOLRYf4_&_nc_ohc=MV1RgZ8NlMYAX9mv1A9&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-bDqAGKsX6r2AgtQFvNWL6H4hR99k0Y5L9oo3wm_oX6Q&oe=62679461
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/240778795_1307199873032839_8620640934442221608_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeFBhlRAHlPvcVBPCYC-5EjVgedQJqe3j4WB51Amp7ePhW8OSGUTWvBYbCzplvwXazr8tzJ97Y5dTBXXwOLRYf4_&_nc_ohc=MV1RgZ8NlMYAX9mv1A9&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-bDqAGKsX6r2AgtQFvNWL6H4hR99k0Y5L9oo3wm_oX6Q&oe=62679461
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/240778795_1307199873032839_8620640934442221608_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeFBhlRAHlPvcVBPCYC-5EjVgedQJqe3j4WB51Amp7ePhW8OSGUTWvBYbCzplvwXazr8tzJ97Y5dTBXXwOLRYf4_&_nc_ohc=MV1RgZ8NlMYAX9mv1A9&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-bDqAGKsX6r2AgtQFvNWL6H4hR99k0Y5L9oo3wm_oX6Q&oe=62679461 HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcLDSTU7-lz9s2eb8uh5j-Her6tl6Bbhu5ca7-po6rOeQKN-524l_vNrvk5IV5J32Zpqf454ZWh_ZzLQ"; e_fb_vipaddr="AcLm9Kg2jJsGtctXOQ6zwtU03EwMkecGuVJxnhiozm1WRZ0kStkeUdgp3rfGcvk5kjTYdSk"; e_fb_builduser="AcJ4wPq3FB7yp43CSk-M0e7D_qqoEInnTS8fB6mtYC4RCQPQCB51FO5mup8QfPLV2eM"; e_fb_binaryversion="AcJywW0ILBuOFdSDZV0SVaNj-O-2Rfv4BBT2RuTUoQq8xXZ3NHpjE9RcEq_w_Iow3qf2mhquInO6sgEMvOIgSc6yBT38CeBv5H4"; e_proxy="AcKEXMaVv9sAqQOb2LrpstC27sAU-EMFrGYfednKgSqV1ts2GaY_x9YJpu0vURM9Z28jcqTZoYG8onj5"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/271332814_320780723282143_8646389261082270747_n.jpg?_nc_cat=106&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeH-7M1NWxCOQnMMHA-9zoUSq8fpj8E1G1mrx-mPwTUbWbsVmGkM47kB4grF_o2plXvSl3OtNw7QluypIs1CRyT3&_nc_ohc=Lj6J8GYdtY8AX8dzGnx&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT97FYmA0DW7EBhBBXGnrgpYJ3g72q788vQh6-L_O9fQvQ&oe=6267CFD7
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/271332814_320780723282143_8646389261082270747_n.jpg?_nc_cat=106&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeH-7M1NWxCOQnMMHA-9zoUSq8fpj8E1G1mrx-mPwTUbWbsVmGkM47kB4grF_o2plXvSl3OtNw7QluypIs1CRyT3&_nc_ohc=Lj6J8GYdtY8AX8dzGnx&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT97FYmA0DW7EBhBBXGnrgpYJ3g72q788vQh6-L_O9fQvQ&oe=6267CFD7
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/271332814_320780723282143_8646389261082270747_n.jpg?_nc_cat=106&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeH-7M1NWxCOQnMMHA-9zoUSq8fpj8E1G1mrx-mPwTUbWbsVmGkM47kB4grF_o2plXvSl3OtNw7QluypIs1CRyT3&_nc_ohc=Lj6J8GYdtY8AX8dzGnx&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT97FYmA0DW7EBhBBXGnrgpYJ3g72q788vQh6-L_O9fQvQ&oe=6267CFD7 HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcLbhPYlWAwb-Iiq6njlIUBPFDTHqyT7eT8DOjVJPYU10WzK2wt4Gfjt6-oYlyD31z1FR8mAjJXzHUiF"; e_fb_vipaddr="AcLKxpX2rnjSI5nfY3CfcHJ2CylGTJLgoUYRBGdgmQHCAn510aR8CHg67aQ2CfOSVS_EuyA"; e_fb_builduser="AcIsqPA-YqVWyOKlePxlt_d_31kgSzPxd_62bFa1C4PQVsTnTU126sIEy6NS07mUXrg"; e_fb_binaryversion="AcIlacTc8NW9wM0H_Ub9L0XJ-ZWnWUQ_c9e6rPE3eenqe9DsiVJHziMcEYJF7BPk6pkfCG98GTyEUSaJxz7putK9jnMxexf-QE4"; e_proxy="AcLlVPKO9PAqtaCCWw20_sTUI2dodgNqgWEexr7e3VKnQPt8DG-sgPZeEXlnCQ5qZMxMa86iWj2Yl4lD"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/243490825_269635528352075_8306672715297595926_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEF78cTANEnXgnxIOCIrhpM3JI61AOKhMrckjrUA4qEyixVEgh5PjIxCkEL4YwKoikJYQ2ffksGlqOG5XTr3Zsp&_nc_ohc=DVQ-0U2_cOkAX_mGLQk&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-_hKvxxLWDiVUQtnSK1zss2x1Nvq1CDJDMnkFVRypLxQ&oe=6268B6D1
157.240.19.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/243490825_269635528352075_8306672715297595926_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEF78cTANEnXgnxIOCIrhpM3JI61AOKhMrckjrUA4qEyixVEgh5PjIxCkEL4YwKoikJYQ2ffksGlqOG5XTr3Zsp&_nc_ohc=DVQ-0U2_cOkAX_mGLQk&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-_hKvxxLWDiVUQtnSK1zss2x1Nvq1CDJDMnkFVRypLxQ&oe=6268B6D1
IP 157.240.19.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/243490825_269635528352075_8306672715297595926_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEF78cTANEnXgnxIOCIrhpM3JI61AOKhMrckjrUA4qEyixVEgh5PjIxCkEL4YwKoikJYQ2ffksGlqOG5XTr3Zsp&_nc_ohc=DVQ-0U2_cOkAX_mGLQk&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-_hKvxxLWDiVUQtnSK1zss2x1Nvq1CDJDMnkFVRypLxQ&oe=6268B6D1 HTTP/1.1
Host: scontent-dfw5-1.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcJgaxK0bZ-idGKy8gVdZJMDYk5ZQhNmTThxLOks6W_MbTgaTKt1VYqGTDkWlvWPvnzfpQ8A_8dYFjLC"; e_fb_vipaddr="AcITDM_D6C_PRCzgh2Bel6mBoi1mYp7Gdb0csqG5R40oBHW4fWYc850Iwfzf0jlFFp_PoVwIZA"; e_fb_builduser="AcIg4UxjADg0-0htYU-jgjYAhZa2yft4jCYI_P53U-dCzCUNYRjX5EC1MKCOwTw-8Pc"; e_fb_binaryversion="AcI_t-imUmfbjxM8PqVIwqzVShQfPk7uKHKHa0Zt0C0aENkzy7npPSXyeH89__lnRZNEF7WeVnFNc5oHx3RRp05efEkly2ys6go"; e_proxy="AcIe3prIc9VpbXleqF47rbMEkxHR8aP1UO-HxkS96gQkewIIB7yOS4b2_OOXDBrc7dhdtAwArNKv6aw"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/239251702_536759234244989_2316234324203728715_n.jpg?_nc_cat=100&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHlI9zNALYOs2w_tcFQ81yFm2VAHA3XlXObZUAcDdeVcxsh2qXq_bl0XX_WCGVkmvpAcY4CUWbZgy2XIXKPisq-&_nc_ohc=W71EgWV4D3UAX-sn27S&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8mW48NR3pdqe_TpaDePwCI8llbbWcSp17iJgtv1xlE1w&oe=62677024
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/239251702_536759234244989_2316234324203728715_n.jpg?_nc_cat=100&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHlI9zNALYOs2w_tcFQ81yFm2VAHA3XlXObZUAcDdeVcxsh2qXq_bl0XX_WCGVkmvpAcY4CUWbZgy2XIXKPisq-&_nc_ohc=W71EgWV4D3UAX-sn27S&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8mW48NR3pdqe_TpaDePwCI8llbbWcSp17iJgtv1xlE1w&oe=62677024
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/239251702_536759234244989_2316234324203728715_n.jpg?_nc_cat=100&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHlI9zNALYOs2w_tcFQ81yFm2VAHA3XlXObZUAcDdeVcxsh2qXq_bl0XX_WCGVkmvpAcY4CUWbZgy2XIXKPisq-&_nc_ohc=W71EgWV4D3UAX-sn27S&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8mW48NR3pdqe_TpaDePwCI8llbbWcSp17iJgtv1xlE1w&oe=62677024 HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcIW5I6f_hJ6McsLKJnx9kMivisww6r0x5GS__57qilcsMOWYdvgc9jIhJmKwnuDDgtOMVSwjUXIZ8la"; e_fb_vipaddr="AcLUBGzTZLfD9FvirqFgh7oK--YkBkrjjKgXeoqLJtkbyQkj4WbyqNr8bWPAoWVj44vRwew"; e_fb_builduser="AcIMsYPRpeFfQcKNTrZPu-uukfbR5UkhahdeWOW4Q5MO_P85aUNAjTD2schYf5V6YKs"; e_fb_binaryversion="AcKH_6rFLTcvQo_9lc-vEdBo0sA-yjRqHERKiOEfCM5qdBBNZNXgeg3_tR65XCxfierL9Lmjp3wOs2Xe63mlaIIOX975zyU5z3E"; e_proxy="AcJqtMpQZ_zC8PCoPgoRnGt-ayqY3StH1WuO09SP6LkFSGErp_pZa_5ig_NPgCwnjKodcDM8bAheed5v"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/221427725_523200355619206_4140176886311007520_n.jpg?_nc_cat=101&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeFKSY454NBm2Srb38iA9dcfJfaVwhRbn1Ql9pXCFFufVAwBZN8q63TOaLrQBekueG_3Ot6tTj0JD1craIgp5L22&_nc_ohc=eUhHHHPg0-0AX-laahT&_nc_oc=AQkgNDyjVIYd1wP-CCIwaWxrLgSSvtEIMgtRaoZnh6ANDPKNKsuSCMRCPAxFGl4bPqE&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-OG9d9Mz73l_M2E_UerhmFbJN_9Adz8VuISAgcUcYphw&oe=6268609F
157.240.19.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/221427725_523200355619206_4140176886311007520_n.jpg?_nc_cat=101&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeFKSY454NBm2Srb38iA9dcfJfaVwhRbn1Ql9pXCFFufVAwBZN8q63TOaLrQBekueG_3Ot6tTj0JD1craIgp5L22&_nc_ohc=eUhHHHPg0-0AX-laahT&_nc_oc=AQkgNDyjVIYd1wP-CCIwaWxrLgSSvtEIMgtRaoZnh6ANDPKNKsuSCMRCPAxFGl4bPqE&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-OG9d9Mz73l_M2E_UerhmFbJN_9Adz8VuISAgcUcYphw&oe=6268609F
IP 157.240.19.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/221427725_523200355619206_4140176886311007520_n.jpg?_nc_cat=101&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeFKSY454NBm2Srb38iA9dcfJfaVwhRbn1Ql9pXCFFufVAwBZN8q63TOaLrQBekueG_3Ot6tTj0JD1craIgp5L22&_nc_ohc=eUhHHHPg0-0AX-laahT&_nc_oc=AQkgNDyjVIYd1wP-CCIwaWxrLgSSvtEIMgtRaoZnh6ANDPKNKsuSCMRCPAxFGl4bPqE&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-OG9d9Mz73l_M2E_UerhmFbJN_9Adz8VuISAgcUcYphw&oe=6268609F HTTP/1.1
Host: scontent-dfw5-1.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcLscJBjWxno7ycKaL3Us2dgtNifePVqq2e_2oIKHT7w8BkYlbaUZL8X32TGahkQm7n5srMNdV1kp8Ui"; e_fb_vipaddr="AcIMQjj_BAXQUUjFMkZrsi9PLp5mb_jZ2EH7QeK4iDvVkkcRI87rCba_xOoPA0KgAmJ5DCgNLQ"; e_fb_builduser="AcI5snbE9a4MqOb_mZpA-2M0G6L3SE7o1chcMxTY9HfFc1TN-iVIowqRfg9iVA2ka0g"; e_fb_binaryversion="AcKJFUDZm9-UuwC490oe5M06NO9Sw-WDCCHAi1khZFXdF9YEnqrCKIjgA242Eb9Nroczr44zy2yKONCJTLNRVK73FS9kGIEA-kg"; e_proxy="AcKHkwKQ6Zx9aTIWqKxVorg4-KRL5fLWIcKEwf5qBzZa1XYDzzZoU6RMEiKOZiZx0-3WP149Vwcp-hM"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/236610561_1559861751042764_6439337400510306851_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeG7Hv3ouS6mbr7P09g6v2V6RlBaJFWd0H1GUFokVZ3Qfbmhq5fPndZbLJr4-F06vizs8kZJXXwPh40LA3QpbH5q&_nc_ohc=uOPZ_aM_CRkAX_qXFOc&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_KeSthp_cUmhvm-Sn1I9JKFUYDpUvqSdksMzscSSeeZA&oe=626859A3
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/236610561_1559861751042764_6439337400510306851_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeG7Hv3ouS6mbr7P09g6v2V6RlBaJFWd0H1GUFokVZ3Qfbmhq5fPndZbLJr4-F06vizs8kZJXXwPh40LA3QpbH5q&_nc_ohc=uOPZ_aM_CRkAX_qXFOc&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_KeSthp_cUmhvm-Sn1I9JKFUYDpUvqSdksMzscSSeeZA&oe=626859A3
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/236610561_1559861751042764_6439337400510306851_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeG7Hv3ouS6mbr7P09g6v2V6RlBaJFWd0H1GUFokVZ3Qfbmhq5fPndZbLJr4-F06vizs8kZJXXwPh40LA3QpbH5q&_nc_ohc=uOPZ_aM_CRkAX_qXFOc&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_KeSthp_cUmhvm-Sn1I9JKFUYDpUvqSdksMzscSSeeZA&oe=626859A3 HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcJ1YOBsosTZNBKJC1GT2Xb37Q3cots30XMNGS3KjNoSEso7MHnADOxdJi4x12DplO8rdDpyp0w0Twnu"; e_fb_vipaddr="AcL91fE6To2f_7kvrkJgu0oJUw1FKV9QMa1szlvdrz-8vpSsNOsOiYczGMRIXQNG_FhL_vc"; e_fb_builduser="AcKxaBKEI7Kf6CftIyeyv14tA_55p7fmMUUALuZaD0BCAxi2l5IRZ8GO1hTLCYwKM-U"; e_fb_binaryversion="AcIdY0sMKihm7u9ILdWCGb6TcpcIwkO_wsUAycNy2N0QvG4yy80oHVuoD4NM6TdpiwS93rTAHiRJYOeU_pWY-ICH4_cjPcTlJm0"; e_proxy="AcKJb3aawI0koLryzzyEvdLDW4bK0RfpipHLd55Q7PwLKpmSnDDX2nbjEG9nYHZllCf_U1rYVZcgmRIc"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
turisteiro.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
192.185.217.18200 OK 2.7 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6494), with no line terminators
Hash cd63a2ec76032f1905e3f81427904e37
f6a0b8e5ffd10d4ddb89aa76e46365b306f44035
e0bbd4a2856953ed25b2ec89d7778a67865b4cbc8784ada41faa6026007054bd
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 16:35:13 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2658
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/237139715_1253556095098615_6774639801526375501_n.jpg?_nc_cat=106&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHn28oMjdJxw3vrlGUgnqQXzfiAV2uwucDN-IBXa7C5wMPCsUyOhpz449yMreZd-J6HCyTYB0HhL3tHOWxAUKNN&_nc_ohc=h9jz8wbxKfwAX-8XQ_8&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9_DmoSz_jrB48JKWvefYk2y4TjZs4AViQAAtlpif8lgw&oe=626797FE
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/237139715_1253556095098615_6774639801526375501_n.jpg?_nc_cat=106&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHn28oMjdJxw3vrlGUgnqQXzfiAV2uwucDN-IBXa7C5wMPCsUyOhpz449yMreZd-J6HCyTYB0HhL3tHOWxAUKNN&_nc_ohc=h9jz8wbxKfwAX-8XQ_8&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9_DmoSz_jrB48JKWvefYk2y4TjZs4AViQAAtlpif8lgw&oe=626797FE
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.2885-15/237139715_1253556095098615_6774639801526375501_n.jpg?_nc_cat=106&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHn28oMjdJxw3vrlGUgnqQXzfiAV2uwucDN-IBXa7C5wMPCsUyOhpz449yMreZd-J6HCyTYB0HhL3tHOWxAUKNN&_nc_ohc=h9jz8wbxKfwAX-8XQ_8&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9_DmoSz_jrB48JKWvefYk2y4TjZs4AViQAAtlpif8lgw&oe=626797FE HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcKpeXUA3G9cVCAkfnJf5ee2OPvVEw7tNixxIBhZOrqYOgSHU8W5ZPeUHC9kMLqBPormqe4jShfLr-ou"; e_fb_vipaddr="AcJ09IQIpzflevPx42k0SxJUB8VkNPmCeCUctlMkAjooHKX9jpzuRsHj03EnRfle0K_x4fI"; e_fb_builduser="AcIYWw1y7AtMHTxJaThnaz1N14ojM8-t6j9AeXVP77zuuKd56dKJbybNr_LNdfPqfTc"; e_fb_binaryversion="AcKw4NeNJXJr_jxCy6mixJbUCRnesYf7TpxDuiG9LQgvpQprXYsA0XIHmdoeQMGlrjBTncjxK0VVUeIYBvpGDlbrwnAbpey8LFI"; e_proxy="AcLj4QF5a1WU-Vs_217gRU3MPY7E7IXH6HNFWzyFK0KsR6kQSXacQgqsu2vA4XJSL6dtNgqPt2AFijQZ"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/232981112_868026640803701_7109910955461208766_n.jpg?_nc_cat=104&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGt6pU02xRjGtK6ELWygoqf4PxPPWPfzSPg_E89Y9_NI0MMTmIixBNYvwOj_LI-1B5bif10bTzwsmgBUAo0a8I5&_nc_ohc=RMR-zCTpYGwAX-OpDO8&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9Z-lN_fkg1EPI7_wrf3fA9x7c0StaBQNF18lfRpkLfqg&oe=6268A1F2
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/232981112_868026640803701_7109910955461208766_n.jpg?_nc_cat=104&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGt6pU02xRjGtK6ELWygoqf4PxPPWPfzSPg_E89Y9_NI0MMTmIixBNYvwOj_LI-1B5bif10bTzwsmgBUAo0a8I5&_nc_ohc=RMR-zCTpYGwAX-OpDO8&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9Z-lN_fkg1EPI7_wrf3fA9x7c0StaBQNF18lfRpkLfqg&oe=6268A1F2
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.2885-15/232981112_868026640803701_7109910955461208766_n.jpg?_nc_cat=104&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGt6pU02xRjGtK6ELWygoqf4PxPPWPfzSPg_E89Y9_NI0MMTmIixBNYvwOj_LI-1B5bif10bTzwsmgBUAo0a8I5&_nc_ohc=RMR-zCTpYGwAX-OpDO8&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9Z-lN_fkg1EPI7_wrf3fA9x7c0StaBQNF18lfRpkLfqg&oe=6268A1F2 HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcI3ZjmtthHnIUA4NjcYPIRxBXnIMcf1hWv-__pMthv39v8Bciw0hnqpGZMvDfSfqta1d3oyq0q9GwFt"; e_fb_vipaddr="AcKGPXfEyOsCjGWaVu6VuKcdsX6qrhQ1dB6vwpBcXCla1cos5PF4FIIOTv6XfnZ-lHerNzc"; e_fb_builduser="AcICkWMLILr2AbnG37hH3WP4f8CF7qzlpf6D2I7RadHQcLSJJfNGk1gacEEy6t28dyA"; e_fb_binaryversion="AcKVhVyr9tddeXuWucd3ziN0Ao4Dbmk2Km408-28jUrYt-glhR7Fi8RQDADwKZCdHLONhgUVeNMd_2lk24WzVXJgwCsZuogTL9U"; e_proxy="AcJurM4gGsnZkdH1yyjVr81WLcxA4B7rX-NpXAps7tw2MpPUmuQZPA7P5z1CMzpfO1ApTp3QoquwQCYT"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
turisteiro.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
192.185.217.18200 OK 8.2 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash 078687fca5ae929d917cfd43d2b35c46
c32584206d214f6383107c41681ad0bacbd5c201
60f13132d65e3816c8f96dc42c35a04276c6d0636fcf75d13f9736651d2f1e32
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 12:50:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8198
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
moderate2.cleantalk.org/pixel/4b939488285cedff7287bf662f666ec9.gif
167.71.167.197200 OK 43 B URL HTTP/1.1 moderate2.cleantalk.org/pixel/4b939488285cedff7287bf662f666ec9.gif
IP 167.71.167.197:0
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pixel/4b939488285cedff7287bf662f666ec9.gif HTTP/1.1
Host: moderate2.cleantalk.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 09:17:16 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
X-Frame-Options: SAMEORIGIN
turisteiro.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
192.185.217.18200 OK 1.9 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5655)
Hash 712e34745f18053157b266ddd75eea10
160454bda7a71d01e14b6d97e91a83a73ac6dddc
ab2451b93c953293ac86b45aa4c04ad5fdde6b729dca3e6613876a16b5e589f2
GET /wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 12:50:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1924
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: application/javascript
scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/240421423_398715654998849_3474957272344129142_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHJ4PGz0u7Il1SBq5fn_BWEIjemnFsC2aYiN6acWwLZpldmmVsO-fug-9bLyxDhOTVQy6wtwphOb3cxSYeJr1RN&_nc_ohc=_XX8s9gt9r8AX90qNQI&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-kzNZXm3J3ByfPCkdJ0lX0Lm0GY7bRLbyRJyyVUPuNfg&oe=62688064
157.240.19.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/240421423_398715654998849_3474957272344129142_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHJ4PGz0u7Il1SBq5fn_BWEIjemnFsC2aYiN6acWwLZpldmmVsO-fug-9bLyxDhOTVQy6wtwphOb3cxSYeJr1RN&_nc_ohc=_XX8s9gt9r8AX90qNQI&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-kzNZXm3J3ByfPCkdJ0lX0Lm0GY7bRLbyRJyyVUPuNfg&oe=62688064
IP 157.240.19.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/240421423_398715654998849_3474957272344129142_n.jpg?_nc_cat=103&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHJ4PGz0u7Il1SBq5fn_BWEIjemnFsC2aYiN6acWwLZpldmmVsO-fug-9bLyxDhOTVQy6wtwphOb3cxSYeJr1RN&_nc_ohc=_XX8s9gt9r8AX90qNQI&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-kzNZXm3J3ByfPCkdJ0lX0Lm0GY7bRLbyRJyyVUPuNfg&oe=62688064 HTTP/1.1
Host: scontent-dfw5-1.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcKw9sHM-Oj6RiGc9DF9lCeiYiOueWI1gfbgomFUzSil-q81kqG6W6xponH5lNDvCuRus_4z05vle0Vt"; e_fb_vipaddr="AcILlAUwUMkzn0zPPXzh3unMY_VXxOD9tGb_fskcyfdxEk_VQmVSJK0saSic4yVUCxATAjo2XQ"; e_fb_builduser="AcK-BDu5KwdRGzywQ89X49PMUn0MftQ0xtnJNGKC3HndQXY8_kyt9Vnf_fXHxvyCbko"; e_fb_binaryversion="AcI7lxTB1759zvnRtS4EPEzWIe8N4_UYa0EYEybM-1aP-dNFit8H4rK7-N8EMpEmQ3lGE4-rhEoM6AiiCLXNP3_GFvOmtj8j0-o"; e_proxy="AcIV3evsvfVWWNvkMXM6jmZo31rZtOYvxWKXHT6bugaav_wT-bUlsyChOO_X0d5R14tdWCxYvWH6ZZ4"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
turisteiro.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834
192.185.217.18200 OK 4.3 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 83ea396410e6b9eda4af59ca31c2fd96
187a69fb46a5c984db74529e3c6d2401c07f6493
25c4f162e862de6d5b77739c17c15a3cb4b6b0a1d82e4c627abf5237fed9ea7b
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:15 GMT
Server: Apache
Last-Modified: Mon, 15 Nov 2021 12:50:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4302
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/262854978_612475746739321_6239682930757995887_n.jpg?_nc_cat=101&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGL6KuuoaQ0jCNW6VjClR6Y9uiUbx1Glnf26JRvHUaWd_Xm03xgYdLvjvvnfNKmt4xpBM1huzeO5ZmNxMYgxuh5&_nc_ohc=ghlrp7sx0iwAX8eW3vZ&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8a1IZnWUmLWzms1oJlTvlMzXU6YNfZLPS9H3OlJN3nIw&oe=6268789B
157.240.19.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/262854978_612475746739321_6239682930757995887_n.jpg?_nc_cat=101&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGL6KuuoaQ0jCNW6VjClR6Y9uiUbx1Glnf26JRvHUaWd_Xm03xgYdLvjvvnfNKmt4xpBM1huzeO5ZmNxMYgxuh5&_nc_ohc=ghlrp7sx0iwAX8eW3vZ&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8a1IZnWUmLWzms1oJlTvlMzXU6YNfZLPS9H3OlJN3nIw&oe=6268789B
IP 157.240.19.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/262854978_612475746739321_6239682930757995887_n.jpg?_nc_cat=101&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGL6KuuoaQ0jCNW6VjClR6Y9uiUbx1Glnf26JRvHUaWd_Xm03xgYdLvjvvnfNKmt4xpBM1huzeO5ZmNxMYgxuh5&_nc_ohc=ghlrp7sx0iwAX8eW3vZ&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8a1IZnWUmLWzms1oJlTvlMzXU6YNfZLPS9H3OlJN3nIw&oe=6268789B HTTP/1.1
Host: scontent-dfw5-1.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcKoY8DD250izGMvTLA5B08nPoPIo5_qtHqibqSd8TytgFacsqf1l14lAqehAprRLuWTE9Bn1GmJlvS6"; e_fb_vipaddr="AcKSpu6HaFbWEjSbQwj38Kx_em1903enheufb5w0Xzq8HdgbAZ4aO19l39ODsWtZNhNrALCUnQ"; e_fb_builduser="AcKGkItisZEjmuvjkJaFe8OFBK8SIKzMuAr1mnDZqMPuNPW6sYEwd0l7fd-NKOVyStg"; e_fb_binaryversion="AcIN-lZa9Y6l_g4nNxvXz0HGcWmEE7YJD5gd0XDA_Dfw9H_AjukAQWD9MtqYjHMSvRZxFlk9yP8AOAkDQ9w4d0LlBO1_1M5dQIM"; e_proxy="AcK70bIus7NE8cGj3L1PuIlTBK_VC6h2y1QwjO73xwPG6ISCHpRAhGvGQ6DOPUFfyjUVQJpmTW3DjA0"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/228764649_795653884433062_3037097036227907235_n.jpg?_nc_cat=111&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEqLNdbWYRZvrkxHn4w9XRdmy977Q7owFabL3vtDujAVrQbgYd5IF_KN2-QHCba76sE8-K1yoozo5m3mYu0tavE&_nc_ohc=0MBHOBMy-w0AX95g1jA&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8GrRceRKz8dBr38yMBiJDilfY84DAzMftQPFGK9q5Tjw&oe=62676FBC
157.240.19.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.cdninstagram.com/v/t51.29350-15/228764649_795653884433062_3037097036227907235_n.jpg?_nc_cat=111&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEqLNdbWYRZvrkxHn4w9XRdmy977Q7owFabL3vtDujAVrQbgYd5IF_KN2-QHCba76sE8-K1yoozo5m3mYu0tavE&_nc_ohc=0MBHOBMy-w0AX95g1jA&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8GrRceRKz8dBr38yMBiJDilfY84DAzMftQPFGK9q5Tjw&oe=62676FBC
IP 157.240.19.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/228764649_795653884433062_3037097036227907235_n.jpg?_nc_cat=111&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEqLNdbWYRZvrkxHn4w9XRdmy977Q7owFabL3vtDujAVrQbgYd5IF_KN2-QHCba76sE8-K1yoozo5m3mYu0tavE&_nc_ohc=0MBHOBMy-w0AX95g1jA&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8GrRceRKz8dBr38yMBiJDilfY84DAzMftQPFGK9q5Tjw&oe=62676FBC HTTP/1.1
Host: scontent-dfw5-1.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcI9DAabKxbzAAio9YvdymrC1A1EdH9YKbAoM5TdQVLueFApuH-OE4oFk_HQdmxCtRK2_9cbAOXW_Yf5"; e_fb_vipaddr="AcIytMWwLL7rBoSCrZQYBIJta_ZsvmGI02hIYHWKJAFjpwD50q0Ddu95g5QTFo95K5HPcKFg2g"; e_fb_builduser="AcKE_iX4xWPURESGXist-C_I8X1-3dCmUPdgBzENv5ufCOaQlQDovM4kK4cWlqzBWE8"; e_fb_binaryversion="AcKhjZhU7iegnqBstl8o13pgAE_FRHYFFTU5D-2Gl3CEZzSf9V7Byj2OxMzF-GRV2LeoXg1MZ_kM12DmF5SRIoKpnOuTW93mBwo"; e_proxy="AcKY7aKV3mRLmww8LU8qBYT_yOa434pJzb9fpnqpEykptFf2HIXxtuPjGX41ciCbzF8HMLgNgL23eng"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
turisteiro.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.4
192.185.217.18200 OK 7.3 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20372)
Hash 7cd4ef36c33b0f8acad972e7f31a7496
a966ed3c5f02e745eb477ec6371736a373070132
b6ce8398f3861266f84263acecae1d9089ea7ab67902dcb0d432077e5567e135
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Thu, 17 Mar 2022 20:51:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7266
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
192.185.217.18200 OK 3.7 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3747
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
scontent-dfw5-1.cdninstagram.com/v/t51.2885-15/221010137_1515728788798914_7496085964802387427_n.jpg?_nc_cat=110&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEnLXHEps8Nvm3qZ5Yxq_0haQgxoMrkAxppCDGgyuQDGjr3m4CL_paD9hyuTgstf9nLMi1pdArwB6yRhaQl9slC&_nc_ohc=zbVy46-LQ5wAX-QxVH1&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9SqNrpPkrPzNjdXuvvwNeUUxP9nCoTtXxJJV3F33AxRQ&oe=626719E9
157.240.19.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-1.cdninstagram.com/v/t51.2885-15/221010137_1515728788798914_7496085964802387427_n.jpg?_nc_cat=110&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEnLXHEps8Nvm3qZ5Yxq_0haQgxoMrkAxppCDGgyuQDGjr3m4CL_paD9hyuTgstf9nLMi1pdArwB6yRhaQl9slC&_nc_ohc=zbVy46-LQ5wAX-QxVH1&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9SqNrpPkrPzNjdXuvvwNeUUxP9nCoTtXxJJV3F33AxRQ&oe=626719E9
IP 157.240.19.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.2885-15/221010137_1515728788798914_7496085964802387427_n.jpg?_nc_cat=110&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeEnLXHEps8Nvm3qZ5Yxq_0haQgxoMrkAxppCDGgyuQDGjr3m4CL_paD9hyuTgstf9nLMi1pdArwB6yRhaQl9slC&_nc_ohc=zbVy46-LQ5wAX-QxVH1&_nc_ht=scontent-dfw5-1.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9SqNrpPkrPzNjdXuvvwNeUUxP9nCoTtXxJJV3F33AxRQ&oe=626719E9 HTTP/1.1
Host: scontent-dfw5-1.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcJJkXaXG18Kys77HY9PgfCt_QAB7SgYwChMRooiI302VYPJ5HR2w9liThQo94uALWeRNJFnP4Y_weOt"; e_fb_vipaddr="AcKiy8O8ZeU59SUo28YTo0wd3TJq3qEykVZhYWaW-IGTpbKKpZxQYIqePoSbtSkEPAsU0L3D8A"; e_fb_builduser="AcJGsHI2Lux8dCGcMW155CLpjYpy5agcUFi4FiMhHth1JleUpBijCS_Ujh_oFjf7mxU"; e_fb_binaryversion="AcKV1ZLcubfc1XPdXiwovolPSmsLjekh11AiyTkhiHSXMsgxWloOJMU7E2JScnQWcsg2-Je9RHS3ni_9qshWtbuwbUZ8o5BGqaA"; e_proxy="AcICU-UguOPYr435ZN2XiF-tz8dGTtK50SgZ7x_vRT_cui2qHCn4D4yJxYNyytQhTLcD8P-f-q9Nhzc"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:16 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i0.wp.com/www.paypalobjects.com/pt_BR/i/scr/pixel.gif?resize=1%2C1&ssl=1
192.0.77.2400 Bad Request 58 B URL HTTP/2 i0.wp.com/www.paypalobjects.com/pt_BR/i/scr/pixel.gif?resize=1%2C1&ssl=1
IP 192.0.77.2:0
File type ASCII text, with no line terminators
Hash 3c2eb0b2cb0a7743fe52e9f501ad6ada
cd1df8579d4bb7ac7c8f0236480c5686d92a4c66
ec2b3ab5c4205a3c17dad8ab06182ebad5a7b1538713e86ecdc62c1519d965d3
GET /www.paypalobjects.com/pt_BR/i/scr/pixel.gif?resize=1%2C1&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
server: nginx
date: Mon, 26 Sep 2022 09:17:15 GMT
content-type: text/html; charset=utf-8
x-nc: EXPIRED arn 4
X-Firefox-Spdy: h2
i0.wp.com/www.paypalobjects.com/pt_BR/i/scr/pixel.gif?resize=1%2C1&ssl=1
192.0.77.2400 Bad Request 58 B URL HTTP/2 i0.wp.com/www.paypalobjects.com/pt_BR/i/scr/pixel.gif?resize=1%2C1&ssl=1
IP 192.0.77.2:0
File type ASCII text, with no line terminators
Hash 3c2eb0b2cb0a7743fe52e9f501ad6ada
cd1df8579d4bb7ac7c8f0236480c5686d92a4c66
ec2b3ab5c4205a3c17dad8ab06182ebad5a7b1538713e86ecdc62c1519d965d3
GET /www.paypalobjects.com/pt_BR/i/scr/pixel.gif?resize=1%2C1&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
server: nginx
date: Mon, 26 Sep 2022 09:17:15 GMT
content-type: text/html; charset=utf-8
x-nc: HIT arn 4
X-Firefox-Spdy: h2
scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/225823419_893204651272933_3663325450586824389_n.jpg?_nc_cat=102&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHbuQgwE-WWVNBjIV_BBkD7FqwdJpQcIVIWrB0mlBwhUnC_211IC8tOA1iZ0IhTPXKP6LxGGL_cWpcDyJTdPEwK&_nc_ohc=A04A-bk5mrkAX8PlPQ1&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_687JXpRgF4jIy9MUX6qT3OheFso9K7V6xspI31qXZBQ&oe=6267815E
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/225823419_893204651272933_3663325450586824389_n.jpg?_nc_cat=102&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHbuQgwE-WWVNBjIV_BBkD7FqwdJpQcIVIWrB0mlBwhUnC_211IC8tOA1iZ0IhTPXKP6LxGGL_cWpcDyJTdPEwK&_nc_ohc=A04A-bk5mrkAX8PlPQ1&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_687JXpRgF4jIy9MUX6qT3OheFso9K7V6xspI31qXZBQ&oe=6267815E
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.2885-15/225823419_893204651272933_3663325450586824389_n.jpg?_nc_cat=102&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHbuQgwE-WWVNBjIV_BBkD7FqwdJpQcIVIWrB0mlBwhUnC_211IC8tOA1iZ0IhTPXKP6LxGGL_cWpcDyJTdPEwK&_nc_ohc=A04A-bk5mrkAX8PlPQ1&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_687JXpRgF4jIy9MUX6qT3OheFso9K7V6xspI31qXZBQ&oe=6267815E HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcKYCLyh2wDb_GI2NfCm24VNIjsHgBgbzNUL69l3WW5niM7GgqRFTlYX-5EAHDldNLsq8UUJlGEloyi1"; e_fb_vipaddr="AcL6GQB-6qr-gfbJo-ZmbWMI1A7RVVO88d8X-tcn6Fy0xE3TpwB-bwuVnmpepFQ_qLhqvhs"; e_fb_builduser="AcKga1aaGbVjx9DPjnrsk4-MFmpFoBZQRx3SDrikcjsOsZO_xudmBgvI7wxm8DQeNuU"; e_fb_binaryversion="AcJhP48oF2AkvCYayme_8SuNFxq2LT-39ggJhX50GzBa_KavfppalC7Eosph0hQwxkdXYYSQ3aYzLbkGt9LfUw8PgsCCUGdbmSw"; e_proxy="AcKzFZH1c5z344pWuZOP5kDSPi0UscDDtogOitRg55rS_Q2QdZrwS7YC692et8hFCI4-TgME3OpAOeJh"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:16 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/223614108_1936660146490182_7464653014752975250_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHYQ5yMYYHBVTllxyXG6vW1rcBLxc07zyKtwEvFzTvPIh6XluSk2_6viSW1VKJBcswVZ-bE-TAeD1WVwUImWD3K&_nc_ohc=eRIAVFdWWWQAX-xvrII&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-9OspxbBjU4xiHwsCxjIRtdGD1eDhgMXtPMhl1lvnE3w&oe=6267A3B8
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.2885-15/223614108_1936660146490182_7464653014752975250_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHYQ5yMYYHBVTllxyXG6vW1rcBLxc07zyKtwEvFzTvPIh6XluSk2_6viSW1VKJBcswVZ-bE-TAeD1WVwUImWD3K&_nc_ohc=eRIAVFdWWWQAX-xvrII&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-9OspxbBjU4xiHwsCxjIRtdGD1eDhgMXtPMhl1lvnE3w&oe=6267A3B8
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.2885-15/223614108_1936660146490182_7464653014752975250_n.jpg?_nc_cat=107&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeHYQ5yMYYHBVTllxyXG6vW1rcBLxc07zyKtwEvFzTvPIh6XluSk2_6viSW1VKJBcswVZ-bE-TAeD1WVwUImWD3K&_nc_ohc=eRIAVFdWWWQAX-xvrII&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-9OspxbBjU4xiHwsCxjIRtdGD1eDhgMXtPMhl1lvnE3w&oe=6267A3B8 HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcKQnCOqA2cem3GbMXhkwGNP6Xyf6-TzM9A8OcNum9BYGYCFzP5B7KGuAKqc3AsvQppKxX_bSV62rba6"; e_fb_vipaddr="AcLuhOIe0BqoW0rDjRDDasFRZTcY7VFH2QEc7YxoXAFsmjhcpr2L0aTzI7A1gS9P1Sk5rNg"; e_fb_builduser="AcK_nZutdRx9aMD8sbmTQMasturXaBaopztnhqueiTXyRd2NbvgP2gwI7VzoC3So2xo"; e_fb_binaryversion="AcIEuUv-uD3i_cTamdVAXTrBH5awWP5Zz1LVBooAcRFk3iFoGfpHZ-CUmRNiYLP4z2gI3pVtUmxcYLXCHg4nMh7WLxJcHPdUcMQ"; e_proxy="AcIv3RM4XjZCmEJZHiI7vSEZbwdXPwFTJtDT9e7ytSu2sqtqRDiTdf7l5jANDSvCL0x1MxuS0QlT1eI0"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:16 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/245257287_931559257449817_7186160254610406588_n.jpg?_nc_cat=104&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGNdGMmpAcP90gDLEEHpxBW4gdfO-sPMZviB1876w8xm9OTsoD2z-w4l_y9XVzadCCW6ioXsLv6XU0q2htfFtwc&_nc_ohc=qvqX5kl0vwQAX9eKUZD&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8aSc1lqdONIMxXqrhKPKwhKIK0RhWLnlm6VJXrl1uQzg&oe=626823C7
31.13.93.63403 Forbidden 21 B URL HTTP/2 scontent-dfw5-2.cdninstagram.com/v/t51.29350-15/245257287_931559257449817_7186160254610406588_n.jpg?_nc_cat=104&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGNdGMmpAcP90gDLEEHpxBW4gdfO-sPMZviB1876w8xm9OTsoD2z-w4l_y9XVzadCCW6ioXsLv6XU0q2htfFtwc&_nc_ohc=qvqX5kl0vwQAX9eKUZD&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8aSc1lqdONIMxXqrhKPKwhKIK0RhWLnlm6VJXrl1uQzg&oe=626823C7
IP 31.13.93.63:0
File type ASCII text, with no line terminators
Hash 6da25d09495fcf438ac047a93b6d55db
3c47de0b8adaca2b257f236519fa5c5cdd6f01ab
16366d2552aa8349747c1168a3ef03665652b08d80385b6664c4cbf6a5b2f932
GET /v/t51.29350-15/245257287_931559257449817_7186160254610406588_n.jpg?_nc_cat=104&ccb=1-5&_nc_sid=8ae9d6&_nc_eui2=AeGNdGMmpAcP90gDLEEHpxBW4gdfO-sPMZviB1876w8xm9OTsoD2z-w4l_y9XVzadCCW6ioXsLv6XU0q2htfFtwc&_nc_ohc=qvqX5kl0vwQAX9eKUZD&_nc_ht=scontent-dfw5-2.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8aSc1lqdONIMxXqrhKPKwhKIK0RhWLnlm6VJXrl1uQzg&oe=626823C7 HTTP/1.1
Host: scontent-dfw5-2.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
proxy-status: http_request_error; e_clientaddr="AcIVdTQAgRVM2QqqmT0bT8TmytEECGEf7DjF4CcMJtGKF3iGMRtBEW83lF2Q575ucednpgcBr5LYfclG"; e_fb_vipaddr="AcJ35UlT72QWej4CYcWgQNj8XiTKBIUUzdVlRQtlLW4knTJ5rcNVf4FZ_FdAwzm5XKVoi88"; e_fb_builduser="AcLY221QUZnfE979Vr9g45X17cwsXdp4rkVU099siLUFkjTz27t5reZW-CrdZU0ZBts"; e_fb_binaryversion="AcIN-PmDdWB_8yqmsHoIEacmUKJFdz0LY1JUahhMdKfHk8vnvMAqN1ZLJ4XsazF8-VL8b-JRFRGWRQO11CPLljibYEFGnkG3Z-w"; e_proxy="AcKU2ZxqIC1i93AKOeZmHGHqQYVVLParGqjB5AEQ1hjQJMq0gRrpbEQWxXHrwVIYIhKqsQNM6Yy73IkW"
content-type: text/plain
content-length: 21
server: proxygen-bolt
x-fb-trip-id: 1984883670
date: Mon, 26 Sep 2022 09:17:16 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
turisteiro.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
192.185.217.18200 OK 8.1 kB URL HTTP/1.1 turisteiro.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4cdacddd7ddb8e34cdc428be2f12ee99
dccf8409d825f49557c40a467c0d3052f4c14923
bd13cfedef2490fbfdcecac80b24ad0f13fd9741bff3ebeb20a49b87d947a141
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Thu, 03 Feb 2022 00:04:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8137
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
192.185.217.18200 OK 4.2 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4200
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7
192.185.217.18200 OK 1.2 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2620), with no line terminators
Hash 55936584085d0d310919b755eda1ab3f
be317c3b2ed5143669375295b3107e591bf708da
aad2265c39cafa6e01b791b1ef5025a2d237ee91346ef446beb722fdcd578d58
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1187
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e71a12876bbad2160974c2f25aa54c73
7bd91acf3751893d1f5eb929a2f9e9c96a53460e
30feac3343d07daac2e2d94a053e78d3ae0989be9de01d1ec5a6abbb38ee0012
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5903
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:16 GMT
Last-Modified: Mon, 26 Sep 2022 07:38:53 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e71a12876bbad2160974c2f25aa54c73
7bd91acf3751893d1f5eb929a2f9e9c96a53460e
30feac3343d07daac2e2d94a053e78d3ae0989be9de01d1ec5a6abbb38ee0012
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4369
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 09:17:16 GMT
Last-Modified: Mon, 26 Sep 2022 08:04:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
turisteiro.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
192.185.217.18200 OK 16 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40474)
Hash b02bb7e70ff55215b5b6760c7c18a398
209d571d8ad59f0286dc360ad8293ea77901684c
875e6356c27d756dd3482b9b911d2e7184e90c8dcd5ddd9ef664f71c41d5b80a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16151
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.6.4
192.185.217.18200 OK 45 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.6.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65493)
Hash 80424d482e76ce614f273847d5209a81
e635d0bb1300274fd1d4d17cc6b3e4c13aa7b170
7ba15a3917a0d14cb7e86be0bc110eccfde6f9a999d6428aa79ba74065357e24
GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.6.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Thu, 17 Mar 2022 20:51:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12276
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 09:17:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12276
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 09:17:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12276
Expires: Mon, 26 Sep 2022 12:41:52 GMT
Date: Mon, 26 Sep 2022 09:17:16 GMT
Connection: keep-alive
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/245257287_931559257449817_7186160254610406588_nfull.jpg
192.185.217.18200 OK 75 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/245257287_931559257449817_7186160254610406588_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash aab369834c741b4fb53c6a431340cfef
4d44dfe3d137c912560943f6cc28ed61887a434a
43bef450ba9d65f6e668c064f5fa955c0b9e3e3b89edc1c5e8489c29a760475c
GET /wp-content/uploads/sb-instagram-feed-images/245257287_931559257449817_7186160254610406588_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:24 GMT
accept-ranges: bytes
content-length: 74787
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/2016/10/IMG_0420-298x300.jpg
192.185.217.18200 OK 12 kB URL HTTP/2 turisteiro.com/wp-content/uploads/2016/10/IMG_0420-298x300.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 298x300, components 3\012- data
Hash 1de02179035ad1c9815016fe4d955dc7
1508c7f702ed0812d70694be908fc3b03764caa0
bc7dda234b66b954d1949c7531b7c99a986203eef9e55a35e32d5f3e692957f1
GET /wp-content/uploads/2016/10/IMG_0420-298x300.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Jan 2021 17:36:17 GMT
accept-ranges: bytes
content-length: 12128
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/221010137_1515728788798914_7496085964802387427_nfull.jpg
192.185.217.18200 OK 79 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/221010137_1515728788798914_7496085964802387427_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash d9775b081ed4fdfd099584ce69ab32f3
55efd95dd4869815bc6f23e237095cee66b3e18e
46bf05290c5192611ce198e2cb591ed862af6f1b4dab90dd33f81d1f36c29e71
GET /wp-content/uploads/sb-instagram-feed-images/221010137_1515728788798914_7496085964802387427_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:33 GMT
accept-ranges: bytes
content-length: 79272
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a75be68e82e6a0ba74932fbe74c7b30
36310320605833289e78cd248c45915363a0a0c3
56d709b77802037254b7922e3f85d1b1652b70dfc4b6c65b03e4149d3b1f22ca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6443
x-amzn-requestid: b6f3be01-6086-4fc1-8bec-c4caa1fe806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKMG04IAMFRxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca41-5452d1805d3f4d71303142c9;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tx-lL61dT3iakJd8VZw31hzMklubUDBQxE6LBhxsJUqyMM0bqCk73g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:07:18 GMT
age: 40198
etag: "36310320605833289e78cd248c45915363a0a0c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2719e8b8-4e41-4309-8ca2-8780fbed9e48.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2719e8b8-4e41-4309-8ca2-8780fbed9e48.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1823d1bb11ceec44419af17b32275cb5
5df91bc07da358644dc16e12f509ee364ec17bcb
f7aa5f13f0d469d4ffe569b2c21cb599a9c70c490caa31e0e83c36fe2dd49a8b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2719e8b8-4e41-4309-8ca2-8780fbed9e48.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15624
x-amzn-requestid: 966db920-27f5-496f-8aea-4e0628e6dc7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhF3xIAMFzaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-1f62801d573715e14518564c;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: LH8Nx22zSbIDy8OoiC6xx7Mxfz6je1pmA2u9tqsLTtCiAyvjyVnq0g==
via: 1.1 e124ba8d7ba1d81e2fdc59ac89f11b70.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:07:18 GMT
age: 40198
etag: "5df91bc07da358644dc16e12f509ee364ec17bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/2017/12/Viajanet.jpg
192.185.217.18200 OK 15 kB URL HTTP/2 turisteiro.com/wp-content/uploads/2017/12/Viajanet.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 217x181, components 3\012- data
Hash b07c8ea888e7a8fdf483fdd1575676de
e2f90afeef0079aa298d3894332e1d435a27a7d2
db8966bd1b7e5de21f168dcf396dc2c3bf1e455287f041df8e213a23bf4215f1
GET /wp-content/uploads/2017/12/Viajanet.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 20 Dec 2017 03:06:38 GMT
accept-ranges: bytes
content-length: 15095
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8703b7f0-bb10-4a43-a50f-a8a5c8857499.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8703b7f0-bb10-4a43-a50f-a8a5c8857499.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38f828e3aa86057cc3b686ca9d4accc5
c529507a70247c7e03c849c3ff45f93eada6f0c4
76016d51352ff6a8372b92206119d88747600874ecee5315573ca4e539e03c6f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8703b7f0-bb10-4a43-a50f-a8a5c8857499.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10045
x-amzn-requestid: a01e6cef-fe8f-498c-aa68-2603a66b1121
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvwHPwoAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-1a4405e54c54eccb4f0846a2;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dBJjUHYsSR4YA1SMcbZJ_iNdvPOhtXlltVN3f36IduFe2h2zsMT_Yw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 41240
etag: "c529507a70247c7e03c849c3ff45f93eada6f0c4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
turisteiro.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7
192.185.217.18200 OK 17 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43101)
Hash 3ad8c06fe3c3f84fea1d5d6ad6f51d3a
4a3f18cf10485696e25b5ba224fea06ac1759a14
d3fa6029a058f369033abd4a1424a044b1d1ca0353f64adec2a6e034339cf1d4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.7 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16899
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
192.185.217.18200 OK 47 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65280)
Hash 6d3f8ba511b26a2b5e2555673e996be4
d5a3c1ed68beeeafc4da01d71a6b7ce0f19f985e
955d1e858ec91ca4b3f5c845421692afc83dcbca3dd52577f746e18278f45315
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pt7rJi8EIQFBk0gHQZ1WnjvThPba86XZCGFs83l1ZW2dj-_6bZprAA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 41240
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27d324b1fb661c318aced98468501b3c
5c4ee294c98e8fc9312a7d481b6ec165494cf852
937296b5da48df0495ebd0cb3509b7c00059725c00c5b97f475ba2382a0e5437
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7998
x-amzn-requestid: beedf4d8-29c0-43c6-92d0-40af6b9ee9f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTibE5LoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cc75-1be97f2a525b9a5e3146d4be;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: i8BwIohBNqfEavPXBqSWshg7G-WF9UkBBScnDcyH4qEYV9TzreLXWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
etag: "5c4ee294c98e8fc9312a7d481b6ec165494cf852"
content-type: image/jpeg
age: 40304
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
turisteiro.com/wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff
192.185.217.18200 OK 17 kB URL HTTP/1.1 turisteiro.com/wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 16568, version 1.1\012- data
Hash 23facbf845d56af99e5a7d8d6eb0b74e
b0270e9c1081ba45dc2d7bee632e30770ac1fe1b
06740bed37ae127653a71aafd5ef45de0238e7622639a9ab6dbf1f2144890a0c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXx-p7K4GLs.woff HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 00:22:24 GMT
Accept-Ranges: bytes
Content-Length: 16568
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: font/woff
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 41997
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
192.185.217.18200 OK 78 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Content-Length: 78196
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: font/woff2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/223614108_1936660146490182_7464653014752975250_nfull.jpg
192.185.217.18200 OK 101 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/223614108_1936660146490182_7464653014752975250_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Size 101 kB (100888 bytes)
Hash 7cc4fbea3a118e99aa36facb9b041380
ce6e4fb720487ebbd86171d6e45acc5ebd110d71
370edf33146ff46d5fa222525bebf9737c1d09d229937ce7429c0f4565889742
GET /wp-content/uploads/sb-instagram-feed-images/223614108_1936660146490182_7464653014752975250_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:32 GMT
accept-ranges: bytes
content-length: 100888
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/221427725_523200355619206_4140176886311007520_nfull.jpg
192.185.217.18200 OK 107 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/221427725_523200355619206_4140176886311007520_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Size 107 kB (106696 bytes)
Hash b5f03cdfb6f1765870e4b585481ac89f
50549f7831885f41db9a1dc8fcbaf47591b61390
02d038c329f334df04d80b78334f6ed513724715f79d1a96deef732ca9d8668b
GET /wp-content/uploads/sb-instagram-feed-images/221427725_523200355619206_4140176886311007520_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:33 GMT
accept-ranges: bytes
content-length: 106696
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/225823419_893204651272933_3663325450586824389_nfull.jpg
192.185.217.18200 OK 96 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/225823419_893204651272933_3663325450586824389_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash b86389ca54dee3b8310a254d5363ff00
1f127121c0508d2e247ecce34a9b5b8e820cfe34
fa5fce68260f8bc5eda9bd9f0f4285e3052b79e1f9a249b5d1b71cc5aa54edd4
GET /wp-content/uploads/sb-instagram-feed-images/225823419_893204651272933_3663325450586824389_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:31 GMT
accept-ranges: bytes
content-length: 95589
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/2017/12/Turisteiro-300x400.jpg
192.185.217.18200 OK 40 kB URL HTTP/2 turisteiro.com/wp-content/uploads/2017/12/Turisteiro-300x400.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "border bs:0 bc:#000000 ps:0 pc:#eeeeee es:0 ec:#000000 ck:500d02a4f1f1d7497340cc586896bf11", baseline, precision 8, 300x400, components 3\012- data
Hash ec5145d58767a2aadc4e63c44b0a59ce
20ae92df7637d2b128fcb733f5b87ad4de7a92e0
2b7f23dc7f3b2af67350809e3d54ebc179076c043c6efd8d9e417db3f5c40ad5
GET /wp-content/uploads/2017/12/Turisteiro-300x400.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 14 Dec 2017 21:39:15 GMT
accept-ranges: bytes
content-length: 39643
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/228764649_795653884433062_3037097036227907235_nfull.jpg
192.185.217.18200 OK 50 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/228764649_795653884433062_3037097036227907235_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash 36d2044643d8fdd4582710075a74e55b
c893364231e4e84e7d826825dd3f797ea8e10e85
e86859c0e0e687c6449783cac203df3f67268effd0f17de0b5cb4bf145c0ae18
GET /wp-content/uploads/sb-instagram-feed-images/228764649_795653884433062_3037097036227907235_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:30 GMT
accept-ranges: bytes
content-length: 50128
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/225917607_543976056756837_6573134680714085333_nfull.jpg
192.185.217.18200 OK 54 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/225917607_543976056756837_6573134680714085333_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash b63853fbc734c5102b6c89a4532bf679
e90e46122c52da879f5ae8bfb36da198d8389a9d
11edbc779ea2bc119ccee980027d2fe2aa6faa724e16c398c0e5009db2003590
GET /wp-content/uploads/sb-instagram-feed-images/225917607_543976056756837_6573134680714085333_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:31 GMT
accept-ranges: bytes
content-length: 54530
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/271332814_320780723282143_8646389261082270747_nfull.jpg
192.185.217.18200 OK 61 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/271332814_320780723282143_8646389261082270747_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash 0287b61b79889e0c9bebf583c6de4651
0d2215bc1fdb83d4ab954d3893cabe78d02df13a
8891ede81154bf496853852bfa6dc7bcb5c949923bee37554f0ae81648412414
GET /wp-content/uploads/sb-instagram-feed-images/271332814_320780723282143_8646389261082270747_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:22 GMT
accept-ranges: bytes
content-length: 61212
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/275595547_1030181244247872_2895188881827105099_nfull.jpg
192.185.217.18200 OK 74 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/275595547_1030181244247872_2895188881827105099_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash 482b06a7941c7f6db71b689c4c07d183
3f30ab8e4ec38e14c7a21954cbaa128d41c61b28
2961938d67ad0aa0f000e18785b65798493e4b664a94791ebbaa123fd8615a99
GET /wp-content/uploads/sb-instagram-feed-images/275595547_1030181244247872_2895188881827105099_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:22 GMT
accept-ranges: bytes
content-length: 74076
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/239251702_536759234244989_2316234324203728715_nfull.jpg
192.185.217.18200 OK 67 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/239251702_536759234244989_2316234324203728715_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash b7a0ef07763c08607923876e6820ec3a
cc38874c941ab87a958045fc5edf2d2df031edb8
c2051fa340c79477ca5874a53c0327650706f42c350c96121cfadc6e2adad276
GET /wp-content/uploads/sb-instagram-feed-images/239251702_536759234244989_2316234324203728715_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:27 GMT
accept-ranges: bytes
content-length: 66951
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/240421423_398715654998849_3474957272344129142_nfull.jpg
192.185.217.18200 OK 63 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/240421423_398715654998849_3474957272344129142_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash c6be14ad73e9f30842b415529369d80a
5109b9f07bea3f8cfda279a89a4be6b78fadc1e3
61517cf1a3b7dd678312a62d706294c798e38a138f7bd00164e2e3b857228b48
GET /wp-content/uploads/sb-instagram-feed-images/240421423_398715654998849_3474957272344129142_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:27 GMT
accept-ranges: bytes
content-length: 63014
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/fonts/montserrat/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq6R9WXh0oJC8MLnrtQ.woff
192.185.217.18200 OK 17 kB URL HTTP/1.1 turisteiro.com/wp-content/fonts/montserrat/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq6R9WXh0oJC8MLnrtQ.woff
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 17004, version 1.1\012- data
Hash aede992985a565032a2a0c203e58aa29
990a688c26f92a11abe8ff5f85979fd03c3e9e04
cf74a7800f933b041b806cd5177716c4a9ce5b412373481c2e987317df3586e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/montserrat/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq6R9WXh0oJC8MLnrtQ.woff HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 00:22:18 GMT
Accept-Ranges: bytes
Content-Length: 17004
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: font/woff
turisteiro.com/wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff
192.185.217.18200 OK 16 kB URL HTTP/1.1 turisteiro.com/wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 16364, version 1.1\012- data
Hash 7a442739544439a189d4f9b178c98c6b
2c06693a4729f9cac9fce202543682b9b2719c99
5f7a28913dfaf24ae02d546cda0a3e2cb28df0b83757e1bb8383baac7ed72460
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXx-p7K4GLs.woff HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 00:22:28 GMT
Accept-Ranges: bytes
Content-Length: 16364
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: font/woff
turisteiro.com/wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff
192.185.217.18200 OK 17 kB URL HTTP/1.1 turisteiro.com/wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 16556, version 1.1\012- data
Hash 204229ac29208812c364bd69a5873249
827aa06d1fb96d497ea39a9a313f0535972a0d45
1e86591b39be2da705365b6095091b6597c65de407663af7fdd93425f8bcfb2c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/fonts/montserrat/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXx-p7K4GLs.woff HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 00:22:30 GMT
Accept-Ranges: bytes
Content-Length: 16556
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: font/woff
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
192.185.217.18200 OK 13 kB URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Content-Length: 13276
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: font/woff2
turisteiro.com/wp-content/themes/destination/images/logo.png
192.185.217.18200 OK 8.8 kB URL HTTP/1.1 turisteiro.com/wp-content/themes/destination/images/logo.png
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 269 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash aba59512619150b360a65a59e4c7923e
470907f1337244c0c672473df94862ff4e14e48b
b880f1e20ebb007e7830a940f5ad259c1535b661942aa249b758b9d4882f6cd5
GET /wp-content/themes/destination/images/logo.png HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 11:54:52 GMT
Accept-Ranges: bytes
Content-Length: 8768
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/png
turisteiro.com/wp-content/uploads/2018/10/IMG_0461.jpg
192.185.217.18200 OK 117 kB URL HTTP/2 turisteiro.com/wp-content/uploads/2018/10/IMG_0461.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 811x608, components 3\012- data
Size 117 kB (117376 bytes)
Hash 362bb93caf09f2753454ee67eec416fc
c2c407e94a611c8ae4c05f7ef5399d0338cc939d
bdf676cad82c10043b1e2666c39a2da7d87a06908fd6fa3d51e517db8ebc49e7
GET /wp-content/uploads/2018/10/IMG_0461.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Oct 2018 00:19:41 GMT
accept-ranges: bytes
content-length: 117376
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/232981112_868026640803701_7109910955461208766_nfull.jpg
192.185.217.18200 OK 89 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/232981112_868026640803701_7109910955461208766_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash aa71cc459d7a99bf8c78bdf40d079bec
b24c3dcb44a506a21055884025fe86053488e1d2
548258ac3400a7167f20ae81c848d4609a39acbec382cdf8321aab4bd98daebc
GET /wp-content/uploads/sb-instagram-feed-images/232981112_868026640803701_7109910955461208766_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:30 GMT
accept-ranges: bytes
content-length: 88553
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/257809970_221179146808306_8495365482972386907_nfull.jpg
192.185.217.18200 OK 88 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/257809970_221179146808306_8495365482972386907_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash c553e6e1dcb8d16167d51698b4203210
d5b581ace90b0d52d4e1aa6f8ad9898fc1e02850
2c008152d5adfdcaff5352520f35e870781d5336be460ff98215a1c7f210c1ad
GET /wp-content/uploads/sb-instagram-feed-images/257809970_221179146808306_8495365482972386907_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:24 GMT
accept-ranges: bytes
content-length: 87454
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/243490825_269635528352075_8306672715297595926_nfull.jpg
192.185.217.18200 OK 109 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/243490825_269635528352075_8306672715297595926_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Size 109 kB (108993 bytes)
Hash 64e4c159ed09517a9f3c58680324e465
e46c74aa0b124f30f22a12806b91385512681b41
943b894e6ef7e11995d07eb0872a0b4d49fed8bb972b7d60cd56f9c29fac03f2
GET /wp-content/uploads/sb-instagram-feed-images/243490825_269635528352075_8306672715297595926_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:25 GMT
accept-ranges: bytes
content-length: 108993
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/240778795_1307199873032839_8620640934442221608_nfull.jpg
192.185.217.18200 OK 110 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/240778795_1307199873032839_8620640934442221608_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Size 110 kB (110311 bytes)
Hash 24a1350dcb5f6ff65c98b5ee20dd8ce0
2dc2454c40d8a02c2e418295c123eeb069c67e8e
e23cc0e7467cbb035207dda3903e8bd130d093a78457d3667ed0bec67822edcb
GET /wp-content/uploads/sb-instagram-feed-images/240778795_1307199873032839_8620640934442221608_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:26 GMT
accept-ranges: bytes
content-length: 110311
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/234355345_554996305628371_1495213730005962797_nfull.jpg
192.185.217.18200 OK 96 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/234355345_554996305628371_1495213730005962797_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash 0e78b409650ced6220c1f0e41c232433
707e138e2a21cf425721ff96100084a89d6d0626
b7ba8b17cddc0330b632ffa1906d39b346cfce1bbab962ceaed64c81e5d89d07
GET /wp-content/uploads/sb-instagram-feed-images/234355345_554996305628371_1495213730005962797_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:29 GMT
accept-ranges: bytes
content-length: 95833
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/237139715_1253556095098615_6774639801526375501_nfull.jpg
192.185.217.18200 OK 102 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/237139715_1253556095098615_6774639801526375501_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Size 102 kB (102418 bytes)
Hash f8220dae3cd3e4d7a81e6dd53c1cdbfd
bf41f892fac08440897b068d3cd85d0331f56a3e
cb47833e7ed8070e931302a19045066d51acc4f78685ae52a64e8300acbf97c6
GET /wp-content/uploads/sb-instagram-feed-images/237139715_1253556095098615_6774639801526375501_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:29 GMT
accept-ranges: bytes
content-length: 102418
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/236610561_1559861751042764_6439337400510306851_nfull.jpg
192.185.217.18200 OK 98 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/236610561_1559861751042764_6439337400510306851_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Hash aa17ef998e001dcb777cb01628588d3b
6a4d95ebcd981e663b1e4976715efa9f025b6514
92eef59975422ba51463f1d8a869a8ed44791415a66719dc3b776de907ccd9ed
GET /wp-content/uploads/sb-instagram-feed-images/236610561_1559861751042764_6439337400510306851_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:28 GMT
accept-ranges: bytes
content-length: 98348
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/262854978_612475746739321_6239682930757995887_nfull.jpg
192.185.217.18200 OK 118 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/262854978_612475746739321_6239682930757995887_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x800, components 3\012- data
Size 118 kB (118479 bytes)
Hash 263407a9943ccd679256da4756d7190d
fe08a58eb1e38d0d4c7a85b9b71264dac74142f1
17e8821c9c61ff23ea4fe1056bbb6865ea39bd7c939ed2479e9553ee883602a4
GET /wp-content/uploads/sb-instagram-feed-images/262854978_612475746739321_6239682930757995887_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:23 GMT
accept-ranges: bytes
content-length: 118479
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/sb-instagram-feed-images/243345425_4393064010806765_1205084000801111571_nfull.jpg
192.185.217.18200 OK 123 kB URL HTTP/2 turisteiro.com/wp-content/uploads/sb-instagram-feed-images/243345425_4393064010806765_1205084000801111571_nfull.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 640x640, components 3\012- data
Size 123 kB (122555 bytes)
Hash d333f18923523424720e23e96b90a8c0
bcc430a4be94e248b5e35ad8d1b800a6f4c8d870
e585298270cd6201006fe1ad0a6d74b24a9adbf986f236ab8b8ac50ac98cfe20
GET /wp-content/uploads/sb-instagram-feed-images/243345425_4393064010806765_1205084000801111571_nfull.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:47:26 GMT
accept-ranges: bytes
content-length: 122555
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/2018/10/uber_salario.jpg
192.185.217.18200 OK 194 kB URL HTTP/2 turisteiro.com/wp-content/uploads/2018/10/uber_salario.jpg
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 780x520, components 3\012- data
Size 194 kB (194358 bytes)
Hash 43f45c6b315bb08a331c5e5535242c7f
21bf9a07780d59648475b80711259b578544907b
0b74d4dec9d0ea2d1a95ef7f14e5d830d4ab6299ac2f5a9c237d7675d1c6eb20
GET /wp-content/uploads/2018/10/uber_salario.jpg HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Oct 2018 00:34:55 GMT
accept-ranges: bytes
content-length: 194358
content-type: image/jpeg
date: Mon, 26 Sep 2022 09:17:15 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/2018/04/cropped-turisteiro-icone-192x192.png
192.185.217.18200 OK 41 kB URL HTTP/2 turisteiro.com/wp-content/uploads/2018/04/cropped-turisteiro-icone-192x192.png
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 9b284d5d78aadeb5bc551c2ba82cae6b
fca28e54632abc39075f3e48737ded0303bde49d
5be07ff5871d84c7e7186bf49014958c169b6aab0ae89062c92960ae1de0876e
GET /wp-content/uploads/2018/04/cropped-turisteiro-icone-192x192.png HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Jan 2019 18:03:41 GMT
accept-ranges: bytes
content-length: 40953
content-type: image/png
date: Mon, 26 Sep 2022 09:17:16 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-content/uploads/2018/04/cropped-turisteiro-icone-32x32.png
192.185.217.18200 OK 2.7 kB URL HTTP/2 turisteiro.com/wp-content/uploads/2018/04/cropped-turisteiro-icone-32x32.png
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash c56d0b74593e287f6c76519f18fe95c3
70804be2b3a6c214d9afab7d76880a49b9cd22f1
e8cc16eb383568bf5090cab915834fee0b38d4fe02d469553aeefde63bcea35d
GET /wp-content/uploads/2018/04/cropped-turisteiro-icone-32x32.png HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Jan 2019 18:03:41 GMT
accept-ranges: bytes
content-length: 2719
content-type: image/png
date: Mon, 26 Sep 2022 09:17:16 GMT
server: Apache
X-Firefox-Spdy: h2
1.gravatar.com/avatar/41c8cfaf12f75197062e77ab4fcd874b?s=300&d=mm&r=g
192.0.73.2200 OK 21 kB URL HTTP/1.1 1.gravatar.com/avatar/41c8cfaf12f75197062e77ab4fcd874b?s=300&d=mm&r=g
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash b30e4c63006bc23ab88433a9b0dec9b3
26083f88507f293f2a4d6cd694542a496259ccfc
5e08a4e61f7d4111031e0f0fcc166663b74355ed7b6b48b68a4b2ed5ae598375
GET /avatar/41c8cfaf12f75197062e77ab4fcd874b?s=300&d=mm&r=g HTTP/1.1
Host: 1.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 09:17:16 GMT
Content-Type: image/jpeg
Content-Length: 20895
Connection: keep-alive
Last-Modified: Wed, 16 Apr 2014 00:03:14 GMT
Link: <https://www.gravatar.com/avatar/41c8cfaf12f75197062e77ab4fcd874b?s=300&d=mm&r=g>; rel="canonical"
Content-Disposition: inline; filename="41c8cfaf12f75197062e77ab4fcd874b.jpeg"
Access-Control-Allow-Origin: *
Expires: Mon, 26 Sep 2022 09:22:16 GMT
Cache-Control: max-age=300
X-nc: MISS arn 4
Accept-Ranges: bytes
turisteiro.com/wp-json/cleantalk-antispam/v1/js_keys__get
192.185.217.18200 OK 156 B URL HTTP/2 turisteiro.com/wp-json/cleantalk-antispam/v1/js_keys__get
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with no line terminators
Hash fc226b60e9c08c089bc10114bf1c4354
ea3faec39b68cb4c5a76902e06717a6ffb887bf0
b6b4c50ce5016d2578a46a411216d652b28f29358afb39777aaa1b7d29bde26a
Analyzer Verdict Alert fortinet Malware
OPTIONS /wp-json/cleantalk-antispam/v1/js_keys__get HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-wp-nonce
Referer: http://turisteiro.com/
Origin: http://turisteiro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-robots-tag: noindex
link: <https://turisteiro.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: POST
access-control-allow-origin: http://turisteiro.com
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
vary: Origin,Accept-Encoding
set-cookie: apbct_timestamp=1664183836; path=/; secure; HttpOnly; SameSite=Lax
apbct_prev_referer=http%3A%2F%2Fturisteiro.com%2F; path=/; secure; HttpOnly; SameSite=Lax
apbct_site_landing_ts=1664183836; path=/; secure; HttpOnly; SameSite=Lax
apbct_page_hits=1; path=/; secure; HttpOnly; SameSite=Lax
apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%25228e99b4e95fe6bc293bcdfa541835283c%2522%257D; path=/; secure; HttpOnly; SameSite=Lax
apbct_urls=%7B%22turisteiro.com%2Fwp-json%2Fcleantalk-antispam%2Fv1%2Fjs_keys__get%22%3A%5B1664183836%5D%7D; expires=Thu, 29-Sep-2022 09:17:16 GMT; Max-Age=259200; path=/; domain=turisteiro.com; secure; HttpOnly; SameSite=Lax
apbct_site_referer=http%3A%2F%2Fturisteiro.com%2F; expires=Thu, 29-Sep-2022 09:17:16 GMT; Max-Age=259200; path=/; domain=turisteiro.com; secure; HttpOnly; SameSite=Lax
content-encoding: gzip
content-length: 156
content-type: application/json; charset=UTF-8
date: Mon, 26 Sep 2022 09:17:16 GMT
server: Apache
X-Firefox-Spdy: h2
turisteiro.com/wp-json/cleantalk-antispam/v1/js_keys__get
192.185.217.18200 OK 41 B URL HTTP/2 turisteiro.com/wp-json/cleantalk-antispam/v1/js_keys__get
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JSON data\012- , ASCII text, with no line terminators
Hash 767ff23f1ffca8770cf8534d05aa6b13
31c4d354881c7a555c8c8d38521bf4d5699b48c1
dca66550b527c4debb3159a8ce4d398da223f078746f4587b412c4708613bcc3
Analyzer Verdict Alert fortinet Malware
POST /wp-json/cleantalk-antispam/v1/js_keys__get HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-WP-Nonce: a9593feefa
Origin: http://turisteiro.com
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
x-robots-tag: noindex
link: <https://turisteiro.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
x-wp-nonce: a9593feefa
set-cookie: apbct_timestamp=1664183837; path=/; secure; HttpOnly; SameSite=Lax
apbct_prev_referer=http%3A%2F%2Fturisteiro.com%2F; path=/; secure; HttpOnly; SameSite=Lax
apbct_site_landing_ts=1664183837; path=/; secure; HttpOnly; SameSite=Lax
apbct_page_hits=1; path=/; secure; HttpOnly; SameSite=Lax
apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522f1d33610f45e0d4c5b4590a6c4384e8b%2522%257D; path=/; secure; HttpOnly; SameSite=Lax
apbct_urls=%7B%22turisteiro.com%2Fwp-json%2Fcleantalk-antispam%2Fv1%2Fjs_keys__get%22%3A%5B1664183837%5D%7D; expires=Thu, 29-Sep-2022 09:17:17 GMT; Max-Age=259200; path=/; domain=turisteiro.com; secure; HttpOnly; SameSite=Lax
apbct_site_referer=http%3A%2F%2Fturisteiro.com%2F; expires=Thu, 29-Sep-2022 09:17:17 GMT; Max-Age=259200; path=/; domain=turisteiro.com; secure; HttpOnly; SameSite=Lax
vary: Accept-Encoding
content-encoding: gzip
content-length: 41
content-type: application/json; charset=UTF-8
date: Mon, 26 Sep 2022 09:17:16 GMT
server: Apache
X-Firefox-Spdy: h2
www.segurospromo.com.br/site/banner/turisteiro/21/
35.199.118.124200 OK 0 B URL HTTP/2 www.segurospromo.com.br/site/banner/turisteiro/21/
IP 35.199.118.124:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /site/banner/turisteiro/21/ HTTP/1.1
Host: www.segurospromo.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://turisteiro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 09:17:15 GMT
content-type: image/jpg
X-Firefox-Spdy: h2
turisteiro.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.6.4
192.185.217.18200 OK 0 B URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.6.4
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.6.4 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://turisteiro.com/como-usar-o-uber-em-foz-do-iguacu/
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Thu, 17 Mar 2022 20:51:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1437
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: application/javascript
turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
192.185.217.18200 OK 0 B URL HTTP/1.1 turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 192.185.217.18:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: turisteiro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://turisteiro.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.7.7
Cookie: apbct_timestamp=1664183834; apbct_site_landing_ts=1664183834; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522b5ae2e8c055392ba50e23e0e8e9e5904%2522%257D; apbct_urls=%7B%22turisteiro.com%2Fcomo-usar-o-uber-em-foz-do-iguacu%2F%22%3A%5B1664183834%5D%7D; apbct_site_referer=UNKNOWN; ct_sfw_pass_key=ea4d6fd304d5741f0fe3356246ee51910
HTTP/1.1 200 OK
Date: Mon, 26 Sep 2022 09:17:16 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 22:46:16 GMT
Accept-Ranges: bytes
Content-Length: 76764
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: font/woff2