r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3038
Expires: Wed, 30 Nov 2022 13:12:00 GMT
Date: Wed, 30 Nov 2022 12:21:22 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2367
Cache-Control: max-age=168564
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:21:22 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:10:46 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20480
Expires: Wed, 30 Nov 2022 18:02:42 GMT
Date: Wed, 30 Nov 2022 12:21:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 12:18:01 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 201
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IJp5pRqCgXlj+cvGptyTy4uARGGosMm+aAFmQ8FM//pIEl9C4G3Ev30fCAEdfCiKHPyCeaSiVJU=
x-amz-request-id: 6602E5AQ4BCSRRWZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 11:45:13 GMT
age: 2169
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
tomoroccotour.com/
68.65.123.192301 Moved Permanently 707 B IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Wed, 30 Nov 2022 12:21:22 GMT
server: LiteSpeed
location: https://tomoroccotour.com/
x-turbo-charged-by: LiteSpeed
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:21:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 12:11:14 GMT
cache-control: public,max-age=3600
age: 609
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash f412a147e08f3abe880b3a0806e25918
e523dc6ac131e21cab0e6b921f5241c9d0547cb2
6bf80da09d3b68ac7c1a7863ab44b0c64bfa2f424dc8ae1f653e5465d82075a1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:21:23 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 22:54:45 GMT
Expires: Sun, 04 Dec 2022 22:54:44 GMT
Etag: "e523dc6ac131e21cab0e6b921f5241c9d0547cb2"
Cache-Control: max-age=383000,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77238ae59b63b4f3-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2360
Cache-Control: max-age=163488
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:21:23 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:46:11 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QtK8KVnI/kVsTOGxziLu8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tjHStsL4kwCs6E1w7l6xLqmq8qc=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33f732b4dfbd5fb3ed7345eba2896fe6
2652f214cf7127302cc65b1d4e42f48a80907d5d
904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-707QG0RHV9
142.250.74.40200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-707QG0RHV9
IP 142.250.74.40:0
File type ASCII text, with very long lines (26337)
Hash 545c954864f7043ddd261e41731a0d3c
829c018315405298e2b7561ce71d24b23702e9dc
a1db66cb88616051fa98d78fbdbbb9babef6e450522a24daff8077667e46ae6e
GET /gtag/js?id=G-707QG0RHV9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
expires: Wed, 30 Nov 2022 12:21:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78835
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33f732b4dfbd5fb3ed7345eba2896fe6
2652f214cf7127302cc65b1d4e42f48a80907d5d
904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tomoroccotour.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
68.65.123.192200 OK 5.9 kB URL HTTP/2 tomoroccotour.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 68.65.123.192:0
File type ASCII text, with very long lines (15660)
Hash 68bb4db3eb1d538f0aefa63978c9f00a
4462b37533bdd6f72a75a1678e7d283cfaeafe19
01fe2475586bfc22772ed5226fa2b24ff9b8647cba8db7e0317ea950a6bd2262
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 12:21:24 GMT
content-type: application/javascript
last-modified: Tue, 12 Apr 2022 15:26:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5922
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=6.1.1
142.250.74.106200 OK 587 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=6.1.1
IP 142.250.74.106:0
Hash 3d42f493f48708632af8c6f8fb337195
762c78af08502073439f3256f411e739f2197eae
39f4014c82c13b8d038be7ce053ec032f7b3d8d618003c965b5e519dc75b6071
GET /css?family=Montserrat%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 12:21:24 GMT
date: Wed, 30 Nov 2022 12:21:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tomoroccotour.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
68.65.123.192200 OK 12 kB URL HTTP/2 tomoroccotour.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 68.65.123.192:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 12:21:24 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 00:34:57 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11616
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
68.65.123.192200 OK 5.3 kB URL HTTP/2 tomoroccotour.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 68.65.123.192:0
File type ASCII text, with very long lines (11126)
Hash b57b046e15633b3e54fe21bb43fde5cf
36a37363382ac1bd6d44141d07df14cd8a33e7b0
f082b60f79e22d7f7ed81627eaf8d78db83941c871cb9d631545de4309e04272
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 12:21:24 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5306
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
68.65.123.192200 OK 32 kB URL HTTP/2 tomoroccotour.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 68.65.123.192:0
File type ASCII text, with very long lines (65447)
Hash 08f31e8e568b40b40cf2bcc3fa782d0b
6e1074a99c25ee3af71ea446b4f9772155bb8b77
51ba6a44f2d2873e2c71591c98d4486356f5ba29e7f40781bc009ef6e489cffb
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 12:21:24 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:31:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31645
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/css/fontResizer.css?ver=6.1.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/css/fontResizer.css?ver=6.1.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-font-resizer/css/fontResizer.css?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/svg-support/css/svgs-attachment.css?ver=6.1.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/svg-support/css/svgs-attachment.css?ver=6.1.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/svg-support/css/svgs-attachment.css?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/css/post-394.css?ver=1668353252
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/css/post-394.css?ver=1668353252
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-394.css?ver=1668353252 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9396
Expires: Wed, 30 Nov 2022 14:58:01 GMT
Date: Wed, 30 Nov 2022 12:21:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9396
Expires: Wed, 30 Nov 2022 14:58:01 GMT
Date: Wed, 30 Nov 2022 12:21:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9396
Expires: Wed, 30 Nov 2022 14:58:01 GMT
Date: Wed, 30 Nov 2022 12:21:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9396
Expires: Wed, 30 Nov 2022 14:58:01 GMT
Date: Wed, 30 Nov 2022 12:21:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8heT2eN5oLbO14R9qLq78Vma_TkteufTyKM5i3K2XoJYXfWNwLMEwQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:25 GMT
age: 51900
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbe350ea797a0fec5a19a450fc5de4b4
2f3a39a528d3b759060203931de33c12303592e1
4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:00:54 GMT
age: 51631
etag: "2f3a39a528d3b759060203931de33c12303592e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05196ec43964cf559caa0c0279148d62
6170d6776615503e3e29f86783febc3e3e78ca66
47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IMaVlQblNnh9mFKwb2LG7hw7h_f1_nVYqO4aEUqY01a2HofnnQqcFQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:49:31 GMT
age: 52314
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QhUrNKIJUxXTYFTgfCwizAd9L4PdLMVLbqv1sHmmnrWya0xz1MTSiw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:08:46 GMT
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
age: 51159
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33ee67e62c49fc8d51f18df313002aac
3d8c927b6945d880f92d4e7a686cad5a9985e8ad
ba6e66e07cd93219926927fd2b468a92b8d02cc9bf1da0b3b9a3c48da160bbdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9670
x-amzn-requestid: d9a529ac-9dc6-4e12-80c5-3250dc97e7bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcFiAoAMF0nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-116ddf09265d51523c3638b3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5BnByLndiK0korBr44MDgK6sgRBPooy2LE_2NjVIQhiTfmAdLupnZw==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:49:34 GMT
age: 52311
etag: "3d8c927b6945d880f92d4e7a686cad5a9985e8ad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 777ce44582c70bf01a31da4cab366f36
57e1d34f146d5ccd9943aa97bcc3158f7103bb07
fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:16:52 GMT
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
age: 50673
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/css/post-2425.css?ver=1668353254
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/css/post-2425.css?ver=1668353254
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-2425.css?ver=1668353254 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/css/post-8.css?ver=1669305160
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/css/post-8.css?ver=1669305160
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-8.css?ver=1669305160 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-featherlight/css/wp-featherlight.min.css?ver=1.3.4
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-featherlight/css/wp-featherlight.min.css?ver=1.3.4
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/wp-featherlight/css/wp-featherlight.min.css?ver=1.3.4 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/dynamic-mobmenu.css?ver=2.8.2.7-955
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/dynamic-mobmenu.css?ver=2.8.2.7-955
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/dynamic-mobmenu.css?ver=2.8.2.7-955 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.9.4
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.9.4
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=2.9.4 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%7CPlayfair+Display%3A400%2C700&display=fallback&ver=3.9.2
142.250.74.106200 OK 1.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%7CPlayfair+Display%3A400%2C700&display=fallback&ver=3.9.2
IP 142.250.74.106:0
Hash 6751bdc117e694681819cb28168a8251
e4691eaf77d56888e07bad9eddac7e5087a22223
155a2e94add5d5bfc885c2717ed7480273217c9ee65245415394a334635059b9
GET /css?family=Open+Sans%3A400%7CPlayfair+Display%3A400%2C700&display=fallback&ver=3.9.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 12:21:24 GMT
date: Wed, 30 Nov 2022 12:21:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/master-addons/assets/fonts/material-icons/material-icons.css?ver=1.9.6
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/master-addons/assets/fonts/material-icons/material-icons.css?ver=1.9.6
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/master-addons/assets/fonts/material-icons/material-icons.css?ver=1.9.6 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.11
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.11
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.11 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/
68.65.123.192200 OK 535 kB IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (42527), with CRLF, LF line terminators
Size 535 kB (534730 bytes)
Hash 3f9f7c48cdb743fa74a3fab787c62b6c
f884da5907db1c6a37f5ab848628aaa95d364682
2e4904cea790f664fb985176017f8b4c758ce0afb23105d5a5b0b156a2f44008
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://tomoroccotour.com/wp-json/>; rel="https://api.w.org/", <https://tomoroccotour.com/wp-json/wp/v2/pages/8>; rel="alternate"; type="application/json", <https://tomoroccotour.com/>; rel=shortlink
etag: "439-1669600406;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 534730
date: Wed, 30 Nov 2022 12:21:23 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/master-addons/assets/fonts/iconic-fonts/iconic-font.min.css?ver=1.9.6
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/master-addons/assets/fonts/iconic-fonts/iconic-font.min.css?ver=1.9.6
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/master-addons/assets/fonts/iconic-fonts/iconic-font.min.css?ver=1.9.6 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/js/fontResizer.js?ver=6.1.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/js/fontResizer.js?ver=6.1.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-font-resizer/js/fontResizer.js?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/mobile-menu/includes/css/mobmenu.css?ver=2.8.2.7
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/mobile-menu/includes/css/mobmenu.css?ver=2.8.2.7
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mobile-menu/includes/css/mobmenu.css?ver=2.8.2.7 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:24 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-includes/js/wp-util.min.js?ver=6.1.1
68.65.123.192200 OK 2.0 kB URL HTTP/2 tomoroccotour.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 68.65.123.192:0
File type ASCII text, with very long lines (1413)
Hash 4c93f408781478d3491a993dfd8e14f1
c39e01e8c1622522e0419e8d1839517f84fc0764
4a6f1446520bdbec790b73deb4486cbbc1568de8bf157c3f9aa82de1b5ad57f8
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 12:21:25 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:31:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1976
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
68.65.123.192200 OK 8.1 kB URL HTTP/2 tomoroccotour.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 68.65.123.192:0
File type Unicode text, UTF-8 text, with very long lines (8211)
Hash d1461f94813caf91caa6e72ab0fb4890
db70ccc09d60ffd52e3ab8df27e8d514cc369cf8
d7ec47b2ef225fd2ee32e324a44991c228833dd0f710a9dd0f693da024fa35e3
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 12:21:25 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:31:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8123
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-includes/js/underscore.min.js?ver=1.13.4
68.65.123.192200 OK 8.5 kB URL HTTP/2 tomoroccotour.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 68.65.123.192:0
File type ASCII text, with very long lines (18820)
Hash 8acd87009f8e73a4f5930386c7c24ccb
96fed91f188ca2095d3be057407f8452cb4dafa9
4014427114f31cde2be90f5b9c1e86e6795631e2d8176c26d77db4a7ef82513b
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 07 Dec 2022 12:21:25 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 13:31:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8497
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/vince-gx-33DJx0Yb2cA-unsplash-scaled-pv6iqzz9h475ip66hul10m25dlxvvnrg412codblvk.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/vince-gx-33DJx0Yb2cA-unsplash-scaled-pv6iqzz9h475ip66hul10m25dlxvvnrg412codblvk.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/vince-gx-33DJx0Yb2cA-unsplash-scaled-pv6iqzz9h475ip66hul10m25dlxvvnrg412codblvk.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/mohammed-lak-CBfUGtVP0QE-unsplash-scaled-pv3q74onwyvc7x8ezn2x6ko4r1tdue4rfc8rnmje68.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/mohammed-lak-CBfUGtVP0QE-unsplash-scaled-pv3q74onwyvc7x8ezn2x6ko4r1tdue4rfc8rnmje68.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/mohammed-lak-CBfUGtVP0QE-unsplash-scaled-pv3q74onwyvc7x8ezn2x6ko4r1tdue4rfc8rnmje68.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/emilia-igartua-9CM0JnzmWKU-unsplash-scaled-pv6jwhkt4uzrz2wn8a77kn5lavg4mpgxhdow91t18g.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/emilia-igartua-9CM0JnzmWKU-unsplash-scaled-pv6jwhkt4uzrz2wn8a77kn5lavg4mpgxhdow91t18g.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/emilia-igartua-9CM0JnzmWKU-unsplash-scaled-pv6jwhkt4uzrz2wn8a77kn5lavg4mpgxhdow91t18g.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/don-agnello-wEsPKE4dEdI-unsplash-scaled-pv3q3w4odifs89xpw8p6le2z39rvbxa1nbck5bc7ls.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/don-agnello-wEsPKE4dEdI-unsplash-scaled-pv3q3w4odifs89xpw8p6le2z39rvbxa1nbck5bc7ls.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/don-agnello-wEsPKE4dEdI-unsplash-scaled-pv3q3w4odifs89xpw8p6le2z39rvbxa1nbck5bc7ls.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/tienko-dima-jk5CdjDgHbQ-unsplash-scaled-pw3k2nk02jlosx1l55gx08bvxt10eay01ufy5e4gw0.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/tienko-dima-jk5CdjDgHbQ-unsplash-scaled-pw3k2nk02jlosx1l55gx08bvxt10eay01ufy5e4gw0.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/tienko-dima-jk5CdjDgHbQ-unsplash-scaled-pw3k2nk02jlosx1l55gx08bvxt10eay01ufy5e4gw0.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/eduardo-casajus-gorostiaga-RVOI4nNutfU-unsplash-scaled-pv3qhqb4zpdr5lu3381gawd9xhkeni7s7t3whytk00.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/eduardo-casajus-gorostiaga-RVOI4nNutfU-unsplash-scaled-pv3qhqb4zpdr5lu3381gawd9xhkeni7s7t3whytk00.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/eduardo-casajus-gorostiaga-RVOI4nNutfU-unsplash-scaled-pv3qhqb4zpdr5lu3381gawd9xhkeni7s7t3whytk00.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/adil-diless-_fcZ5jncgAw-unsplash-scaled-pv6ikv36v1srqc31bp3p8nsts26mmseixnr8wcf4hs.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/adil-diless-_fcZ5jncgAw-unsplash-scaled-pv6ikv36v1srqc31bp3p8nsts26mmseixnr8wcf4hs.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/adil-diless-_fcZ5jncgAw-unsplash-scaled-pv6ikv36v1srqc31bp3p8nsts26mmseixnr8wcf4hs.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/rumman-amin-bzFHhYKdIa0-unsplash-scaled-pvf9uw9jcn4z6dj13t7j6iptg3bftf8vf3t52vm35s.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/rumman-amin-bzFHhYKdIa0-unsplash-scaled-pvf9uw9jcn4z6dj13t7j6iptg3bftf8vf3t52vm35s.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/rumman-amin-bzFHhYKdIa0-unsplash-scaled-pvf9uw9jcn4z6dj13t7j6iptg3bftf8vf3t52vm35s.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/meor-mohamad-LDY_h9PD_yg-unsplash-scaled-pva60pgdfhc3q8tfok98s3hl8dj2lohsi3zk9agvb4.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/meor-mohamad-LDY_h9PD_yg-unsplash-scaled-pva60pgdfhc3q8tfok98s3hl8dj2lohsi3zk9agvb4.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/meor-mohamad-LDY_h9PD_yg-unsplash-scaled-pva60pgdfhc3q8tfok98s3hl8dj2lohsi3zk9agvb4.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/don-fontijn-llwWLf63dEo-unsplash-scaled-pv6jy7m5nxcp9cej610l57i0iaycqqb7pwqxxb91ts.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/don-fontijn-llwWLf63dEo-unsplash-scaled-pv6jy7m5nxcp9cej610l57i0iaycqqb7pwqxxb91ts.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/don-fontijn-llwWLf63dEo-unsplash-scaled-pv6jy7m5nxcp9cej610l57i0iaycqqb7pwqxxb91ts.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/minus.png
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/minus.png
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/wp-font-resizer/images/minus.png HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/plus.png
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/plus.png
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/wp-font-resizer/images/plus.png HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/2022/11/untitled-1-recovered.svg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/2022/11/untitled-1-recovered.svg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/untitled-1-recovered.svg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/reload.png
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/reload.png
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/wp-font-resizer/images/reload.png HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/cassie-smart-wMxlI-RiAMM-unsplash-scaled-pwza57pjfzs8rfcmpj0xlhbqn3abyaiur2j1ec99ns.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/cassie-smart-wMxlI-RiAMM-unsplash-scaled-pwza57pjfzs8rfcmpj0xlhbqn3abyaiur2j1ec99ns.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/cassie-smart-wMxlI-RiAMM-unsplash-scaled-pwza57pjfzs8rfcmpj0xlhbqn3abyaiur2j1ec99ns.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/MARRAKECH-TO-ERG-CHEGAGA-DUNES-4-DAYS-TOURS-pvf9mhli7zmnbxqo76dnvn3e60r8yvvaxhqsjs2utc.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/MARRAKECH-TO-ERG-CHEGAGA-DUNES-4-DAYS-TOURS-pvf9mhli7zmnbxqo76dnvn3e60r8yvvaxhqsjs2utc.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/MARRAKECH-TO-ERG-CHEGAGA-DUNES-4-DAYS-TOURS-pvf9mhli7zmnbxqo76dnvn3e60r8yvvaxhqsjs2utc.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/master-addons/assets/css/master-addons-styles.css?ver=6.1.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/master-addons/assets/css/master-addons-styles.css?ver=6.1.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/master-addons/assets/css/master-addons-styles.css?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:25 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.9.4
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.9.4
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=2.9.4 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-featherlight/js/wpFeatherlight.pkgd.min.js?ver=1.3.4
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-featherlight/js/wpFeatherlight.pkgd.min.js?ver=1.3.4
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-featherlight/js/wpFeatherlight.pkgd.min.js?ver=1.3.4 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/js/fontResizer.js?ver=6.1.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/js/fontResizer.js?ver=6.1.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-font-resizer/js/fontResizer.js?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/master-addons/assets/js/plugins.js?ver=1.9.6
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/master-addons/assets/js/plugins.js?ver=1.9.6
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/master-addons/assets/js/plugins.js?ver=1.9.6 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.8 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/js/kjua.min.js?ver=0.9.0
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/js/kjua.min.js?ver=0.9.0
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/creame-whatsapp-me/public/js/kjua.min.js?ver=0.9.0 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=2.9.4 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/master-addons/assets/js/master-addons-scripts.js?ver=1.9.6
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/master-addons/assets/js/master-addons-scripts.js?ver=1.9.6
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/master-addons/assets/js/master-addons-scripts.js?ver=1.9.6 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:26 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:21:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tomoroccotour.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:53:39 GMT
expires: Tue, 28 Nov 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 149268
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
142.250.74.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Hash 60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tomoroccotour.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:03:06 GMT
expires: Wed, 29 Nov 2023 15:03:06 GMT
cache-control: public, max-age=31536000
age: 76701
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:21:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tomoroccotour.com/wp-content/uploads/elementor/thumbs/adil-diless-_fcZ5jncgAw-unsplash-scaled-pv6ikv36v1srqc31bp3p8nsts26mmseixnr8wcf4hs.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/adil-diless-_fcZ5jncgAw-unsplash-scaled-pv6ikv36v1srqc31bp3p8nsts26mmseixnr8wcf4hs.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/adil-diless-_fcZ5jncgAw-unsplash-scaled-pv6ikv36v1srqc31bp3p8nsts26mmseixnr8wcf4hs.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/eduardo-casajus-gorostiaga-RVOI4nNutfU-unsplash-scaled-pv3qhqb4zpdr5lu3381gawd9xhkeni7s7t3whytk00.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/eduardo-casajus-gorostiaga-RVOI4nNutfU-unsplash-scaled-pv3qhqb4zpdr5lu3381gawd9xhkeni7s7t3whytk00.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/eduardo-casajus-gorostiaga-RVOI4nNutfU-unsplash-scaled-pv3qhqb4zpdr5lu3381gawd9xhkeni7s7t3whytk00.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/rumman-amin-bzFHhYKdIa0-unsplash-scaled-pvf9uw9jcn4z6dj13t7j6iptg3bftf8vf3t52vm35s.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/rumman-amin-bzFHhYKdIa0-unsplash-scaled-pvf9uw9jcn4z6dj13t7j6iptg3bftf8vf3t52vm35s.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/rumman-amin-bzFHhYKdIa0-unsplash-scaled-pvf9uw9jcn4z6dj13t7j6iptg3bftf8vf3t52vm35s.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/tienko-dima-jk5CdjDgHbQ-unsplash-scaled-pw3k2nk02jlosx1l55gx08bvxt10eay01ufy5e4gw0.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/tienko-dima-jk5CdjDgHbQ-unsplash-scaled-pw3k2nk02jlosx1l55gx08bvxt10eay01ufy5e4gw0.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/tienko-dima-jk5CdjDgHbQ-unsplash-scaled-pw3k2nk02jlosx1l55gx08bvxt10eay01ufy5e4gw0.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/don-agnello-wEsPKE4dEdI-unsplash-scaled-pv3q3w4odifs89xpw8p6le2z39rvbxa1nbck5bc7ls.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/don-agnello-wEsPKE4dEdI-unsplash-scaled-pv3q3w4odifs89xpw8p6le2z39rvbxa1nbck5bc7ls.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/don-agnello-wEsPKE4dEdI-unsplash-scaled-pv3q3w4odifs89xpw8p6le2z39rvbxa1nbck5bc7ls.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/vince-gx-33DJx0Yb2cA-unsplash-scaled-pv6iqzz9h475ip66hul10m25dlxvvnrg412codblvk.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/vince-gx-33DJx0Yb2cA-unsplash-scaled-pv6iqzz9h475ip66hul10m25dlxvvnrg412codblvk.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/vince-gx-33DJx0Yb2cA-unsplash-scaled-pv6iqzz9h475ip66hul10m25dlxvvnrg412codblvk.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/mohammed-lak-CBfUGtVP0QE-unsplash-scaled-pv3q74onwyvc7x8ezn2x6ko4r1tdue4rfc8rnmje68.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/mohammed-lak-CBfUGtVP0QE-unsplash-scaled-pv3q74onwyvc7x8ezn2x6ko4r1tdue4rfc8rnmje68.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/mohammed-lak-CBfUGtVP0QE-unsplash-scaled-pv3q74onwyvc7x8ezn2x6ko4r1tdue4rfc8rnmje68.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/don-fontijn-llwWLf63dEo-unsplash-scaled-pv6jy7m5nxcp9cej610l57i0iaycqqb7pwqxxb91ts.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/don-fontijn-llwWLf63dEo-unsplash-scaled-pv6jy7m5nxcp9cej610l57i0iaycqqb7pwqxxb91ts.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/don-fontijn-llwWLf63dEo-unsplash-scaled-pv6jy7m5nxcp9cej610l57i0iaycqqb7pwqxxb91ts.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/meor-mohamad-LDY_h9PD_yg-unsplash-scaled-pva60pgdfhc3q8tfok98s3hl8dj2lohsi3zk9agvb4.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/meor-mohamad-LDY_h9PD_yg-unsplash-scaled-pva60pgdfhc3q8tfok98s3hl8dj2lohsi3zk9agvb4.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/meor-mohamad-LDY_h9PD_yg-unsplash-scaled-pva60pgdfhc3q8tfok98s3hl8dj2lohsi3zk9agvb4.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/emilia-igartua-9CM0JnzmWKU-unsplash-scaled-pv6jwhkt4uzrz2wn8a77kn5lavg4mpgxhdow91t18g.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/emilia-igartua-9CM0JnzmWKU-unsplash-scaled-pv6jwhkt4uzrz2wn8a77kn5lavg4mpgxhdow91t18g.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/emilia-igartua-9CM0JnzmWKU-unsplash-scaled-pv6jwhkt4uzrz2wn8a77kn5lavg4mpgxhdow91t18g.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/reload.png
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/reload.png
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/wp-font-resizer/images/reload.png HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/minus.png
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/minus.png
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/wp-font-resizer/images/minus.png HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/plus.png
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-font-resizer/images/plus.png
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/wp-font-resizer/images/plus.png HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/cassie-smart-wMxlI-RiAMM-unsplash-scaled-pwza57pjfzs8rfcmpj0xlhbqn3abyaiur2j1ec99ns.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/cassie-smart-wMxlI-RiAMM-unsplash-scaled-pwza57pjfzs8rfcmpj0xlhbqn3abyaiur2j1ec99ns.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/cassie-smart-wMxlI-RiAMM-unsplash-scaled-pwza57pjfzs8rfcmpj0xlhbqn3abyaiur2j1ec99ns.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/elementor/thumbs/MARRAKECH-TO-ERG-CHEGAGA-DUNES-4-DAYS-TOURS-pvf9mhli7zmnbxqo76dnvn3e60r8yvvaxhqsjs2utc.jpg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/elementor/thumbs/MARRAKECH-TO-ERG-CHEGAGA-DUNES-4-DAYS-TOURS-pvf9mhli7zmnbxqo76dnvn3e60r8yvvaxhqsjs2utc.jpg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/uploads/elementor/thumbs/MARRAKECH-TO-ERG-CHEGAGA-DUNES-4-DAYS-TOURS-pvf9mhli7zmnbxqo76dnvn3e60r8yvvaxhqsjs2utc.jpg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/2022/11/tomoroccotour-logo-official.svg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/2022/11/tomoroccotour-logo-official.svg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/tomoroccotour-logo-official.svg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:27 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/uploads/2022/11/untitled-1-recovered.svg
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/uploads/2022/11/untitled-1-recovered.svg
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/untitled-1-recovered.svg HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/master-addons/assets/css/master-addons-styles.css?ver=6.1.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/master-addons/assets/css/master-addons-styles.css?ver=6.1.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/master-addons/assets/css/master-addons-styles.css?ver=6.1.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:28 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/js/kjua.min.js?ver=0.9.0
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/js/kjua.min.js?ver=0.9.0
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/creame-whatsapp-me/public/js/kjua.min.js?ver=0.9.0 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.11 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:29 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/wp-featherlight/js/wpFeatherlight.pkgd.min.js?ver=1.3.4
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/wp-featherlight/js/wpFeatherlight.pkgd.min.js?ver=1.3.4
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-featherlight/js/wpFeatherlight.pkgd.min.js?ver=1.3.4 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:30 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
tomoroccotour.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
68.65.123.192500 Internal Server Error 1.0 kB URL HTTP/2 tomoroccotour.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 68.65.123.192:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b34abcfb0aa879bd54f0b73170e49e6a
21f2e04c598e17990cecbd06607f21f7579be731
9006a354237a4dc82d13b5428cb8c7a2cf2790e51791634cd8361118f051e550
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: tomoroccotour.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Cookie: _ga_707QG0RHV9=GS1.1.1669810883.1.0.1669810883.0.0.0; _ga=GA1.1.1248510198.1669810883
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-length: 1042
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:21:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Alegreya%3Ainherit%2C100%2C400&subset=latin%2Clatin-ext&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Alegreya%3Ainherit%2C100%2C400&subset=latin%2Clatin-ext&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Alegreya%3Ainherit%2C100%2C400&subset=latin%2Clatin-ext&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 12:21:24 GMT
date: Wed, 30 Nov 2022 12:21:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Aclonica%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAleo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CChakra+Petch%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlfa+Slab+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAkaya+Kanadaka%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CArchivo+Black%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Aclonica%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAleo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CChakra+Petch%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlfa+Slab+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAkaya+Kanadaka%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CArchivo+Black%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Aclonica%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAleo%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CChakra+Petch%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAlfa+Slab+One%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CAkaya+Kanadaka%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CArchivo+Black%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tomoroccotour.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 12:21:24 GMT
date: Wed, 30 Nov 2022 12:21:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2