firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 050bfd0155f265780e88dabcdde8b147
93ff7f46889322c0e9dbd3f4695e4c6a7fefe08f
9f3db0b3c51195b5313122d984f5f5f62b2df0f1d818eafefaa8b73e15914038
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Alert, Retry-After, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 24 Oct 2022 18:53:01 GMT
Expires: Mon, 24 Oct 2022 19:05:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lcDfIHj2-e-IhC5jXlYpcloGACYYVkAzaSzYDvZe07hcP15chdaTkA==
Age: 1213
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73c4166ca864f777db2cc1cd8658a7c2
c56b66b0b7c8516d4d5bfafe0c166711c78f3d25
310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11365
Expires: Mon, 24 Oct 2022 22:22:39 GMT
Date: Mon, 24 Oct 2022 19:13:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ae56efd62a0d9249d98573172eb8b28b
5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28
82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7712
Expires: Mon, 24 Oct 2022 21:21:47 GMT
Date: Mon, 24 Oct 2022 19:13:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pwLlBNiIDjH59pC0shdR5cRkwbSd8QRYmQ+9sR8TAQ+aXYPSBMLQAPDdJJIzICvcxT75pzFV02Q=
x-amz-request-id: KH57JK5P3BP10EW7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 24 Oct 2022 18:38:29 GMT
age: 2086
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 19:13:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fcmais.com.br/
162.241.61.239301 Moved Permanently 0 B IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 24 Oct 2022 19:13:12 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://fcmais.com.br/
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 24 Oct 2022 18:33:32 GMT
Expires: Mon, 24 Oct 2022 18:56:29 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: k2NUCWW3XvV1-_NzCsCx_9KGyGyemlqxp1s8eSvO8LBZ0ipiGlAXOg==
Age: 2383
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b7116efdc71fb2c6dd7801bc969b6339
8fdfbab944be6d4f5532f3a20824b354965e806b
d9ff5cc9b7a83b1ca417832a07ec57353b551f5f81688e9ccf0b4bddf69f8d58
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9FF5CC9B7A83B1CA417832A07EC57353B551F5F81688E9CCF0B4BDDF69F8D58"
Last-Modified: Sat, 22 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21542
Expires: Tue, 25 Oct 2022 01:12:17 GMT
Date: Mon, 24 Oct 2022 19:13:15 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7c6fdc8e76ef5875b5c965ade2df503e
45d548aa2a9d7ede163743274790700878eaea62
d2ff6eacd48af4892a2642e5d7bb925ca683062139f5a5cb4047f6f706830618
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6033
Cache-Control: max-age=138843
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:15 GMT
Etag: "63564795-1d7"
Expires: Wed, 26 Oct 2022 09:47:18 GMT
Last-Modified: Mon, 24 Oct 2022 08:06:45 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.237.163.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.163.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: D4/dAsp8q086JbNN8vX7cA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MXMz+9a48Yr5G3rIhjiQR1tQxCA=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4c236f4ca13cd8fafc580bceb0995642
b6a7de7a8d994ed2cfb5ac74b6d7703de515ecdb
671228953eba5b2678df03acebb493e411752c6f5f72ff7f1e485032241d4aeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 1ea30e37b7f86b7d0a7cb7341087fdc1
2e88a09e17356724c7e0f488d70be82ebc64f55c
bb85d7fbaf1d4c0dc0a7cd27aebc8f21f942bf703896186a765131c80c87f059
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 1ea30e37b7f86b7d0a7cb7341087fdc1
2e88a09e17356724c7e0f488d70be82ebc64f55c
bb85d7fbaf1d4c0dc0a7cd27aebc8f21f942bf703896186a765131c80c87f059
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-203719055-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-203719055-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash 7fae0b0f4f9ad0ea446a1875c52ecf2d
72f3cf83b16796d200e54733e540b6b8cdcb2585
dea098ce484cce49c8f70d1277f83ffdae2fce674b3d21662b52a5676492b016
GET /gtag/js?id=UA-203719055-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 24 Oct 2022 19:13:16 GMT
expires: Mon, 24 Oct 2022 19:13:16 GMT
cache-control: private, max-age=900
last-modified: Mon, 24 Oct 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43587
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-205144873-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-205144873-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash 76287a3e8d54a117ef0cf46d8d1236b5
8702ce801c6aa99ca74db9b0dbfbccf9fa91424f
a1d88d8437a4e0ef88f4d3aa12b94dfec63e2db1477527976284712418b5d095
GET /gtag/js?id=UA-205144873-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 24 Oct 2022 19:13:16 GMT
expires: Mon, 24 Oct 2022 19:13:16 GMT
cache-control: private, max-age=900
last-modified: Mon, 24 Oct 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43591
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSource+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CUbuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNoto+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
142.250.74.10200 OK 4.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSource+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CUbuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNoto+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3
IP 142.250.74.10:0
Hash 57755c29dcf2d2e0fb3535d44d7952b4
115dac112c631559ccbd16f6eaf8f8c9aa7d6891
617f95589a1024a36bc606edd0f153ac35a70e04c67b1afb420c6e09b8c24d6c
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CSource+Sans+Pro%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CUbuntu%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNoto+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 24 Oct 2022 19:13:16 GMT
date: Mon, 24 Oct 2022 19:13:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4c236f4ca13cd8fafc580bceb0995642
b6a7de7a8d994ed2cfb5ac74b6d7703de515ecdb
671228953eba5b2678df03acebb493e411752c6f5f72ff7f1e485032241d4aeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fcmais.com.br/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.4
162.241.61.239200 OK 782 B URL HTTP/2 fcmais.com.br/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.4
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash bc978157811185b1f05b3f43a37ca31e
129cedb631abbfbdbbdf23b87ad24498dcf0bca4
973f5716338817d3840e3bf6730c716fa1865ade79f6a765ea77f1f56e40d3a5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.4 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 23 Oct 2022 21:04:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 782
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
162.241.61.239200 OK 323 B URL HTTP/2 fcmais.com.br/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash b24c24b7da3ffeed6ae8ade102a4d317
c4445b3977ce704b927508108e100213eea67a3c
5421ad49b70f379553eaceec744d753e74d4b065966c08aa7c7dd949553ca9a8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Aug 2022 00:29:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 323
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.3
162.241.61.239200 OK 986 B URL HTTP/2 fcmais.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash af8993893cf0e8840cfa07c28152f7d7
020642adb362f41142e612a4aed05f187cc6fbe0
a76fed90a602ac9bc687d6889a8dac2bd929437f84af088f257a3559543841cc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 12:13:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 986
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/elementor/css/post-5.css?ver=1666008596
162.241.61.239200 OK 705 B URL HTTP/2 fcmais.com.br/wp-content/uploads/elementor/css/post-5.css?ver=1666008596
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2036), with no line terminators
Hash a9ba7bdcf412e6d54965d248c294f89a
b525d0f116389d1b1c5e4150bbb17ff080516fc3
4de4a5b5e3a7b738dddfca64c677856665044ec6737c6bed4605828743f74eb1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-5.css?ver=1666008596 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 12:09:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 705
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.3
162.241.61.239200 OK 8.5 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 7973e77b98802c0ea2d4016644d1f06c
3859b417c6bef2db0058724fad81e5df2166fe27
148eeddc5b558d00af2517b77f689158b9dea1a6bf52e6e8cd9ece6e0cf0cca9
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 12:13:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8481
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.2
162.241.61.239200 OK 1.8 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.2
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11362)
Hash f9c6b609b32a5a032291a3a69ee69414
9252d8ec71b35eda7b6870a7af4db7c09d581296
6041c5f0e6549b12659ddeaa89cfaeecf851e1047acd9750ad85c84e8ddf296a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.2 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Jun 2022 01:39:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1839
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
162.241.61.239200 OK 4.0 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19233)
Hash 2701214b028ad24fa347df8335b36d12
156bc8a7ad2657f00881890637f07c6052636499
9a6e62615ceeec7a9763e4f9614e4715d04fd87873b23db2b3ead06c996cad27
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4008
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
162.241.61.239200 OK 17 kB URL HTTP/2 fcmais.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Jul 2022 12:10:37 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16594
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
162.241.61.239200 OK 308 B URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (491)
Hash 851fd514d412b7e854365f20a4227c8a
08bf47072f70af1816450cc85a5efb3b8f9114d2
a9449e3cc7c003e5ed6b93bae7b0bba3e4f1713c52214f41d3591692a759b9d7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/elementor/css/post-318.css?ver=1666008597
162.241.61.239200 OK 3.4 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/elementor/css/post-318.css?ver=1666008597
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (20900), with no line terminators
Hash 95a701c64735aa7243a198efc24eadaa
db64d54350db5c619fe477fd760da5078aeee3be
a93c59cbe075e68ca5aea459f455332ec78241a8b11f86e232ab68a0df9206ea
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-318.css?ver=1666008597 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 12:09:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3371
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
162.241.61.239200 OK 308 B URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (489)
Hash 0a08469d24387f830bbaaa00b3c228ae
01f5dfeb8f93a32c9a8f66fe5940758109771fcd
3c7c29e5fc1193ff7ce24f72f77b2dc129e1a9434a97ef7b625f6f715531803c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 308
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
162.241.61.239200 OK 309 B URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
162.241.61.239200 OK 2.3 kB URL HTTP/2 fcmais.com.br/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6051), with no line terminators
Hash c0a774e614f840a7f380a9aa68f16ac3
d42d9e9c586feba86b3accaf869ca2a365469b54
294b8486de91d8403977d27d636c158fe64ed0c93ce11902ed2f2b10f31d113f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 19:01:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2332
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
162.241.61.239200 OK 3.7 kB URL HTTP/2 fcmais.com.br/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15672), with no line terminators
Hash 607799bfa5d48117a95cd9dda8a17c2b
9a969f06c70600b753b160db19a5d37c9d249d10
78f67e192604e0dca624c2dcc8ea7cd6c54e14fe15918e7c9586ec1a22775876
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 19:01:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3725
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.4
162.241.61.239200 OK 1.9 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.4
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6e5f89bd8a4df07524ba6c6239a56e0c
b861d11b9897ea05a206eb3481b82dd3f885de20
95438bfd71801aadd66418a017d427b8357559c622758d8d39b3bf1d5ebaa09a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.4 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 23 Oct 2022 21:04:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1910
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/02.png
162.241.61.239200 OK 10 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/02.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGB, non-interlaced\012- data
Hash 5fe0d8bd6529a175bf2a0d42d1de4bb4
81f0f1fca38e81025c622d6295aedaee48bccd82
efc91007cc5deb72add6bf22e47e80f3183cf161768263876009fc0a62893470
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/02.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:42 GMT
accept-ranges: bytes
content-length: 10243
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/01.png
162.241.61.239200 OK 19 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/01.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d03c0e0f9c01b43b8d83dd24b2a1c5e
42addfa3ab19c3e10591a139b59e2229d898e5ad
e3cafd4a099280527e99e3e9732812417b219b0c576a591bca41f4b5441094a1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/01.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:42 GMT
accept-ranges: bytes
content-length: 18755
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
162.241.61.239200 OK 1.7 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11736)
Hash 123f8b37abef34d50d796ace35e35f09
127f09c18b566bf5379bd37c7572301a5ed6f0ef
0c12c27eb88912b938c2b844a23b5157a7b3424b9e79cd91782aa7bf201389d1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1651
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/elementor/css/global.css?ver=1666008604
162.241.61.239200 OK 4.8 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/elementor/css/global.css?ver=1666008604
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12186)
Hash 0e64b31a5a2a698654a4f223eda3313a
af37c1316395e1c6436e9d31f27cb45dc0e7eff4
e1b441fb32cc8d5d036c71179e8779abd151c9cc4b50fdaa304060ccb3c05e22
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/elementor/css/global.css?ver=1666008604 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 12:10:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4808
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e83087af3acdb6c424603aba588a61ea
e15a0e74570657bc3e96e82c233dfffd44b779a7
d625a773ab93a98967984968e5a03599e912c515c13eaa20c4054bafc5666e20
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D625A773AB93A98967984968E5A03599E912C515C13EAA20C4054BAFC5666E20"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5291
Expires: Mon, 24 Oct 2022 20:41:28 GMT
Date: Mon, 24 Oct 2022 19:13:17 GMT
Connection: keep-alive
png.pngtree.com/png-vector/20200407/ourlarge/pngtree-online-store-apps-illustration-png-image_2176907.jpg
104.18.3.157200 OK 68 kB URL HTTP/2 png.pngtree.com/png-vector/20200407/ourlarge/pngtree-online-store-apps-illustration-png-image_2176907.jpg
IP 104.18.3.157:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data
Hash 173fbd9c15a3b8da9f48bd80aef6b710
195991b6ad3c92feb444ba41fb282bbd0569aa9d
5f4eda6f33a54152071ee95d25edb129e1ae5a6d158f241817c27ccfc9efc9ed
GET /png-vector/20200407/ourlarge/pngtree-online-store-apps-illustration-png-image_2176907.jpg HTTP/1.1
Host: png.pngtree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 19:13:17 GMT
content-type: image/jpg
content-length: 68245
cache-control: public, max-age=16070400
cf-bgj: h2pri
etag: "173fbd9c15a3b8da9f48bd80aef6b710"
last-modified: Wed, 12 Aug 2020 18:04:01 GMT
x-amz-id-2: cxdTiyIR33QRdCf947Y68twOiPgGW5mtHSlNfcPu6CIi2ekCoJP+MnOxrs4+f0bbaCc6FknvYhE=
x-amz-request-id: QXJPKDS2YKFAWAPF
cf-cache-status: HIT
expires: Fri, 28 Apr 2023 19:13:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75f5075fc80ab4ee-OSL
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.3
162.241.61.239200 OK 11 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 68f31f156fec9521abc5d50798a55dc4
c7d367dacd71e2bddd30350391370db876bbbbc3
f0b996f22ccaed017e0617619ca0e130ee87a482ad4e042398900a41f32f4f7d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 12:13:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10776
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
162.241.61.239200 OK 12 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash e56098a703c5beb99abc9c3a870be594
76e54634e0628ab91310c760d619360151e26be1
0eb4438e57550f2c2a321d45a5cb1c92fb22d58f6dbcc9c189fc3bd1e4f78b8f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Aug 2022 00:29:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11654
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/08/John-Roger-1.png
162.241.61.239200 OK 4.7 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/08/John-Roger-1.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash 1df8ba9e99aa55e66c8db5aaa378f3b8
62be7098d899028eb28eb89f362cc460a788add8
209d7da61a2320f8012dc8dd6bfa10a2311c6103c426524eb8d71ebc120b3204
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/John-Roger-1.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 15:01:46 GMT
accept-ranges: bytes
content-length: 4700
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/08/Edu-1.png
162.241.61.239200 OK 11 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/08/Edu-1.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash 81a352731f946d9cbe16cab603ad3e71
e5e6d2d80a29826043c940698037308279f6eeb0
c042049e6234fed961b70f318b94dfb67776eb3ba59cbb576041fa3dea160193
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/Edu-1.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 15:01:45 GMT
accept-ranges: bytes
content-length: 10746
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2021/07/pngegg-7-300x300.png
162.241.61.239200 OK 29 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2021/07/pngegg-7-300x300.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash adf611de8dc90e654a09fc9cd3c95d78
3892ce978006c5c9a5c3602a2f91b572fe3462cd
a4035f3f80f083bd359e105b1a1fc25a6a6e542bb90eaf5f951cc140cd5e0b33
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/07/pngegg-7-300x300.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Jul 2021 17:03:06 GMT
accept-ranges: bytes
content-length: 29341
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/03.png
162.241.61.239200 OK 48 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/03.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash d671a9d3233f189017043d79006cc428
c110a7622e2ca0beabd7e9c5286eb19636fadf53
55784b9ac3a96355083d5e47d314d24f2a52208633e376b2de7d0b032688beca
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/03.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:43 GMT
accept-ranges: bytes
content-length: 48074
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/elementor/css/post-237.css?ver=1666008597
162.241.61.239200 OK 1.7 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/elementor/css/post-237.css?ver=1666008597
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5085)
Hash 1dab8aa1a2b759e68b3e29fc960d768f
006db5a25ce227309524d01a98ed72cc3804f002
a0090a7ad01a774c2873eaa863ed090b0fdac13828cc0b1d17592a435042c92b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-237.css?ver=1666008597 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 12:09:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1656
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.241.61.239200 OK 4.6 kB URL HTTP/2 fcmais.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
162.241.61.239200 OK 13 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (57726)
Hash dc63c0a8e2d5857cc7a00a4b5456dabb
ee29df5eb2a4bf3eb805b160551c1afd84b42599
035ef40b1dd3df1eefb2dd3c8c2096425727fb939b06f3aa0bc6ef91dafd5441
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12577
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
162.241.61.239200 OK 5.3 kB URL HTTP/2 fcmais.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
162.241.61.239200 OK 15 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5b415d22e2c0b0f88815568080ca0f8f
90424fe17ee64e02ea0370b9345a51ff721582ec
e79188f496e6d6e5343028d357396b0c4ad699a0f882e863b0f39b0cdea1bf9d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/elementor/css/post-504.css?ver=1666385866 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 21 Oct 2022 20:57:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 15304
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
162.241.61.239200 OK 4.7 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (29344)
Hash c5fa709ff261abd702b90d9dea344b0a
de9c5cb1e5a67650fba29e0f0625a45287d7f98d
bd1eee5c36e1601c86d441b505b95616e21dd315503eaadd3e660159f7f72f86
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Jun 2022 01:39:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4696
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8363
Expires: Mon, 24 Oct 2022 21:32:40 GMT
Date: Mon, 24 Oct 2022 19:13:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8363
Expires: Mon, 24 Oct 2022 21:32:40 GMT
Date: Mon, 24 Oct 2022 19:13:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8363
Expires: Mon, 24 Oct 2022 21:32:40 GMT
Date: Mon, 24 Oct 2022 19:13:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8363
Expires: Mon, 24 Oct 2022 21:32:40 GMT
Date: Mon, 24 Oct 2022 19:13:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 772-513, spot sensor temperature 0.000000, unit celsius, color scheme 1, calibration: offset 0.000000, slope 241254190455726276608.000000\012- data
Hash 88436497b6fe5e22155afc45e9e8fe3e
5004575548d76d878a7f27bb3fc4a9a10e8f6909
304c2388dd96c82582d490cd473174b11eac53bf408a29ed78e23d77139ef243
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13962
x-amzn-requestid: 84f8b505-da9d-421c-b00a-3d6407aac332
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDQETqoAMFwxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b547-566c7abb12b09a565be85833;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N-R8_VOQSIhikiT-qqPi0ABMoZnr234hdcdinyzBath9A8M6aUZ37A==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:54:05 GMT
age: 76752
etag: "5004575548d76d878a7f27bb3fc4a9a10e8f6909"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F869ea046-6a24-4b66-a52f-bc9a678d7ebb.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F869ea046-6a24-4b66-a52f-bc9a678d7ebb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f174281da48e4a62aab93bcdc57d14a
8ee29d073b84530a30bb370838598115f1a65da8
0096edb7703f0bcea7e5c0d5b529482eceea9123f5f3b278f3f9012f87875f1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F869ea046-6a24-4b66-a52f-bc9a678d7ebb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8400
x-amzn-requestid: b1436934-5b97-4aa8-937a-78bce0b9181c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelN4GACoAMFYmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b58b-29da495d75578b3c20eb37ba;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:39 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EmusO-_70hMOdHGlmVAeiZI8nFPDJuJEsxtzTB4-j_8NDsIqwPVk_Q==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:54:06 GMT
age: 76751
etag: "8ee29d073b84530a30bb370838598115f1a65da8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5168c9-3f97-43d9-a9b4-3b0f415b3bc0.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5168c9-3f97-43d9-a9b4-3b0f415b3bc0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9983bdfe8dbe8386970aae586bb57575
4c5ff521fec700a1cda73325eebbeb88f97baa39
775d510a8d82ed993085e3d828c33b75eee99db2911b90d6151faf5c2e25b5d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5168c9-3f97-43d9-a9b4-3b0f415b3bc0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9894
x-amzn-requestid: 8d639b03-49d2-411b-b0ca-39c5dafe21f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelOtF6YIAMF-4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b591-230070a06848d4d90ea4f6ef;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mYzFAcyUErnaOlGBX0ygFYZ4608EanLq5V4xzX7qCHQRGzkKwwWvHw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:14:18 GMT
age: 75539
etag: "4c5ff521fec700a1cda73325eebbeb88f97baa39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af3d4b4d16ad8b30805be96afa6472e3
bceb257123711c43994e5a03e9caf22eeee16423
30d7fea8d87522ce3ba2abf2c47e0025af1b7c05d6b4ea9f26aaa1f06aff4a67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10072
x-amzn-requestid: 2f26fcdb-0540-49ea-be46-83c00182fcc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0FKvoAMFVFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-1be524647e3db4a211e4c4ff;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 28s2Fwd7CYJpmy57dsIok6owygvyqng_WwlfbKApRjznSlULtnSJqw==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:56:12 GMT
age: 76625
etag: "bceb257123711c43994e5a03e9caf22eeee16423"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9b1a13676d3fac304595806959135a2
9c16b23d37594b041cf8678399e6eaeb690346a9
7bc8f67670709caae6b39435fdaa3e5c71b9b30db76c006cc2c841300291a246
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9568
x-amzn-requestid: 0a162a3c-1723-4926-8651-7d22ecade080
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelN4EVKoAMFWnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b58b-10dae6262d730d1f12c50a20;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e6PyqYG1xwBqFI9Xgbwto7aYrv_0Mu4OKyRfuLUFWberMEF00Qo5QA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:46:36 GMT
age: 77201
etag: "9c16b23d37594b041cf8678399e6eaeb690346a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.241.61.239200 OK 44 kB URL HTTP/2 fcmais.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 587609b797dcd63245f369917bfa4ed4
cbb0ecfc217111449ae95f2d5ba53eab1d454651
31beb209a3ef0202228924b3fe7b3cac78ab40a3ff66d504b04a3f3a0193f47a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/08/Liquido.png
162.241.61.239200 OK 4.1 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/08/Liquido.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash 6603930bc9c79391aaf83a3bffdcd58e
6b5e82a9bafa69a0d491129ca3c5d984acdf0892
ec32e011233ffbe3ab5958fcba0fd5a3ca6604c0912d7be00752a3097ebe3589
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/Liquido.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 14:57:55 GMT
accept-ranges: bytes
content-length: 4121
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/08/Texas-Road.png
162.241.61.239200 OK 4.9 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/08/Texas-Road.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash 7af9d3be6f20acc16aa79a8f6c09359c
25ec2f165dcfc6047e3fe20c8aa8eede5964632c
8d96069daddd19fbc7363dab9c58f4326fe1dbc1cb864672800be39bd1cb13d4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/Texas-Road.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 14:57:56 GMT
accept-ranges: bytes
content-length: 4892
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/08/customer-review-satisfaction-feedback-survey-concept-2-300x169.jpg
162.241.61.239200 OK 9.7 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/08/customer-review-satisfaction-feedback-survey-concept-2-300x169.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 300x169, components 3\012- data
Hash 0e7dd9a32c138c51718ac9baf6d50371
05e2c375ecb696e22d2bcb49d248189265733e20
5eb4a0e52bc78d85d2ed8a88e7fa585709d4324976249c6a5c3aa206d53f17e9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/customer-review-satisfaction-feedback-survey-concept-2-300x169.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 20:25:48 GMT
accept-ranges: bytes
content-length: 9709
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/07.png
162.241.61.239200 OK 18 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/07.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash b77c4fb4ff31df174ab06e07fd863625
b88edc3f826cf9a95bab6eeb59329a7fcb163a2b
cabeda760ec0bbabaec5f55b8ae4928d21dd247e0d0539100dadd920763d00c7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/07.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:46 GMT
accept-ranges: bytes
content-length: 18516
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/04.png
162.241.61.239200 OK 21 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/04.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash e1f2e74f4ac49d70384626454ce8c949
baa7f0cb939139206d16a6d7c1bf5baa13cb0537
92bf6d9a0dab95a9fbd98ef0418c8b750cf4b2fc125d19c099f36a90b9d0fcfa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/04.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:44 GMT
accept-ranges: bytes
content-length: 21399
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/05.png
162.241.61.239200 OK 23 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/05.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash f9f0fd352d8f74d5901ee75c4aeaec86
ca7a5f9eae760ed474cfc919030a7f6b7b651d5c
71c881b762a0e217da0a1333798fd3f21e264d3a3aac368e627813753bafd83c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/05.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:44 GMT
accept-ranges: bytes
content-length: 23105
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/09.png
162.241.61.239200 OK 31 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/09.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash bc31dd51b5b1cc43bdb16e6ac567aa74
c5b7f7bdb93e4943954240a025afc311fda713a8
d87c95c68e722f885db6726adbd3aef0b9b9f3c36768228f80f5a75e59b4bfff
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/09.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:47 GMT
accept-ranges: bytes
content-length: 30586
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/08.png
162.241.61.239200 OK 35 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/08.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash 7eade131b13b526addb183374a5306ad
7bc9a963630692141834bd25446af3ef009ca382
9f998724f64b4b42dcb85b349efc860e96316ad90c0d346e232f0e03481850fa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/08.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:46 GMT
accept-ranges: bytes
content-length: 34950
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/10.png
162.241.61.239200 OK 36 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/10.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash c917422e01e602090a5d85800f0736ed
6b87dbd775ac775fa1fc89bbcbfb40b3a9518589
7d2276da2f50b4cfd185a017b33e29e8a917ceea8e7ab9705a0ebbc7b293c5a9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/10.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:47 GMT
accept-ranges: bytes
content-length: 35682
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/06.png
162.241.61.239200 OK 69 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/06.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash d4d581dc7bb19ef2e98d23da37ccf8f6
5b54555df1290beada94786bc00a8060b8db1159
ac32d5f180384f55ac3016fadf8c2fe5ee0aaf003699be45b05324d10698cef6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/06.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 14:38:45 GMT
accept-ranges: bytes
content-length: 68884
content-type: image/png
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/08/3627634-300x200.jpg
162.241.61.239200 OK 14 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/08/3627634-300x200.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 300x200, components 3\012- data
Hash 1fa29d3e54d924fb651c4782bc74cf04
1179178823806094cee7c897359b0573651d4261
28979aefab92d9828c0440b233e309b720777dbdb59c431726aa8f13e6fb828f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/3627634-300x200.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Aug 2022 20:58:19 GMT
accept-ranges: bytes
content-length: 13776
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.2
162.241.61.239200 OK 7.5 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.2
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21164)
Hash b143d57552a1033062b36814012c8f1d
897132b22b41fc8853ee5dee57d32c38cbe6892e
aca6748e9d2150ae71aacc2ac730f66c849459b222ce08f14d4a0a3bb8ef5608
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.2 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Jun 2022 01:39:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7508
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.241.61.239200 OK 3.7 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3747
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/
162.241.61.239200 OK 46 kB IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 786073e42e76cfd0fb7375c789bcb9a8
2cb63e6bd1b5fcdb821dde6becd4349b2cb3f1ea
f34c2c40c252193690f4b8e5f7c7433685ff68d4dcfdb7aa638d1750ebda6be2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://fcmais.com.br/wp-json/>; rel="https://api.w.org/", <https://fcmais.com.br/wp-json/wp/v2/pages/504>; rel="alternate"; type="application/json", <https://fcmais.com.br/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Mon, 24 Oct 2022 19:13:13 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
162.241.61.239200 OK 1.7 kB URL HTTP/2 fcmais.com.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4875)
Hash 6a452794a68bc140a53b30519b94edf6
68046f5611ba3cf5da1c46087609aff18f59fdc1
259990a9e6191a72a51ac9d038d0c52bb56d880a2b0d460b1fca3f3fee7961ed
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1712
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
162.241.61.239200 OK 8.3 kB URL HTTP/2 fcmais.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash e49f0561a452c9d04fb7d1510a23cc8c
9e8fc2e3129da4fe2790eee565a6478b864bea83
ab4f9f418b022ab34d617ee2f95d70afff005ed4d4d92e313ce84a56b40bce75
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8254
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8
162.241.61.239200 OK 3.0 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10019)
Hash c2b5af6052f630a96e450e5e2a3cea52
00ca76a8828a1bbec1534eb10786804fd36492f2
58f6cc2d4fa3e528622102975fb62949dc0170bd47b588a67318d18552a57d59
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.8 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2997
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
162.241.61.239200 OK 2.3 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4918)
Hash a8a064f7e05640436a939b0839c64a66
e9bbdd085a3038acd63d108accba8dfb5499f4c0
2173daddf76795f8194c34463bfc5c9be793aecc545b4672ed5a6f9afcb473c3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2313
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
162.241.61.239200 OK 1.0 kB URL HTTP/2 fcmais.com.br/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3164), with no line terminators
Hash b61faf78df8ff0e5446c7fe2b070b144
d98140a3225bbade0a77d7d6001e65148a7ec6b8
3bb0086b96f0d58dc01f13c3d0055c3fe41a4e79e2d1461641ada355763c77c2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 19:01:03 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1048
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.2
162.241.61.239200 OK 2.4 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.2
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (5141)
Hash 3411cbc32c50541a656bbf9301ff5b8e
8836e8166a9deb7769d45fafab614b98d41799fb
4fe0653e85f8865db1ce3385927be8d5e037556d33571ffdce2823c636967a41
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.2 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Jun 2022 01:39:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2448
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/anwp-post-grid-for-elementor/public/js/plugin.min.js?ver=0.9.1
162.241.61.239200 OK 3.0 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/anwp-post-grid-for-elementor/public/js/plugin.min.js?ver=0.9.1
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10014), with no line terminators
Hash 630e44b1b5ed24ca6a2fa84bd3131f09
8738a016fc9c1bb7194c2f022459909a505e9221
63df2c43a8efe1b17af4f0523246f04560832105e89503091b340de52c85aaf3
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/anwp-post-grid-for-elementor/public/js/plugin.min.js?ver=0.9.1 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 12:09:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3004
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
162.241.61.239200 OK 16 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (40474)
Hash eb7e2c1cbf83cab4aa6a7fef0dd47eb2
774647abb91ffaee699a8047c9d2fd8a65daff35
bdb3c3194100984be02d52864d7ade76025aa5c3028133d27d947ffb2a75b1e7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16151
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
162.241.61.239200 OK 8.2 kB URL HTTP/2 fcmais.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8169
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
162.241.61.239200 OK 2.7 kB URL HTTP/2 fcmais.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2675
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
162.241.61.239200 OK 4.2 kB URL HTTP/2 fcmais.com.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash a72df5f7a597c541e18a33abef3c11f5
9500913a0a3fca9979a0aed9cb745926d9f86f83
258da631753c1d8d88fb1316024b671fa4a9ac87c9d6c4f38a45bc2c3bf9f3fc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 15:12:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4234
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.3
162.241.61.239200 OK 2.1 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.3
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (401)
Hash 1946fa94d19bd69c8edd1ec6d873a6d4
214e5376828aa6b147a95e3b63b29097d5639342
6d3214f741ac53c54b4b0d4eaa6e70a07d820dde9095da674ad8f2bc2a00b401
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.3 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Oct 2022 12:13:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2063
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
162.241.61.239200 OK 9.6 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (25115)
Hash e99001fb08857cb6e0a1688b290f924f
d8f9fcd3ccdcfe0b20ed3d408a48e8e32930c3a9
e5727ab5ba79eabd8400fd8941413d844a55642198770193780558cd2afdfab0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Jun 2022 01:39:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9638
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
162.241.61.239200 OK 13 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash a3a9966edbcf4ff24cbce6355e84c975
4c31a0c1e12987b364c178689b8283d09e4f8a63
d50d738abb2b285ac79c3552d286706f3a99e60add08edad08f20b2d4adbdb8d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13281
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/web-agency-bg-4.jpg
162.241.61.239200 OK 134 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/web-agency-bg-4.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:05:11 14:14:09], progressive, precision 8, 2550x1700, components 3\012- data
Size 134 kB (133977 bytes)
Hash c0c397f7167938d10238604da8d45ab4
7806a78f7c88219b772432f89ec88e2b14fde54f
ec4349cd53948ce90acd9930598737dddddd6b63d859357de61091da8a26ad45
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/web-agency-bg-4.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:21:59 GMT
accept-ranges: bytes
content-length: 133977
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/line.png
162.241.61.239200 OK 14 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/line.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 28 x 214, 8-bit/color RGBA, non-interlaced\012- data
Hash 73a87b5cc92110ae857178a51fee5087
7f53a1ea47ef6bb89425db20ad6605c72915fcaa
888634786913333d679ed7d1579795da081d9a167f25b72af52c11462b630aba
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/line.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:23:02 GMT
accept-ranges: bytes
content-length: 13453
content-type: image/png
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/web-agency-bg-overlay.png
162.241.61.239200 OK 52 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/web-agency-bg-overlay.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 2500 x 1667, 8-bit/color RGBA, non-interlaced\012- data
Hash 22e8237d5c7de564fa67abc309bb3f68
6286f5dcaa21397c9ae23e22dd5f48a812739bbf
99048b44ea75a3a0a435d374a42f27bc69494b1022d415eff062144d47352085
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/web-agency-bg-overlay.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:22:50 GMT
accept-ranges: bytes
content-length: 52536
content-type: image/png
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/mixkit-woman-lying-on-a-couch-looking-at-her-mobile-phone-65-original-large.jpg
162.241.61.239200 OK 70 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/mixkit-woman-lying-on-a-couch-looking-at-her-mobile-phone-65-original-large.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1243x700, components 3\012- data
Hash bbbe12aba52407e3497a58f994b95c0f
e707ea4e8725fe8fd45f83092e267d57dd3abe04
4fed31c6b3ede3a6c0d3a30777f835df0a4e74db503a06bf45b9f445d7d31603
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/mixkit-woman-lying-on-a-couch-looking-at-her-mobile-phone-65-original-large.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:22:44 GMT
accept-ranges: bytes
content-length: 69805
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kindpng.com/picc/m/596-5966220_google-ads-income-accelerator-program-cartoon-hd-png.png
173.208.200.108200 OK 75 kB URL HTTP/1.1 www.kindpng.com/picc/m/596-5966220_google-ads-income-accelerator-program-cartoon-hd-png.png
IP 173.208.200.108:0
File type PNG image data, 860 x 729, 8-bit/color RGBA, non-interlaced\012- data
Hash d87717ad27cc03fc96be06360c907232
5530f63f49e7be9f2b746dc7a6814f56e5fc1f08
658e38f3d3a1b81ec8b3ae0cd6bd8960f3a9f8605bc45ece35b60bc3c59b62ec
GET /picc/m/596-5966220_google-ads-income-accelerator-program-cartoon-hd-png.png HTTP/1.1
Host: www.kindpng.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0
Date: Mon, 24 Oct 2022 19:13:17 GMT
Content-Type: image/png
Last-Modified: Sun, 09 Feb 2020 02:51:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5e3f73bd-12f2a"
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb9238eaa63063c98563a1961fbbfefa
9b23eea87129d9516b8e7527cce7b8b1efcfa1fe
ff87d571f813dd558347df32a52e27ebb6c66968a6d2e584e6b6467944ef40fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb9238eaa63063c98563a1961fbbfefa
9b23eea87129d9516b8e7527cce7b8b1efcfa1fe
ff87d571f813dd558347df32a52e27ebb6c66968a6d2e584e6b6467944ef40fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fcmais.com.br/wp-content/plugins/anwp-post-grid-for-elementor/public/css/styles.min.css?ver=0.9.1
162.241.61.239200 OK 28 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/anwp-post-grid-for-elementor/public/css/styles.min.css?ver=0.9.1
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e7fb7c5a6e0d3643950fb7712bd705cb
07d2bac8c76214befbc6962e81d313c203219798
1cbdf3d8d6161b0113b4a3efbcb976d4b588d0377c203fb5901b9afcdac2d9ae
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/anwp-post-grid-for-elementor/public/css/styles.min.css?ver=0.9.1 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 12:09:47 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:26:57 GMT
expires: Thu, 19 Oct 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 431180
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 430749
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjOhBVZNyB.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjOhBVZNyB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13116, version 1.0\012- data
Hash 91f34623f20a8cb6ef3ce549213b9693
4216b9e82639c1ddfb283f667547623677647fa0
09d7a52512bc7dccc149e0d126aadd413152c43376848cf0141faec29d79cd85
GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjOhBVZNyB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:55:10 GMT
expires: Tue, 17 Oct 2023 21:55:10 GMT
cache-control: public, max-age=31536000
age: 595087
last-modified: Mon, 09 May 2022 18:27:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12580, version 1.0\012- data
Hash eaf55d1d3b7c4a30203d2d5226c49b6d
11b63b740965603ef544f261ef036d24e6bb1fb5
e286a9ef7d2064a4cf7026449941a557c7123aa84ef2a17cf79a38820f5474bc
GET /s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:28:18 GMT
expires: Thu, 19 Oct 2023 19:28:18 GMT
cache-control: public, max-age=31536000
age: 431099
last-modified: Wed, 27 Apr 2022 16:19:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjZhNVZNyB.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjZhNVZNyB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 13192, version 1.0\012- data
Hash 007544c0a5c7ee5684f7046d6528163e
82bbce0bf227390803ea62bb448b2c7b47574539
3bc3079e83886ae242550fa369be1a9a6c63d9586424c6f1967b31a35f51d73b
GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjZhNVZNyB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13192
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 15:13:10 GMT
expires: Wed, 18 Oct 2023 15:13:10 GMT
cache-control: public, max-age=31536000
age: 532807
last-modified: Mon, 09 May 2022 18:28:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 430749
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data
Hash ab21c24efd75543e16e34807ebc6cdec
eb2562f9729079333fbcbbe94868695669dd3301
88f00438d26021a325247c4427898f7c778a22976df9f1a9d9876429778bf265
GET /s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:03:13 GMT
expires: Tue, 17 Oct 2023 21:03:13 GMT
cache-control: public, max-age=31536000
age: 598204
last-modified: Mon, 09 May 2022 18:27:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
216.58.207.195200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 29752, version 1.0\012- data
Hash ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 07:00:19 GMT
expires: Fri, 20 Oct 2023 07:00:19 GMT
cache-control: public, max-age=31536000
age: 389578
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12408, version 1.0\012- data
Hash 6e30c013adbc4eba0b94d5431119ea87
9d2a987240fc5b46a3135e8836ee435c5feff333
080e18a8c761c3d30b7ec08aa65f87109a0228367eafd0a12fcefda58d10e8ad
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 23:36:45 GMT
expires: Sat, 21 Oct 2023 23:36:45 GMT
cache-control: public, max-age=31536000
age: 243392
last-modified: Wed, 27 Apr 2022 16:54:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12684, version 1.0\012- data
Hash 0c235386bcf6af06f67e6c89fd19e434
10720574d4609322023984a761f32f9518c07bc4
c1c30918a861cb6a985ab55d54ad7e861682354197f164cb3b7194f20eed67ac
GET /s/notosans/v27/o-0NIpQlx3QUlC5A4PNjXhFVZNyB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:03:15 GMT
expires: Tue, 17 Oct 2023 21:03:15 GMT
cache-control: public, max-age=31536000
age: 598202
last-modified: Mon, 09 May 2022 18:28:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fcmais.com.br/wp-content/uploads/2022/04/web-agency-bg1.jpg
162.241.61.239200 OK 165 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/web-agency-bg1.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:05:11 13:36:57], progressive, precision 8, 2500x1667, components 3\012- data
Size 165 kB (164606 bytes)
Hash 87ac90c18e7aae982e00972be121c52e
9c3aa09726c6e58b56c120a6d06b4f2e426480cb
cfee2f8be5d6140f5e42ccb2e1e7b378a1231b046bd3bb843d10b9c72efbc696
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/web-agency-bg1.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:22:21 GMT
accept-ranges: bytes
content-length: 164606
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/baixa-02.jpg
162.241.61.239200 OK 189 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/baixa-02.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 189 kB (189051 bytes)
Hash cf9a6cc5f7e3e5592c94a00976d82ad0
f907769032a1eb0654fcc6054916327ddecbe6b0
8501a35eb7c49674de5968cf0121c85669378e849565e1b9735d4073e68510ab
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/baixa-02.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 13 Apr 2022 22:02:17 GMT
accept-ranges: bytes
content-length: 189051
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/2764.svg
192.0.77.48200 OK 368 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/2764.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (368), with no line terminators
Hash 0483f2b648dcc986d01385062052ae1c
61bd815f1497863265a76d92623042835e5e7fe2
09a743ee0c32ca57c9be64b13b29c396310d1dd309cb4d7d3be722e47db95f27
GET /images/core/emoji/14.0.0/svg/2764.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 19:13:17 GMT
content-type: image/svg+xml
content-length: 368
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/app-onboarding-walkthrough-screens-y19.jpg
162.241.61.239200 OK 278 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/app-onboarding-walkthrough-screens-y19.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x600, components 3\012- data
Size 278 kB (278405 bytes)
Hash ce34d9e5dbe2e2a3bedb7e6fb789c777
7136fee0fcf8de022bbfb59df6eb3c85a4dc7fa7
7f6efa9cfafde1e7d9eaf7230ddae58d616d393c4f2dd551d67407fb403cf745
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/app-onboarding-walkthrough-screens-y19.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:22:45 GMT
accept-ranges: bytes
content-length: 278405
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/08/Jemily_PIRANHA-ACRILICA-BORBOLETA.png
162.241.61.239200 OK 1.3 MB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/08/Jemily_PIRANHA-ACRILICA-BORBOLETA.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1080 x 1080, 8-bit/color RGB, non-interlaced\012- data
Size 1.3 MB (1340642 bytes)
Hash bf4a9762685ace91983ca6d24df798fa
4838c8d9d98fa93c606f5c48e60d7a1fc3bad20a
277fd0f280c838079e5bedc3569533d854cf73f24ac09f90419f29a879d31964
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/Jemily_PIRANHA-ACRILICA-BORBOLETA.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 11 Aug 2022 13:42:59 GMT
accept-ranges: bytes
content-length: 1340642
content-type: image/png
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
162.241.61.239200 OK 13 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
content-length: 13276
content-type: font/woff2
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
lojaliquido.vteximg.com.br/arquivos/ids/284881/003_BOX_DESTAQUE_moda_fitness.jpg?v=637843306938630000
54.230.111.48200 OK 40 kB URL HTTP/2 lojaliquido.vteximg.com.br/arquivos/ids/284881/003_BOX_DESTAQUE_moda_fitness.jpg?v=637843306938630000
IP 54.230.111.48:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 843x857, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4c49d4745e023987c8b5bc044e8541b0
edd4185ea744955cccb2fa6007b74a3ec3cf7fec
da1de1f72a8b9d179a0523b0bba8a9ad8820ffde0f725e5f53f7b050c5eb41c8
GET /arquivos/ids/284881/003_BOX_DESTAQUE_moda_fitness.jpg?v=637843306938630000 HTTP/1.1
Host: lojaliquido.vteximg.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 40046
access-control-allow-origin: *
cache-control: public, max-age=345600
date: Mon, 24 Oct 2022 19:13:17 GMT
last-modified: Thu, 31 Mar 2022 13:38:21 GMT
x-powered-by-vtex-cache: 2.3.0
x-vtex-cache-server: apicache16
x-vtex-cache-status-janus-apicache: HIT
x-vtex-cache-time: 0.000
x-vtex-janus-router-backend-app: prtarq-v1.42.5
x-vtex-processed-at: Tue, 13 Sep 2022 19:13:35 GMT
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: aThTEAjk-bvojDQV56sESdJmKfkDG6e-oXNTpkcMgZM2b28L875Unw==
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
162.241.61.239200 OK 77 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
content-length: 76764
content-type: font/woff2
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
162.241.61.239200 OK 78 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
content-length: 78196
content-type: font/woff2
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2021/07/Poppins-Regular.ttf
162.241.61.239200 OK 158 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2021/07/Poppins-Regular.ttf
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 13 tables, 1st "GDEF", 17 names, Microsoft, language 0x409, Copyright 2020 The Poppins Project Authors (https://github.com/itfoundry/Poppins)PoppinsRegularI\012- data
Size 158 kB (158192 bytes)
Hash 8b6af8e5e8324edfd77af8b3b35d7f9c
01d319c533f62ea29f03b5df8adfd4d93d2d2a38
78f127277756ae464f4eb665ce214cb6315746f6f4193e95b31f18f4b3e97527
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2021/07/Poppins-Regular.ttf HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Jul 2021 01:43:11 GMT
accept-ranges: bytes
content-length: 158192
content-type: font/ttf
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/malvestida-magazine-458582-unsplash.png
162.241.61.239200 OK 78 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/malvestida-magazine-458582-unsplash.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 360 x 240, 8-bit/color RGB, non-interlaced\012- data
Hash cdd8c5e4eaef8bea5deecabf2e68e222
e69825d72c5f84dcb127a3f2a11ca4afd0013cfb
6831d1d382c931356b7fcca24738153a0ecfc5114c56b90f019138365aedd2d0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/malvestida-magazine-458582-unsplash.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:22:20 GMT
accept-ranges: bytes
content-length: 78144
content-type: image/png
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/mixkit-man-sitting-in-front-of-a-fire-reading-from-a-66-original-large.jpg
162.241.61.239200 OK 95 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/mixkit-man-sitting-in-front-of-a-fire-reading-from-a-66-original-large.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1245x700, components 3\012- data
Hash f7cb6c1cbca42fcfa2dfb5c180fb64b4
d9eb5aa1f56194efbf555acf177c1532e69372e4
8408c3edeeb2ad14589d77e25e49915b49b49980e5ef3dfe78e8011f9d0a7395
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/mixkit-man-sitting-in-front-of-a-fire-reading-from-a-66-original-large.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:22:48 GMT
accept-ranges: bytes
content-length: 95038
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
png.pngtree.com/png-clipart/20190919/ourlarge/pngtree-thumb-like-social-illustration-png-image_1739722.jpg
104.18.3.157200 OK 66 kB URL HTTP/2 png.pngtree.com/png-clipart/20190919/ourlarge/pngtree-thumb-like-social-illustration-png-image_1739722.jpg
IP 104.18.3.157:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 640x640, components 3\012- data
Hash b21e9558a0f10fb9a33dfb1a58439a7e
0b4bbe62c9d2ede49b603aa7d54182abe33e61c2
6c64f712eca08d1ce844972b15d5b765b734f2b54e413bbad7e5d05b08e18d2d
GET /png-clipart/20190919/ourlarge/pngtree-thumb-like-social-illustration-png-image_1739722.jpg HTTP/1.1
Host: png.pngtree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 19:13:18 GMT
content-type: image/jpeg
content-length: 66248
x-amz-id-2: 4G08Vtw87Es0rdbFH93KdABiLBW5Dt6h7JgGNUYQYU7YWUnzHsDFWUjamELl+ehgQo94e9aozmo=
x-amz-request-id: 4GEHCCB4JP90J4CF
last-modified: Thu, 19 Sep 2019 05:00:38 GMT
etag: "b21e9558a0f10fb9a33dfb1a58439a7e"
cache-control: public, max-age=16070400
cf-cache-status: MISS
expires: Fri, 28 Apr 2023 19:13:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75f5075fc80fb4ee-OSL
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2021/07/Montserrat-Regular.ttf
162.241.61.239200 OK 246 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2021/07/Montserrat-Regular.ttf
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr\012- data
Size 246 kB (245708 bytes)
Hash ee6539921d713482b8ccd4d0d23961bb
d25b35242deb1c6ff888b8162ca2aacc356d3899
077cdab15161232a9ba7124d2ddd7a9425145750788e9a966c156cc66274f525
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2021/07/Montserrat-Regular.ttf HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-237.css?ver=1666008597
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Jul 2021 01:43:53 GMT
accept-ranges: bytes
content-length: 245708
content-type: font/ttf
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/08/IMG_1900-scaled.jpg
162.241.61.239200 OK 702 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/08/IMG_1900-scaled.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, manufacturer=Canon, model=Canon EOS 70D, software=Adobe Lightroom 6.1.0 (Android), datetime=2015:04:15 02:13:07], baseline, precision 8, 2560x1440, components 3\012- data
Size 702 kB (702488 bytes)
Hash eba496d0a24858fe4e0f9ca9fb1ef54d
e8905a3fd753c7c34b89c262fe9d7bd52169a99f
854f6be985f3116edc8f33a84efb9a49712ef3597e9973c9ff7c235ccba5a8a7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/IMG_1900-scaled.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/uploads/elementor/css/post-504.css?ver=1666385866
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 11 Aug 2022 13:46:57 GMT
accept-ranges: bytes
content-length: 702488
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2021/07/LOGO-FCmais-AVATAR-150x150.png
162.241.61.239200 OK 7.5 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2021/07/LOGO-FCmais-AVATAR-150x150.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 89f8f8cfb42c206e92f3c92ba3ced705
2fb8b6189971f4bce23608ccc485712973f79aff
609c2bf559e7118128451a0793c6c850ee4feed0c84879ed2128d00939fd5529
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/07/LOGO-FCmais-AVATAR-150x150.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Jul 2021 19:54:48 GMT
accept-ranges: bytes
content-length: 7539
content-type: image/png
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2022/04/mixkit-person-wearing-a-vr-mask-in-a-virtual-reality-room-64-original-large-1024x577.jpg
162.241.61.239200 OK 54 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2022/04/mixkit-person-wearing-a-vr-mask-in-a-virtual-reality-room-64-original-large-1024x577.jpg
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x577, components 3\012- data
Hash b16880b0134366c81afc5e244db711e8
7c01e44b78efc9ed9dfb3285ce5c26d3c714f6a2
4a9f2b04488e82dcd02264b1561ac3729ef740182170d2e49a9b64cda00e4ef7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/04/mixkit-person-wearing-a-vr-mask-in-a-virtual-reality-room-64-original-large-1024x577.jpg HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 04 Apr 2022 22:22:20 GMT
accept-ranges: bytes
content-length: 54052
content-type: image/jpeg
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 532c69907860001600f22997c518feba
0fc410a7a4d994496820b0dd124b8b211579a35b
f5897efa4359cc67606b368dbc5b5ba61420bf20dce5a1060ea57f9cea34971c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=87865
Date: Mon, 24 Oct 2022 19:13:18 GMT
Etag: "63558593-1d7"
Expires: Tue, 25 Oct 2022 19:37:43 GMT
Last-Modified: Sun, 23 Oct 2022 18:18:59 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EIok4QBiZP1MVC7FZgsvEOkoFgm3Cp8QwpMLJIkWJeMMdSyTbzEpGg==
Age: 4724
fcmais.com.br/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
162.241.61.239200 OK 1.4 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3262)
Hash d60e875c4eb115f85774141c4fa57967
d3c9b1e9e2f630f3e5bb31e047782234f71fa840
d9489998a8243416fcc7556f32bdc5641713a913fdb60d142320320fe9bf8702
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _ga_RZ9SH33WZ4=GS1.1.1666638796.1.0.1666638796.0.0.0; _ga=GA1.1.285109015.1666638797
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Jun 2022 01:39:10 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1408
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
162.241.61.239200 OK 671 B URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1320)
Hash 5ccb71a38d381c56ef048a0608f55dcc
c19eef8a9e0a40b3d1b01d0bf6868762316db311
b0f9cf59a8daca1c19fb220bdaba817c5745c2565bfcbcadf8f5d2b8e2962022
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _ga_RZ9SH33WZ4=GS1.1.1666638796.1.0.1666638796.0.0.0; _ga=GA1.1.285109015.1666638797
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 671
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
estechead.com.br/wp-content/uploads/2016/08/vector-watercolor-effects-camera-png-clipart_937998.png
50.116.86.74200 OK 1.6 MB URL HTTP/1.1 estechead.com.br/wp-content/uploads/2016/08/vector-watercolor-effects-camera-png-clipart_937998.png
IP 50.116.86.74:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1200 x 910, 8-bit/color RGBA, non-interlaced\012- data
Size 1.6 MB (1557582 bytes)
Hash 45000f9d2146756ce1ffe784536e065b
2b8e4579180d8f630c9051c980d457a535607d6f
71145b04534a8dc0a4b1d5d04875f9fe508e11268f3706b78d624c3549560795
GET /wp-content/uploads/2016/08/vector-watercolor-effects-camera-png-clipart_937998.png HTTP/1.1
Host: estechead.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 24 Oct 2022 19:13:17 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 31 May 2019 18:29:11 GMT
Accept-Ranges: bytes
Content-Length: 1557582
Keep-Alive: timeout=5, max=75
Content-Type: image/png
fcmais.com.br/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js
162.241.61.239200 OK 1.3 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2738)
Hash ccac23ee321b604f44a5f280bde7cb85
8def3216e6cbb9d911fd47451de2ea374da86ff8
2c6f3015735cfe29bf48acf9cfa1586d7bb3462a7bcc84741662c30b1bee0f58
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _ga_RZ9SH33WZ4=GS1.1.1666638796.1.0.1666638796.0.0.0; _ga=GA1.1.285109015.1666638797
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1272
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
png.pngtree.com/png-vector/20191011/ourlarge/pngtree-web-page-design-templates-for-tasks-completed-concepts-for-website-and-png-image_1815452.jpg
104.18.3.157200 OK 82 kB URL HTTP/2 png.pngtree.com/png-vector/20191011/ourlarge/pngtree-web-page-design-templates-for-tasks-completed-concepts-for-website-and-png-image_1815452.jpg
IP 104.18.3.157:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5, description=Web page design templates for Tasks Completed. Concepts for website and mobile app development. Modern style vector illustratio, xresolution=204, yresolution=212, resolutionunit=2], progressive, precision 8, 640x640, components 3\012- data
Hash f563fce03ae30f3fb4e4ec6d90b039f4
0d4af1e3f19516cd3821caaa5a445849f84a177e
4919a5067cc01292ab1fbd26ab439f9ba943113993d055cb6b1f29cefebfb4f2
GET /png-vector/20191011/ourlarge/pngtree-web-page-design-templates-for-tasks-completed-concepts-for-website-and-png-image_1815452.jpg HTTP/1.1
Host: png.pngtree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 19:13:18 GMT
content-type: image/jpeg
content-length: 82267
x-amz-id-2: RsjomuqZ1ZUrxDWo3bqrGGKnOClUym2FEKLmo4biLSECKTwQ/f+KZXto0SGN/74pvUWazSqAUyw=
x-amz-request-id: 4GEX3JDA37J8RCTX
last-modified: Sat, 01 Feb 2020 06:48:35 GMT
etag: "f563fce03ae30f3fb4e4ec6d90b039f4"
cache-control: public, max-age=16070400
cf-cache-status: MISS
expires: Fri, 28 Apr 2023 19:13:17 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75f5075fc809b4ee-OSL
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
162.241.61.239200 OK 93 kB URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://fcmais.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _ga_RZ9SH33WZ4=GS1.1.1666638796.1.0.1666638796.0.0.0; _ga=GA1.1.285109015.1666638797
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
content-length: 93372
content-type: font/woff2
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 03d42e3245268a9d8f602cacf5a4404e
59b42c91ab2ec67086f549de3d47d45560b91fc7
6e88b2d135f33b12b5c8e244ea0ba75dc6acef16aeb0069a87141e49dd4b7ec9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 24 Oct 2022 18:41:09 GMT
expires: Mon, 24 Oct 2022 20:41:09 GMT
cache-control: public, max-age=7200
age: 1929
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c27e3c5c6d295dadcbe3de1db8e502a1
9445a0ccc587564b26bdabb2242435810e40b561
3feef44db56d609290b4bf648573edcef9a597ded596a936d6af96d4e91b3401
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4329
Cache-Control: max-age=132489
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Etag: "6356356e-1d7"
Expires: Wed, 26 Oct 2022 08:01:27 GMT
Last-Modified: Mon, 24 Oct 2022 06:49:18 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4521527102219447
142.250.74.98200 OK 55 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4521527102219447
IP 142.250.74.98:0
File type ASCII text, with very long lines (2776)
Hash c6d8841ca92940435d529f355e153aea
5720fff50976fc1b68f8d25d90125ae8aaee6ea5
5c2ff6f8bbef53b8c67d840c647d5d7f87d2ba3ffbd21492ed2252a539145e76
GET /pagead/js/adsbygoogle.js?client=ca-pub-4521527102219447 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 24 Oct 2022 19:13:18 GMT
expires: Mon, 24 Oct 2022 19:13:18 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 13781925525585529095
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 55250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c27e3c5c6d295dadcbe3de1db8e502a1
9445a0ccc587564b26bdabb2242435810e40b561
3feef44db56d609290b4bf648573edcef9a597ded596a936d6af96d4e91b3401
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4329
Cache-Control: max-age=132489
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Etag: "6356356e-1d7"
Expires: Wed, 26 Oct 2022 08:01:27 GMT
Last-Modified: Mon, 24 Oct 2022 06:49:18 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
fcmais.com.br/wp-content/uploads/2021/07/cropped-LOGO-FCmais-AVATAR-e1626379058851-1-150x150.png
162.241.61.239200 OK 10 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2021/07/cropped-LOGO-FCmais-AVATAR-e1626379058851-1-150x150.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 9024c86c09d73576e4cc99d71cc905cc
a212efe79361d3d5ccc4ee2c15c40f355660bf41
32bb75c7b350d87fa8703755d9359c200051056229b8431936a5700e4e49b7f4
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/07/cropped-LOGO-FCmais-AVATAR-e1626379058851-1-150x150.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _ga_RZ9SH33WZ4=GS1.1.1666638796.1.0.1666638796.0.0.0; _ga=GA1.1.285109015.1666638797
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Jul 2021 20:13:17 GMT
accept-ranges: bytes
content-length: 10465
content-type: image/png
date: Mon, 24 Oct 2022 19:13:16 GMT
server: Apache
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/uploads/2021/07/cropped-LOGO-FCmais-AVATAR-e1626379058851-1.png
162.241.61.239200 OK 16 kB URL HTTP/2 fcmais.com.br/wp-content/uploads/2021/07/cropped-LOGO-FCmais-AVATAR-e1626379058851-1.png
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 259 x 234, 8-bit/color RGBA, non-interlaced\012- data
Hash a12c98e26109ad212e9cf84bb9156bf1
98d489b1fa0cc995c4d2a74d35544be1b165bc48
9c1460a3b029185096dd19fa58df843c24b1ce19b497356e5440b40bc3da244b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/07/cropped-LOGO-FCmais-AVATAR-e1626379058851-1.png HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _ga_RZ9SH33WZ4=GS1.1.1666638796.1.0.1666638796.0.0.0; _ga=GA1.1.285109015.1666638797
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Jul 2021 20:13:17 GMT
accept-ranges: bytes
content-length: 16311
content-type: image/png
date: Mon, 24 Oct 2022 19:13:16 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 03d42e3245268a9d8f602cacf5a4404e
59b42c91ab2ec67086f549de3d47d45560b91fc7
6e88b2d135f33b12b5c8e244ea0ba75dc6acef16aeb0069a87141e49dd4b7ec9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-RZ9SH33WZ4>m=2oeaj0&_p=1272521285&gdid=dZTNiMT&cid=285109015.1666638797&ul=en-us&sr=1280x1024&_s=1&sid=1666638796&sct=1&seg=0&dl=https%3A%2F%2Ffcmais.com.br%2F&dt=FC%2B%20%E2%80%93%20Mais%20F%C3%A1cil%20para%20Crescer%20e%20Vender&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-RZ9SH33WZ4>m=2oeaj0&_p=1272521285&gdid=dZTNiMT&cid=285109015.1666638797&ul=en-us&sr=1280x1024&_s=1&sid=1666638796&sct=1&seg=0&dl=https%3A%2F%2Ffcmais.com.br%2F&dt=FC%2B%20%E2%80%93%20Mais%20F%C3%A1cil%20para%20Crescer%20e%20Vender&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-RZ9SH33WZ4>m=2oeaj0&_p=1272521285&gdid=dZTNiMT&cid=285109015.1666638797&ul=en-us&sr=1280x1024&_s=1&sid=1666638796&sct=1&seg=0&dl=https%3A%2F%2Ffcmais.com.br%2F&dt=FC%2B%20%E2%80%93%20Mais%20F%C3%A1cil%20para%20Crescer%20e%20Vender&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://fcmais.com.br
date: Mon, 24 Oct 2022 19:13:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20221019/r20190131/zrt_lookup.html
142.250.74.162200 OK 4.3 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221019/r20190131/zrt_lookup.html
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash bcacf311c477be41ad2c041711518f98
2035e85b614733ed4c63ee2dbc8bfb2e845b30ca
4ec30b6910bacb2cfb6ed162c3e5d95c6f54a19ffef55018730777bf094d1b92
GET /pagead/html/r20221019/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4270
x-xss-protection: 0
date: Mon, 24 Oct 2022 12:19:46 GMT
expires: Mon, 07 Nov 2022 12:19:46 GMT
cache-control: public, max-age=1209600
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
age: 24812
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&gjid=564311962&_gid=1402296932.1666638797&_u=YCDACUAABAAAACAAI~&z=1116563866
173.194.222.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&gjid=564311962&_gid=1402296932.1666638797&_u=YCDACUAABAAAACAAI~&z=1116563866
IP 173.194.222.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&gjid=564311962&_gid=1402296932.1666638797&_u=YCDACUAABAAAACAAI~&z=1116563866 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://fcmais.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 24 Oct 2022 19:13:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-209209598-1&cid=285109015.1666638797&jid=442908128&gjid=564256161&_gid=1402296932.1666638797&_u=YCDACUABBAAAACAAI~&z=404754521
173.194.222.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-209209598-1&cid=285109015.1666638797&jid=442908128&gjid=564256161&_gid=1402296932.1666638797&_u=YCDACUABBAAAACAAI~&z=404754521
IP 173.194.222.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-209209598-1&cid=285109015.1666638797&jid=442908128&gjid=564256161&_gid=1402296932.1666638797&_u=YCDACUABBAAAACAAI~&z=404754521 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://fcmais.com.br
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 24 Oct 2022 19:13:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash c560beed39cecb5417cb24d408e854bd
8128cbbdbb9357227cff89cf4a0825d62e1821cd
a116fd57470c119c471df4fa54525043cddf2cd4d1c91eaf450155a2293d26f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4db1e2a30c82c0ccc424718f6d5656e1
a7b34cd14cb1b934ebcfdcd635e0c09b36824331
5cd5426ef1b527f81e060510b8684313acf5aba276fe41a592011d86b8d92e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&_u=YCDACUAABAAAACAAI~&z=1287967681
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&_u=YCDACUAABAAAACAAI~&z=1287967681
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&_u=YCDACUAABAAAACAAI~&z=1287967681 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 24 Oct 2022 19:13:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&_u=YCDACUAABAAAACAAI~&z=1287967681
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&_u=YCDACUAABAAAACAAI~&z=1287967681
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-203719055-1&cid=285109015.1666638797&jid=739659998&_u=YCDACUAABAAAACAAI~&z=1287967681 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 24 Oct 2022 19:13:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7dbe328751574db3465bc8c4f745a487
661ca1463bea33b14bec8f6669dacb2f1ffb78c1
95b3e76c084b00b1d5ca6e02551a48d645b0eae239313b46cfb3468d62b08193
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=fcmais.com.br
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=fcmais.com.br
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=fcmais.com.br HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 24 Oct 2022 19:13:18 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7dbe328751574db3465bc8c4f745a487
661ca1463bea33b14bec8f6669dacb2f1ffb78c1
95b3e76c084b00b1d5ca6e02551a48d645b0eae239313b46cfb3468d62b08193
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=fcmais.com.br
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=fcmais.com.br
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=fcmais.com.br HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 24 Oct 2022 19:13:18 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash afe612730e70afff2504f8e9ce4dadea
a62af125a0b32c9bd4c415e902dfb650dba273ee
fc3424c011e26f3431130b282aac3ecb142774dda00593e2bf1e29b133436ebd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 5ce788cdd348a769704a7f874b5a2474
4a4dfb44c394a90c5f56af273be8e0924535b8a5
a6ccf1a057148266591bc317c4f8225d00cd81880c559db08f824012f0c397d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=fcmais.com.br&callback=_gfp_s_&client=ca-pub-4521527102219447&gpid_exp=1
172.217.21.162200 OK 250 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=fcmais.com.br&callback=_gfp_s_&client=ca-pub-4521527102219447&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (393), with no line terminators
Hash ca314942053153cb434413cb7c45ce8c
029fcd2db310e76dcf5873c2338bbe36f4756ef8
527448b526a58b3cd0c2c4fa69b8da37b78d1af46a36008b2bcfa92c1c41fc66
GET /gampad/cookie.js?domain=fcmais.com.br&callback=_gfp_s_&client=ca-pub-4521527102219447&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 24 Oct 2022 19:13:18 GMT
server: cafe
cache-control: private
content-length: 250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 86 kB IP 142.250.74.35:0
File type gzip compressed data, from Unix\012- data
Hash acd755afa8ca0aebd93a48b017613cdd
e01aa63ff534a31f095f97acbaed75da9759beb9
47e4dc7025262a8d40004e260220d639799f1746e68023ce122cd661000a5ac9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=315091307078894&ev=PageView&dl=https%3A%2F%2Ffcmais.com.br%2F&rl=&if=false&ts=1666638797575&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.2.1666638797574.19728670&it=1666638797261&coo=false&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=315091307078894&ev=PageView&dl=https%3A%2F%2Ffcmais.com.br%2F&rl=&if=false&ts=1666638797575&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.2.1666638797574.19728670&it=1666638797261&coo=false&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=315091307078894&ev=PageView&dl=https%3A%2F%2Ffcmais.com.br%2F&rl=&if=false&ts=1666638797575&sw=1280&sh=1024&v=2.9.87&r=stable&ec=0&o=30&fbp=fb.2.1666638797574.19728670&it=1666638797261&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 24 Oct 2022 19:13:18 GMT
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221019&st=env
142.250.74.98200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221019&st=env
IP 142.250.74.98:0
File type JSON data\012- , ASCII text, with very long lines (14606), with no line terminators
Hash 9f2071ad33c18a6bfe48b8627ed233f5
e1dcaf5af15c464b11447c15caf42b5fc128faf9
09a842322bceb481d6c9f447607d0836656e6588ad54604521c5702a49739b18
GET /getconfig/sodar?sv=200&tid=gda&tv=r20221019&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 24 Oct 2022 19:13:19 GMT
server: cafe
cache-control: private
content-length: 11095
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash e192ba11a69a64386984b803139a3973
4c03c5bcaecb636fa37939f43678cd00de92a365
20598d27f29a2c4b909fbc8e9e02f1a79e5a32e47c0e3a2763400ebd2fa57aa3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 19:13:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
app.leadster.com.br/api/v1/scripts/search?company=30658&session=0&path=%2F&time=1666638797&host=fcmais.com.br&query=&platform=desktop
104.26.10.199200 OK 8.3 kB URL HTTP/2 app.leadster.com.br/api/v1/scripts/search?company=30658&session=0&path=%2F&time=1666638797&host=fcmais.com.br&query=&platform=desktop
IP 104.26.10.199:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4147), with no line terminators
Hash 16eb9c135da6dd3e0704aa767829c8ad
1c7e4a28cb9cc60b893dc2d03a11b8ae6f4112ad
52060748048fa9061ffa6e0570ada747537881ac0afc7aa6c77e4dbc985cc5c5
POST /api/v1/scripts/search?company=30658&session=0&path=%2F&time=1666638797&host=fcmais.com.br&query=&platform=desktop HTTP/1.1
Host: app.leadster.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Mon, 24 Oct 2022 19:13:19 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cors-token: eyJhbGciOiJIUzI1NiJ9.eyJyYW5kb20iOiIyNmI2MGNkODVjZjdmY2ZjNzRiNDE0NDJkYWYwYzY4NSIsImRhdGEiOnsic2NyaXB0X2lkIjozNjg5OCwiaG9zdCI6Imh0dHBzOi8vZmNtYWlzLmNvbS5iciIsInNraXBfdmFsaWRhdGlvbiI6ZmFsc2V9LCJleHAiOjE2NjY2NTMxOTksInRpbWVzdGFtcCI6MTY2NjYzODc5OSwiZGF0ZV90aW1lIjoiMjQvMTAvMjAyMiAxOToxMyJ9.iv2j_THfjGNOJ9XveQSZBpeHIiOJbgRaxdtULA3LPFQ
cache-control: no-cache, no-store
access-control-allow-origin: *
vary: Origin
access-control-expose-headers: Cors-Token
access-control-max-age: 1728000
x-request-id: 779cee02-114e-4d2f-986b-5c8f5c92db53
access-control-allow-methods: GET, PUT, POST, OPTIONS
etag: W/"82ae864ee7c4f77c764ffe4122a0a7de"
x-runtime: 0.027487
x-powered-by: cloud66, cloud66
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=phWYPpnBLRf8o0GtC%2FDFqwutWd3Yl82QrdD3%2BTfap7TEB6vQOi63Uw2sJsBkaVuGD4ctapqhkrUIfarZ21A1TU%2BvVmkBdv6SkVR1nfTFsqDgJ34gvQi%2BVa2q%2B%2FrsfKaSD5yU8HY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f5076e3964b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
leadster.com.br/img/avatar/avatar4.png
104.26.11.199200 OK 10 kB URL HTTP/2 leadster.com.br/img/avatar/avatar4.png
IP 104.26.11.199:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cbc8f277bf5b43829fa713bbe9edde38
e88d9364c3d73d53996c0f6b5fdce6fcc635a4cc
5ff0dc34ff3a7212d063184dc2d1c418e138f6e6969d5b7b8028b0910a1ab862
GET /img/avatar/avatar4.png HTTP/1.1
Host: leadster.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 19:13:19 GMT
content-type: image/webp
content-length: 10308
cache-control: public, max-age=300, must-revalidate
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=17776
vary: Accept
access-control-allow-origin: *
content-disposition: inline; filename="avatar4.webp"
etag: "73dc73b8da46092ef98309cfe4edf132"
strict-transport-security: max-age=63072000
x-matched-path: /img/avatar/avatar4.png
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::lfmgc-1666543653783-58c0e60e5a9d
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z90P2VlGiacq%2FXsv4MzTOnZjYR5Puz08EPHCHUZ5aXBZuYl4eUZuFa1IQ7u%2FVa9%2BJcOrs%2FYASTvqTD1I5NLYuU%2FFAUxdEDQX0mIujyw50sWHb3XPnNRP2MlwKEMx2KRomA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f507708f67b4f3-OSL
X-Firefox-Spdy: h2
app.leadster.com.br/api/v1/analytics/events
104.26.10.199200 OK 0 B URL HTTP/2 app.leadster.com.br/api/v1/analytics/events
IP 104.26.10.199:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/analytics/events HTTP/1.1
Host: app.leadster.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,cors-token
Referer: https://fcmais.com.br/
Origin: https://fcmais.com.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 19:13:19 GMT
content-length: 0
status: 200 OK
access-control-allow-origin: *
access-control-max-age: 1728000
access-control-allow-headers: content-type,cors-token
access-control-allow-methods: GET, PUT, POST, OPTIONS
x-powered-by: cloud66, cloud66
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2FFUY9R18azXdo1%2FyWGC4WY%2B%2FEOfzKZGSqe2ELrtb%2Fjb7p%2BiFbBEKgtIPHOUB%2BJxkcQvgtokXLrYK3WFOoHxhchyTTLOAJy1pVo8oj7k2nXNQQNTVneIKRmaSpf%2F17YcvFLIZS4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f507705cc6b517-OSL
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
162.241.61.239200 OK 0 B URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _ga_RZ9SH33WZ4=GS1.1.1666638796.1.0.1666638796.0.0.0; _ga=GA1.1.285109015.1666638797
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 24 Oct 2022 19:13:15 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.leadster.com.br/neurolead/neurolead.min.js
104.26.11.199200 OK 0 B URL HTTP/2 cdn.leadster.com.br/neurolead/neurolead.min.js
IP 104.26.11.199:0
GET /neurolead/neurolead.min.js HTTP/1.1
Host: cdn.leadster.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 24 Oct 2022 19:13:17 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdsKM6XASEcm70F5FSJEbppU0JvjKnvIrd-H-6sDGg_TykBlnPWt67Ah40pMwWPrL3BHvSC7EcKl_yNSTqRcQE7H-D7EJhiA
x-goog-generation: 1665512989745734
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 93964
x-goog-hash: crc32c=CDx03w==, md5=5YhWEXWTKbtJSdqEoacCsw==
x-goog-storage-class: MULTI_REGIONAL
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
expires: Mon, 24 Oct 2022 19:31:23 GMT
cache-control: public, max-age=3600
age: 2514
last-modified: Tue, 11 Oct 2022 18:29:49 GMT
etag: W/"e5885611759329bb4949da84a1a702b3"
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G0rRULffsILBaX4Uagm1Sn49T9Mp9wiRc17bsMMXPcSiaphSn17OxZYFkGpihy70BrfIYjh%2B1eP%2BFSNbYRC8uWijHTLfpQyyPuNLnP1gbp6TJT9B%2BELC2uVMupQNQwJHS289Eiw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f50764bc6ab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 0 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: TBlTwwkM+k/DyoGsJtp8XbMZFvfTE6Q8SErOow2AAPQhsH13HnjAN2+PM9wHyqXjAsQMgsKDH1Yepm6EAJZZgA==
content-length: 27027
x-fb-trip-id: 1679558926
date: Mon, 24 Oct 2022 19:13:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fcmais.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
162.241.61.239200 OK 0 B URL HTTP/2 fcmais.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
IP 162.241.61.239:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: fcmais.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Oct 2022 03:38:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 24 Oct 2022 19:13:14 GMT
server: Apache
X-Firefox-Spdy: h2
app.leadster.com.br/api/v1/analytics/events
104.26.10.199200 OK 0 B URL HTTP/2 app.leadster.com.br/api/v1/analytics/events
IP 104.26.10.199:0
POST /api/v1/analytics/events HTTP/1.1
Host: app.leadster.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Cors-Token: eyJhbGciOiJIUzI1NiJ9.eyJyYW5kb20iOiIyNmI2MGNkODVjZjdmY2ZjNzRiNDE0NDJkYWYwYzY4NSIsImRhdGEiOnsic2NyaXB0X2lkIjozNjg5OCwiaG9zdCI6Imh0dHBzOi8vZmNtYWlzLmNvbS5iciIsInNraXBfdmFsaWRhdGlvbiI6ZmFsc2V9LCJleHAiOjE2NjY2NTMxOTksInRpbWVzdGFtcCI6MTY2NjYzODc5OSwiZGF0ZV90aW1lIjoiMjQvMTAvMjAyMiAxOToxMyJ9.iv2j_THfjGNOJ9XveQSZBpeHIiOJbgRaxdtULA3LPFQ
Content-Length: 307
Origin: https://fcmais.com.br
Connection: keep-alive
Referer: https://fcmais.com.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 24 Oct 2022 19:13:19 GMT
content-type: application/json
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
vary: Origin
access-control-max-age: 1728000
x-request-id: 312e4077-076a-4c16-95d4-2b5d3a534e57
access-control-allow-methods: GET, PUT, POST, OPTIONS
x-runtime: 0.020824
x-powered-by: cloud66, cloud66
via: 1.1 google
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H%2Bmg5Rb0oK8kRK9wijjwT1SEQqA1ScPqPoRQC2yj%2BHAl%2Bwnkhbw2BTxsB3VRNGjDf5vs6KdI%2FAuWO%2F73%2BYOoEJJz%2BuV3wRVHZ1n%2Be38PX9Rv%2Fs2H1e8Fbzl92A19q9R6XZ4jqws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f50771df4eb517-OSL
content-encoding: br
X-Firefox-Spdy: h2