firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 20:59:23 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CiYxJvEKqOZpXr58SxeukiM6tkACzWr9JCIaEan1AWIgtI73EKjdFg==
Age: 2362
www.tgroupsrl.com/
195.225.169.195200 OK 45 kB IP 195.225.169.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Hash 0f03dafedeff7bcda1c55bd3dca0d58a
3ee619c2e92ba3baa32447e42151efd95363b9c2
5ba83062df43aaf3333d274e130082a44384645c75795b7c9410ae66155ec272
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:39 GMT
Server: Apache
Set-Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9830
Expires: Thu, 15 Sep 2022 00:22:35 GMT
Date: Wed, 14 Sep 2022 21:38:45 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KMboq86ugNzM6iD86Mr8-lfn9QaiKUux63oeQ4ihqPBzoYKEUlcKKw==
age: 61410
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 21:38:45 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.tgroupsrl.com/js/jquery/jquery.slide.js
195.225.169.195200 OK 569 B URL HTTP/1.1 www.tgroupsrl.com/js/jquery/jquery.slide.js
IP 195.225.169.195:0
File type ASCII text, with CRLF line terminators
Hash d45129b14423dc0b40465c6c20fb753a
848a8b6e4f07ff27a4797adadf6cbb4a1f56e4f1
e7bf5654dddbe9a767ff0ccc8c4bd482fe8fcfc460b61ecbaf99d6ad84ea8b8f
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/jquery.slide.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:39 GMT
Server: Apache
Last-Modified: Mon, 14 Oct 2013 15:43:24 GMT
ETag: "239-4e8b554117f00"
Accept-Ranges: bytes
Content-Length: 569
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/tipsy/jquery.tipsy.js
195.225.169.195200 OK 4.4 kB URL HTTP/1.1 www.tgroupsrl.com/js/tipsy/jquery.tipsy.js
IP 195.225.169.195:0
Hash e82a7bca2c561de3790788a01bd2a34f
618e879098c81ae084264ad0ab8f99cc00b3ee21
0e53466218d7ff174e0a083ecce89b1c090c67ccbe55775eddca03e930ff9e35
Analyzer Verdict Alert fortinet Phishing
GET /js/tipsy/jquery.tipsy.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:39 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "1113-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 4371
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/jquery/jquery-1.7.2.js
195.225.169.195200 OK 253 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/jquery-1.7.2.js
IP 195.225.169.195:0
Size 253 kB (252881 bytes)
Hash af693f9aea7dae36fb3bef4c9b6e56fb
0d7896e2bb23f88e26e52b22a075350b354df447
1717ea1fde8ceb7584341a24efc85c853083c660a1185968fbf94520f7193de2
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/jquery-1.7.2.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:39 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "3dbd1-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 252881
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/modernizr/modernizr-2.5.3.js
195.225.169.195200 OK 48 kB URL HTTP/1.1 www.tgroupsrl.com/js/modernizr/modernizr-2.5.3.js
IP 195.225.169.195:0
File type HTML document text\012- HTML document, ASCII text
Hash b6438c9bc90d3e87381b574cdf17ae97
86051ff3f018c1a475162597dab27079eef2ec7a
a6db907a7ac399d7e920de4ac4b4a92808542039ba32dc6758637bffb413d56d
Analyzer Verdict Alert fortinet Phishing
GET /js/modernizr/modernizr-2.5.3.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:39 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "bbfa-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 48122
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/lgmotions/lgMotions.js
195.225.169.195200 OK 75 kB URL HTTP/1.1 www.tgroupsrl.com/js/lgmotions/lgMotions.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (560)
Hash 5aa3f8b22524eed0429159ed610867d3
50bc7f582f5cd8e2fc28ecc0736ffb228335a90f
303dea481b3a18be8a65fbed5021b55a5c0bfe380f500b20628af73814d2c308
Analyzer Verdict Alert fortinet Phishing
GET /js/lgmotions/lgMotions.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Tue, 04 Feb 2014 09:51:56 GMT
ETag: "12524-4f19197318700"
Accept-Ranges: bytes
Content-Length: 75044
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/shadowbox/sb-expand.js
195.225.169.195200 OK 1.4 kB URL HTTP/1.1 www.tgroupsrl.com/js/shadowbox/sb-expand.js
IP 195.225.169.195:0
Hash 9c155e6eb444fcb3c1ac2467d0fb6f7e
6ad39c37590266ecfb6bd8cbd1b7c374ffb55d64
122834b4f2047caa15a0d1c7bb5b4842535645aab529dc56d21c0622b5235b09
Analyzer Verdict Alert fortinet Phishing
GET /js/shadowbox/sb-expand.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 27 Jun 2014 10:01:50 GMT
ETag: "57d-4fcce65e7df80"
Accept-Ranges: bytes
Content-Length: 1405
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/jquery/jquery-1.7.2.min.js
195.225.169.195200 OK 95 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/jquery-1.7.2.min.js
IP 195.225.169.195:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32769)
Hash b11ced65f32fedbe9bf81ef9db0f3c94
fdfd441e66831bfb8809e8cb69c2c3cd26b5d7c2
0fb170f24675c84f8228ad6b61d69bf6705030949cc2fec316b3a006eab282f8
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/jquery-1.7.2.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:39 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "17277-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 94839
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/shadowbox/shadowbox.css
195.225.169.195200 OK 2.1 kB URL HTTP/1.1 www.tgroupsrl.com/js/shadowbox/shadowbox.css
IP 195.225.169.195:0
Hash 180958fc4aa9c72ba1935fefd88bd3d8
9e1fc1f1ae716fdecceafe5af31e6a86d087d991
d9d84dfe94152bbea1f700364ff8cfd8c5f0acfe0ac533ff1522741b91054e10
GET /js/shadowbox/shadowbox.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 09 Jul 2015 13:21:01 GMT
ETag: "804-51a71206a0940"
Accept-Ranges: bytes
Content-Length: 2052
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/widget/weather/jquery.weather.css
195.225.169.195200 OK 3.6 kB URL HTTP/1.1 www.tgroupsrl.com/widget/weather/jquery.weather.css
IP 195.225.169.195:0
Hash 68b6fca8def7a44b3cd369207e2b4584
0852ef55bea32efa1edf2388faf6bb38a386805f
f7e991104d694149cc7ea86d9cf5780d623afaf9dc768575dd78491387361012
GET /widget/weather/jquery.weather.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:29:01 GMT
ETag: "e3b-4d8f7f254ad40"
Accept-Ranges: bytes
Content-Length: 3643
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jplayer/mediaelement-and-player.min.js
195.225.169.195200 OK 61 kB URL HTTP/1.1 www.tgroupsrl.com/js/jplayer/mediaelement-and-player.min.js
IP 195.225.169.195:0
File type HTML document, ASCII text, with very long lines (676)
Hash 9b0379045fc5e836da17e0bf429b8511
2f7d830df07e7d88b39a38ac3663f05ae709a182
526318d07f8534aa6de631775c8a965336137759c1c13d8f21802ca34f87ccf7
Analyzer Verdict Alert fortinet Phishing
GET /js/jplayer/mediaelement-and-player.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "edf7-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 60919
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/tipsy/tipsy.css
195.225.169.195200 OK 583 B URL HTTP/1.1 www.tgroupsrl.com/js/tipsy/tipsy.css
IP 195.225.169.195:0
File type ASCII text, with CRLF line terminators
Hash 26f9217e605c9b9a351f632cf39fd972
72a6ee1442890b596348cbe74ff9730c957b4f6e
2ac671bdde3488f7fb257599763565bfe14a51832b779b0f225333071317827c
GET /js/tipsy/tipsy.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "247-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 583
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/authentication/css/authentication.css
195.225.169.195200 OK 4.8 kB URL HTTP/1.1 www.tgroupsrl.com/authentication/css/authentication.css
IP 195.225.169.195:0
File type ASCII text, with CRLF line terminators
Hash 06e4ad31e25f5801581611efb73a7739
982f4df24f7e8947fa4fea6b2a174ce0521fa5cf
4923ffd1ee635b5f4a89c84261885946c34c96eef75c1eaa3d1d3433e8b24b87
GET /authentication/css/authentication.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 17 Aug 2015 08:31:08 GMT
ETag: "12d6-51d7d9f858b00"
Accept-Ranges: bytes
Content-Length: 4822
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/shadowbox/shadowbox.js
195.225.169.195200 OK 38 kB URL HTTP/1.1 www.tgroupsrl.com/js/shadowbox/shadowbox.js
IP 195.225.169.195:0
File type Unicode text, UTF-8 text, with very long lines (24725)
Hash c6da80e568643ec349a8066b8b543f25
17af6c8507e3f871b435404b270d2a53e36c3a06
b6922e3415460cbb35659ed6c59147ce091022c9389e3f064ebc21e93e6407ec
Analyzer Verdict Alert fortinet Phishing
GET /js/shadowbox/shadowbox.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 27 Jun 2014 10:01:51 GMT
ETag: "9676-4fcce65f721c0"
Accept-Ranges: bytes
Content-Length: 38518
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/jplayer/mediaelementplayer.min.css
195.225.169.195200 OK 18 kB URL HTTP/1.1 www.tgroupsrl.com/js/jplayer/mediaelementplayer.min.css
IP 195.225.169.195:0
File type ASCII text, with very long lines (17567), with no line terminators
Hash af5e0694b71fba4c746b3d02e49a57c2
4596d7c1b4673457d5626536d2b724e70b404871
ba8f216a83798cb77272baa442b67f32123a3643b7124bc6589a545fee372c70
GET /js/jplayer/mediaelementplayer.min.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "449f-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 17567
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.all.css
195.225.169.195200 OK 291 B URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.all.css
IP 195.225.169.195:0
Hash e2e606074757dc40da645268e46b7ca5
e48f2d59f1ebe657e401355ca6580a6ae101d064
dff50263f547982eed5a64e041d0f70e67fb663f587f495e6cd3bd031d54fbdb
GET /js/jquery/plugin/themes/base/jquery.ui.all.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "123-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 291
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/admin/css/quick_admin.css
195.225.169.195200 OK 288 B URL HTTP/1.1 www.tgroupsrl.com/admin/css/quick_admin.css
IP 195.225.169.195:0
File type ASCII text, with CRLF line terminators
Hash 01f57e371c06b7887a064f6f8ea48c82
3f5b2858c802f44947a4dd0fad9f0befb655ad74
6f21cf1d202888fe1b8babf27152c3c9d2fa35b4a496993361e890344a035b87
GET /admin/css/quick_admin.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 29 Jul 2015 16:36:18 GMT
ETag: "120-51c062fa0c480"
Accept-Ranges: bytes
Content-Length: 288
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/admin/css/carousel.css
195.225.169.195200 OK 5.8 kB URL HTTP/1.1 www.tgroupsrl.com/admin/css/carousel.css
IP 195.225.169.195:0
File type ASCII text, with CRLF line terminators
Hash 5993503d4f16cc9a3e859f96972befe1
ebfaaa412fd0e6f067787d3f359f97803fc4618e
fb39f37c2eb2ac6ed1a2dfbd18b8b808b16702fd7692b51a2e443acbb80b22d4
GET /admin/css/carousel.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 14 Oct 2013 15:42:24 GMT
ETag: "16d3-4e8b5507df800"
Accept-Ranges: bytes
Content-Length: 5843
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/shoptree/jquery.treeview.css
195.225.169.195200 OK 2.6 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/shoptree/jquery.treeview.css
IP 195.225.169.195:0
File type assembler source, ASCII text, with CRLF, LF line terminators
Hash c32b85f8d9d31eeb0fd13b77ce932239
c14ec1ad19d68103464674a75fd082c538b0217b
cdecd19546af2da2fe27a5e291f25ba47eab98fb48883593421943e26d10c3d9
GET /js/jquery/shoptree/jquery.treeview.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 27 Jul 2015 16:22:30 GMT
ETag: "a09-51bddc297bd80"
Accept-Ranges: bytes
Content-Length: 2569
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/lgmotions/style.css
195.225.169.195200 OK 11 kB URL HTTP/1.1 www.tgroupsrl.com/js/lgmotions/style.css
IP 195.225.169.195:0
Hash e6e85ba1be203c23609c07abe30ba5c1
8855ea8eff8b3833ddb4fa70812d852b7182bd15
d94927395377bff7af6bb647e2fa43add4d25c067f7008dc8896b89696f25da8
GET /js/lgmotions/style.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Tue, 04 Feb 2014 09:51:55 GMT
ETag: "2bcd-4f191972244c0"
Accept-Ranges: bytes
Content-Length: 11213
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/template/vision/style/boxed-light/css/font-awesome.min.css
195.225.169.195200 OK 24 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/css/font-awesome.min.css
IP 195.225.169.195:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (23559)
Hash b5817c1b8a42faa20f79f4acb539307e
b4f48cc5c0dbef33a09ae3b9284a5d16d0baec04
f26f6be1175e23c726ba57a09401ddbb27eb81a30151dba0ff2cc16da29ad7a1
GET /template/vision/style/boxed-light/css/font-awesome.min.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Sat, 25 Apr 2015 12:29:08 GMT
ETag: "5cac-5148ba8c44d00"
Accept-Ranges: bytes
Content-Length: 23724
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/template/vision/style/boxed-light/css/animate.css
195.225.169.195200 OK 42 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/css/animate.css
IP 195.225.169.195:0
File type ASCII text, with very long lines (41626), with no line terminators
Hash 90dfdc0d2b77dabac8cd9afdb19e4385
71200fae11e960fc37e95ad961384e91da162dec
acd4dcf96c8b5f8b2ff506897cbc8f07ba0d30248b6f19b58c66d5a70f132821
GET /template/vision/style/boxed-light/css/animate.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 07 Nov 2014 08:08:54 GMT
ETag: "a29a-5074052eb3180"
Accept-Ranges: bytes
Content-Length: 41626
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/template/vision/style/boxed-light/css/slick.css
195.225.169.195200 OK 3.2 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/css/slick.css
IP 195.225.169.195:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 21bc3ec3cac29f828aaf96573c405ca4
f271f44db3fb0362ae8fef5f17d3352712f5be5a
8724363439a493df8d9f1e2e8bdf7aa947563f1aa60408bea9b77a26fdd34851
GET /template/vision/style/boxed-light/css/slick.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Sun, 26 Oct 2014 10:01:36 GMT
ETag: "c9f-506507fdea000"
Accept-Ranges: bytes
Content-Length: 3231
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/ui/jquery-ui-1.8.18.custom.js
195.225.169.195200 OK 378 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/ui/jquery-ui-1.8.18.custom.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (315)
Size 378 kB (377848 bytes)
Hash cbb5360876c3dd7bc2eecde69aadb9dd
dbf78374db95bf996c284dd860ac7293d5dd59ba
476a696ac63e34bded0a426ee3c13de46e3b00d706a78a50a0e74bd022f2fc61
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/plugin/ui/jquery-ui-1.8.18.custom.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:39 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "5c3f8-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 377848
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/style/boxed-light/css/responsive.css
195.225.169.195200 OK 20 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/css/responsive.css
IP 195.225.169.195:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 4028af1d67cbf58e80a622b60fd9be98
f5342f36484bdc1ea752e32f9226c2f1bc771119
3fcdc83bc079feab1e90d8736e0c09be9003d09aa120936689899e27f10064db
GET /template/vision/style/boxed-light/css/responsive.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2016 15:16:24 GMT
ETag: "4cdc-53c14a1232200"
Accept-Ranges: bytes
Content-Length: 19676
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/cookies/cookiecuttr.css
195.225.169.195200 OK 2.3 kB URL HTTP/1.1 www.tgroupsrl.com/js/cookies/cookiecuttr.css
IP 195.225.169.195:0
File type ASCII text, with very long lines (499), with CRLF line terminators
Hash 48c0dea119121c47215654fe3a53492b
178f000c48fd7ea6cf4297afdf274b439f166ca4
d5ae7870653c60c302f1fc0f0e10b10cdc1f2f1620b39af75d7bfe6b2d433296
GET /js/cookies/cookiecuttr.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 01 Oct 2015 07:21:40 GMT
ETag: "921-52105e5f2c900"
Accept-Ranges: bytes
Content-Length: 2337
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/template/vision/style/boxed-light/rs-plugin/css/settings.css
195.225.169.195200 OK 74 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/rs-plugin/css/settings.css
IP 195.225.169.195:0
File type ASCII text, with very long lines (374)
Hash f03e1133cf495b63bfbe3e8129faf864
95604d951681da233f5d0ba53f478f7bd14f8fb9
115713c457ee42df7f5b7f93c9acc40ffd84afed625d41a918eecb7032dd6ae5
GET /template/vision/style/boxed-light/rs-plugin/css/settings.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 20 Oct 2014 09:52:44 GMT
ETag: "11fe1-505d7ad1cb300"
Accept-Ranges: bytes
Content-Length: 73697
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/config/custom.css
195.225.169.195404 Not Found 215 B URL HTTP/1.1 www.tgroupsrl.com/config/custom.css
IP 195.225.169.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b767ed290acb80e04d35c1b110302a74
f6cab6e37e2ec6cdde0f3a8db92dce01c4a999f4
8ae744f820ec109352573377458a694a126ead2c51a3ada481f6984c35a62d94
GET /config/custom.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 404 Not Found
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Content-Length: 215
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.tgroupsrl.com/template/vision/js/waypoints.min.js
195.225.169.195200 OK 7.8 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/waypoints.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (7828)
Hash 25d75c4f7a5c9f07004b9aa186789626
5c41dbe16811f6066f2bffe9c352920f80ced164
5be28b024bbaf7ca8b75a85844de943335b8da1e927818590c8a13a1b3ad3cd9
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/waypoints.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:14:51 GMT
ETag: "1e95-51daaa86e4cc0"
Accept-Ranges: bytes
Content-Length: 7829
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/style/boxed-light/css/style.css
195.225.169.195200 OK 187 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/css/style.css
IP 195.225.169.195:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (471), with CRLF line terminators
Size 187 kB (187170 bytes)
Hash 329dcbe5a565d627024dfa83a3778637
180e2a52074d01ae83069b2f3101b60711baaa94
4533648c9aacd145a5845d9a1a708135756f7874ccadde710e29789d70405d9d
GET /template/vision/style/boxed-light/css/style.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Tue, 25 Aug 2015 07:31:37 GMT
ETag: "2db22-51e1db9676840"
Accept-Ranges: bytes
Content-Length: 187170
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/template/vision/js/jquery.animateNumber.min.js
195.225.169.195200 OK 1.2 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery.animateNumber.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (512)
Hash 49de1d9cd5a5d80eb00193f52070701e
914009b7edd17935712259884bf2b429b0c2d69b
22c54c156f987c758380ee62b2c9e6c88343ffeff54a233aa51dfd237cf1b9c5
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery.animateNumber.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:16:22 GMT
ETag: "4d2-51daaaddad980"
Accept-Ranges: bytes
Content-Length: 1234
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/jquery.min.js
195.225.169.195200 OK 93 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (32072)
Hash 628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Sun, 26 Oct 2014 10:08:40 GMT
ETag: "16bb3-5065099245a00"
Accept-Ranges: bytes
Content-Length: 93107
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/slick.min.js
195.225.169.195200 OK 32 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/slick.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (31658), with no line terminators
Hash 7d727d69022d7296cc3ab6da53b239e5
30d454b344c9833bb42a803be92527cbaf8c71cb
993f13da725dcf21274947780eeb64cba914d8a4e61cf9bc30af31c4a493e840
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/slick.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:14:00 GMT
ETag: "7baa-51daaa5641a00"
Accept-Ranges: bytes
Content-Length: 31658
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/jquery.easypiechart.min.js
195.225.169.195200 OK 4.0 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery.easypiechart.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (3727)
Hash 7659bf9331da37b14e8315f64ab77aca
2c9fcaf675595b7ab0ab12fb8bc23f7bb0fa9564
b2db7e12704dcb41fe79a96a7eb08f816e25a16dd4fa97bb26e6618789e0cb8a
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery.easypiechart.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 12 Jan 2015 14:09:48 GMT
ETag: "f6e-50c750f1fc300"
Accept-Ranges: bytes
Content-Length: 3950
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/rs-plugin/js/jquery.themepunch.tools.min.js
195.225.169.195200 OK 98 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/rs-plugin/js/jquery.themepunch.tools.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (25522)
Hash ff2be50fbaaf60e26cd022218f639822
dc9889af0e3d11dc79521a8d7c231d7c39ffbfd6
bf47bc03c1c1ff93c041eb5a34e4c9471e4e64e0e0c672599f996fc7a972b119
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/rs-plugin/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 17 Nov 2014 08:25:12 GMT
ETag: "180cf-50809b7a00a00"
Accept-Ranges: bytes
Content-Length: 98511
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/jquery.sharrre.min.js
195.225.169.195200 OK 14 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery.sharrre.min.js
IP 195.225.169.195:0
File type HTML document, ASCII text, with very long lines (13990)
Hash 33f5411eaf3331f6c08cca47c786fa01
79aae86c06ebff36c246484e28c23372e08e0e16
1f4655515b39effcf13d370c351856ffd272c07ea53e3bd7141b0f3703c53107
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery.sharrre.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:15:14 GMT
ETag: "36a8-51daaa9cd4080"
Accept-Ranges: bytes
Content-Length: 13992
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/jquery.elevateZoom-3.0.8.min.js
195.225.169.195200 OK 59 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery.elevateZoom-3.0.8.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (390), with CRLF line terminators
Hash 199b5e38a479d15b730ccdeee99a339e
31124d760cc852338c2a5e44afbcabf1943c1dd1
b7af25a889a0d6b399890a056ded7234d2cf043c9262fa2e9f65d583bd1d7275
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery.elevateZoom-3.0.8.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:16:22 GMT
ETag: "e803-51daaaddad980"
Accept-Ranges: bytes
Content-Length: 59395
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/jquery.placeholder.js
195.225.169.195200 OK 5.6 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery.placeholder.js
IP 195.225.169.195:0
Hash 04b5758bb89eb6518641e5dad8d1cdd6
a2734184c980e8e70ac23ba1ec54922e49984e68
8660132161d50d1c43410d03e6214c3a536cf20dcc74b74bb5e8a5a2e61337e4
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery.placeholder.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:15:14 GMT
ETag: "15d7-51daaa9cd4080"
Accept-Ranges: bytes
Content-Length: 5591
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/jflickrfeed.min.js
195.225.169.195200 OK 1.5 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jflickrfeed.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (425)
Hash 14ab0bbf39283eadace525e081863806
fe496b2d0764c9c7b34d7a024f0f0b20ba06ae94
2e6c1cf5d58377f790080f88370e783d474b5841504e57e8595d45903efb3669
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jflickrfeed.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:16:22 GMT
ETag: "5b7-51daaaddad980"
Accept-Ranges: bytes
Content-Length: 1463
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/mailChimp.js
195.225.169.195200 OK 1.2 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/mailChimp.js
IP 195.225.169.195:0
File type ASCII text, with CRLF line terminators
Hash c305909b92bf0d3ee501e2447eba1522
f142b1f0d6c5de5808ffc5184b9eda8f1ef40ffa
d87caceb63af0075bb008ef5080d0e7fa5598d88800d551e0ed134edb1c96256
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/mailChimp.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Sun, 26 Oct 2014 11:58:00 GMT
ETag: "481-5065220260200"
Accept-Ranges: bytes
Content-Length: 1153
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/jquery.nicescroll.min.js
195.225.169.195200 OK 60 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery.nicescroll.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (552)
Hash c8cb28e21fd3f653d1209c03122df8ae
3efdec20196b70b9a4082803646c283e41391f1e
c642d8e0d636b025e7453db72ef0b72ca1ba5adb09f6733d621539e040f2581a
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery.nicescroll.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:16:22 GMT
ETag: "eaa9-51daaaddad980"
Accept-Ranges: bytes
Content-Length: 60073
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/isotope.pkgd.min.js
195.225.169.195200 OK 40 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/isotope.pkgd.min.js
IP 195.225.169.195:0
File type ASCII text, with very long lines (32057)
Hash db898ba34038146291902eab59bb2cbc
87c74a73acc28fffe8a75bee92f5c4a27fed1091
390116032596d27d59c9cc0b07d39f948042d34b94d67beb76ae61f65f368299
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/isotope.pkgd.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:14:51 GMT
ETag: "9b6b-51daaa86e4cc0"
Accept-Ranges: bytes
Content-Length: 39787
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/js/script.js
195.225.169.195200 OK 32 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/script.js
IP 195.225.169.195:0
File type HTML document, ASCII text, with very long lines (308), with CRLF line terminators
Hash 847dbb3910c1fbebd850619ca48218c1
5ca840a28703a9ef87ea9ee7832aab8143fbe57d
83e630488d9ce122e2efdd905cc3b81d70a686c542b78736a96cc2c5d3dd0a80
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/script.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Tue, 18 Aug 2015 10:56:00 GMT
ETag: "7e85-51d93c3725000"
Accept-Ranges: bytes
Content-Length: 32389
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/jquery/shoptree/jquery.treeview.js
195.225.169.195200 OK 7.8 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/shoptree/jquery.treeview.js
IP 195.225.169.195:0
Hash 3f81db67b7a973c8835ef5213e3b93c6
3dbe056bcf85dde8c33c762eca4b2e27d12aad14
3b2101d2ca4cac31324878daf453959fadd4f8d3e55e2f7503d8d0a0b62d9012
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery/shoptree/jquery.treeview.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 14 Oct 2013 15:43:29 GMT
ETag: "1e9f-4e8b5545dca40"
Accept-Ranges: bytes
Content-Length: 7839
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tgroupsrl.com/js/cookies/jquery.cookie.js
195.225.169.195200 OK 1.7 kB URL HTTP/1.1 www.tgroupsrl.com/js/cookies/jquery.cookie.js
IP 195.225.169.195:0
File type ASCII text, with CRLF line terminators
Hash ef7dce4d5236bc0c9adf17c84bf2b4ec
9a6c608630ea362d29efe6a2a979739fefc7405c
0c76429f3252aba0db2298284f3ee14d51b31eac1eabb27e573868bcf1317308
Analyzer Verdict Alert fortinet Phishing
GET /js/cookies/jquery.cookie.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Tue, 16 Jun 2015 08:13:56 GMT
ETag: "695-5189e27d93900"
Accept-Ranges: bytes
Content-Length: 1685
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.theme.css
195.225.169.195200 OK 18 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.theme.css
IP 195.225.169.195:0
File type ASCII text, with very long lines (551)
Hash 7bd1fcfe22cd20de20778cd52faf5da8
517e5099de880fd7838b9bd3a5251bda7a807f6d
62d8d3dc389bcfa8d3d3a5a8796eb3fb357f62b14682cda744b58c320fa897d5
GET /js/jquery/plugin/themes/base/jquery.ui.theme.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.all.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "46d7-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 18135
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/cookies/jquery.cookiecuttr-it.js
195.225.169.195200 OK 16 kB URL HTTP/1.1 www.tgroupsrl.com/js/cookies/jquery.cookiecuttr-it.js
IP 195.225.169.195:0
File type HTML document, ASCII text, with very long lines (556), with CRLF line terminators
Hash 8dd0e1b992d0bd3433dbba3a74009d4c
663c9e047a867234348685c768cdcb5ec45160c0
0dd646d928c23dfbe118cc14b7db270c7b76bacacc14d11414e1f47d07f7b13b
Analyzer Verdict Alert fortinet Phishing
GET /js/cookies/jquery.cookiecuttr-it.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 17 Aug 2015 08:24:20 GMT
ETag: "3dc8-51d7d8733f500"
Accept-Ranges: bytes
Content-Length: 15816
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
195.225.169.195200 OK 427 B URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
IP 195.225.169.195:0
Hash acc3e6efea91c9cb6432c7f727e8a6a7
ce86e1cf7caced5c0072094c36e036d9998f0701
47b6be117e57c2becc867dd137f7444a8924a70c1ce3c4ec732d79c0223a7ac7
GET /js/jquery/plugin/themes/base/jquery.ui.base.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.all.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "1ab-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 427
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tgroupsrl.com/config/custom.css
195.225.169.195404 Not Found 215 B URL HTTP/1.1 www.tgroupsrl.com/config/custom.css
IP 195.225.169.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b767ed290acb80e04d35c1b110302a74
f6cab6e37e2ec6cdde0f3a8db92dce01c4a999f4
8ae744f820ec109352573377458a694a126ead2c51a3ada481f6984c35a62d94
GET /config/custom.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 404 Not Found
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Content-Length: 215
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tgroupsrl.com/template/vision/js/jquery-ui.js
195.225.169.195200 OK 470 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery-ui.js
IP 195.225.169.195:0
Size 470 kB (469691 bytes)
Hash c5bbd69866d79cb046f4c1e64bf4f2b0
0e3ecb0f94d57485101d0fa21c42f4fc9c9bfac8
72cf55b3ef5c7ef6c0d1dd96fbd26c5e73a284db55a35c35a6a1e87b0af1bbcc
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery-ui.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 19 Aug 2015 14:14:51 GMT
ETag: "72abb-51daaa86e4cc0"
Accept-Ranges: bytes
Content-Length: 469691
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.core.css
195.225.169.195200 OK 1.3 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.core.css
IP 195.225.169.195:0
Hash 2863ddae4d821a32f027be40f1d39ee3
e8a6f25a7e54599a34034336172739b45f8401e1
a67e08f8b9d51012b45d2d4c10a502329849730b93d3f64cbe9c125bc9a95099
GET /js/jquery/plugin/themes/base/jquery.ui.core.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "525-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 1317
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.resizable.css
195.225.169.195200 OK 1.2 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.resizable.css
IP 195.225.169.195:0
Hash 2496c4fa5da85c26ae60bb800892ac92
5d3aaee51269623a4d69d17a71a683c1f84e4b12
ba2e79472ddd8ef226db6c38902360775b52a6fdb41a3bfed2eada6d3fd3a0f5
GET /js/jquery/plugin/themes/base/jquery.ui.resizable.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "494-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 1172
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.autocomplete.css
195.225.169.195200 OK 1.1 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.autocomplete.css
IP 195.225.169.195:0
Hash 5eda8eb30b1d8a3da0045f7145057da9
86301faefc4ebb65687d20af30404434345165e8
5116785d741135ddae0e5f45dc18fa10c99ab9e1ebd551f754cc20e3512ec0b1
GET /js/jquery/plugin/themes/base/jquery.ui.autocomplete.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "454-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 1108
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.selectable.css
195.225.169.195200 OK 323 B URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.selectable.css
IP 195.225.169.195:0
Hash 0c2cdbbe0aa3335ac7f5c6a0891b804a
847b27eb425a041e7e78cca117e18e6f9257eeb5
df58f6744dec6aadf10b274f313e5b9fa923bbdc8392626864386d28ff6b6e63
GET /js/jquery/plugin/themes/base/jquery.ui.selectable.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "143-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 323
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.accordion.css
195.225.169.195200 OK 1.1 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.accordion.css
IP 195.225.169.195:0
Hash ebe623af6c7109dbd8396e61dde46162
915dde1192610fabd2f3dac0a9a8e2b69d83bbcb
b539e4e49bc544295400b6af2432515133af9f842399ad5a13f8d8931e579a07
GET /js/jquery/plugin/themes/base/jquery.ui.accordion.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "42a-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 1066
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.button.css
195.225.169.195200 OK 2.5 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.button.css
IP 195.225.169.195:0
Hash 5a5b83006ff73e4f301a93cad59f11da
cd4b6aeb7d269bbd1a09a7abf794cdcb0bac05f6
b6883299c3d3152bb389cf1891a6b3680fa43e740970c99f9d7cb2ef22ebc4e8
GET /js/jquery/plugin/themes/base/jquery.ui.button.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "9ba-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 2490
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 14 Sep 2022 21:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 14 Sep 2022 21:10:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: f6AiWXrNaOB8-Ph928zGqvo3j0Cj8fttqYxNA5zXLjvmF3ndKtqqew==
Age: 2124
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.dialog.css
195.225.169.195200 OK 1.4 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.dialog.css
IP 195.225.169.195:0
Hash 19e65ae7f882b468a5abcff1b60dcb63
6496243928f260620bbad5440724ea21b1c604f4
e88b98ae9e7861ba27ac35185b92656e16a4f2762ba483212ce6d90bf0db9f3c
GET /js/jquery/plugin/themes/base/jquery.ui.dialog.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "54e-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 1358
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.slider.css
195.225.169.195200 OK 1.1 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.slider.css
IP 195.225.169.195:0
Hash 47c7a1f66c9711dd78893281d39752ed
7cc20be3387f71b3482fdbfb4a5422c2d089ced1
b39ffd22ab4b2d2866ad094f9776fb09a84c7da1bd596375ba90eccbaaf14e3e
GET /js/jquery/plugin/themes/base/jquery.ui.slider.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "474-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 1140
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css
www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.tabs.css
195.225.169.195200 OK 1.4 kB URL HTTP/1.1 www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.tabs.css
IP 195.225.169.195:0
Hash 0bade1e4d787a94a4b5a09ad970a64b5
6a54ace4e5c0e6521ebcd909b260b119d9c12f08
5705067b04a9723496336e0230d78363dc32ef4a1065199d2c0f0a2e7cbef57d
GET /js/jquery/plugin/themes/base/jquery.ui.tabs.css HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/js/jquery/plugin/themes/base/jquery.ui.base.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:28:59 GMT
ETag: "567-4d8f7f23628c0"
Accept-Ranges: bytes
Content-Length: 1383
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Philosopher
142.250.74.10200 OK 4.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Philosopher
IP 142.250.74.10:0
Hash 0021d141639462c8c375e4d489bc34f4
ed67010e9d922ec1584cee2c028f5ec726b0d806
109ee436dcfb1162edb7004696903b6811bc62e3058b0ede685f6660dfadecc1
GET /css?family=Philosopher HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Handlee
142.250.74.10200 OK 641 B URL HTTP/2 fonts.googleapis.com/css?family=Handlee
IP 142.250.74.10:0
Hash 9b37342fbef38a8a9630a8ee9ca8319c
a201c23ce94b00c2162c74563d4cf52d6897dfb2
1baaadea85219ec8721da3cc769fba454686f5fd05d9b8f3351ea68c625d2f86
GET /css?family=Handlee HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tgroupsrl.com/template/vision/js/jquery.mb.YTPlayer.js
195.225.169.195200 OK 472 B URL HTTP/1.1 www.tgroupsrl.com/template/vision/js/jquery.mb.YTPlayer.js
IP 195.225.169.195:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/js/jquery.mb.YTPlayer.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 20 Aug 2015 10:59:45 GMT
ETag: "d58a-51dbc0c8a4a40"
Accept-Ranges: bytes
Content-Length: 54666
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
www.tgroupsrl.com/template/vision/style/boxed-light/images/patterns/bg1.jpg
195.225.169.195404 Not Found 255 B URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/images/patterns/bg1.jpg
IP 195.225.169.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f67a5db5cf35f182e1952cade22abb4b
9b626af51fb9724aba29233225111c75af832709
69a55d88995f3e108e7e6ba957d0c2758cea63a85c74aedea7453380e0a1d5e7
GET /template/vision/style/boxed-light/images/patterns/bg1.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/template/vision/style/boxed-light/css/style.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 404 Not Found
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Content-Length: 255
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_009.jpg
195.225.169.195200 OK 100 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_009.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=1936, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone 4, orientation=upper-left, width=2592], baseline, precision 8, 1120x500, components 3\012- data
Hash fb8c1463d51028445a571c5e1150a20c
9eced241799b4c678c3e732e163110afe6c711be
43a0d14dce9d59fbadec6a977d617d87520e8da0eba3cf09a170a141c324eea3
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_009.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:05 GMT
ETag: "185e9-528d33a4eb340"
Accept-Ranges: bytes
Content-Length: 99817
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_005.jpg
195.225.169.195200 OK 95 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_005.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=13, height=758, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1300], baseline, precision 8, 1120x500, components 3\012- data
Hash 1dd6648a6734774b3a999103f27ef52a
b2efee39d1504113bba4e33596659f49633d838f
bd296634c8f6860d83e38977fe07f9f27c09a45e6c44497a163c8b8c233da1f4
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_005.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:01 GMT
ETag: "173cc-528d33a11aa40"
Accept-Ranges: bytes
Content-Length: 95180
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_003.jpg
195.225.169.195200 OK 69 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_003.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=292, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=564], baseline, precision 8, 1120x500, components 3\012- data
Hash c8a2e41ef3aac43ee4b69b698b9cbacc
3a0e3fa94c9152fe80fc638db91d4ec8cd499dbe
eeb6baae007efe6d78f02cfce19fefaba0bad6bc52058063ae5e6757f7dea72e
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_003.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:00 GMT
ETag: "10c22-528d33a026800"
Accept-Ranges: bytes
Content-Length: 68642
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_004.jpg
195.225.169.195200 OK 75 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_004.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=18, height=321, bps=0, PhotometricIntepretation=RGB, description=Digital Camera, manufacturer=Digital , model=Digital Camera , orientation=upper-left, width=570], baseline, precision 8, 1120x500, components 3\012- data
Hash 12d39775371738d23042becd4c12d98d
7665f41787e4917d67eaabcf81ad6ccb441879c4
f06af463ac259f520ccdbe767f6abacc9f099a37c5177a7c24e440c040e3c5bd
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_004.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:00 GMT
ETag: "12631-528d33a026800"
Accept-Ranges: bytes
Content-Length: 75313
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_010.jpg
195.225.169.195200 OK 100 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_010.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=27, height=1200, bps=338, PhotometricIntepretation=RGB, manufacturer=Panasonic, model=DMC-FX35, orientation=upper-left, width=1600], baseline, precision 8, 1120x500, components 3\012- data
Size 100 kB (100040 bytes)
Hash 9a4f77b4701fea4a5f4d7440509137c9
cacc29a319bfc9e3684faded0e3f7d2cf033eb94
1fa723be0536a3df737b737e0b098aba627842f1d6d1e882aaf5fa5bdc6c3806
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_010.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:06 GMT
ETag: "186c8-528d33a5df580"
Accept-Ranges: bytes
Content-Length: 100040
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_007.jpg
195.225.169.195200 OK 79 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_007.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=768, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1024], progressive, precision 8, 1120x500, components 3\012- data
Hash 281b504e1634cc37f9c92f2b87f77df1
404a1279116936626198efee25361457a1093186
c8729fd1db5c5fe959f544c1b9a535043e98563f80e16f35f9a0900617b7d36f
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_007.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:03 GMT
ETag: "1341d-528d33a302ec0"
Accept-Ranges: bytes
Content-Length: 78877
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_006.jpg
195.225.169.195200 OK 144 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_006.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=20, height=5906, bps=1, compression=bi-level group 4, PhotometricIntepretation=WhiteIsZero, manufacturer=\013Ee\3157\255f\001J`\213\225m\375,2\327w\235N\332\030\353\202\010\204\212\245L\300\363\257.\213K\3045\004\343($\224gI\314\351\332\263\243\274\207\212\242\245\\252\2025\373\346\267\220\021!\202g\252\025\011\204\033\263\336\177\305\361\033X\312\221\331V\\244!e3\303Op\307\351.\377, model=DESIGNJET, orientation=upper-left, width=9449], baseline, precision 8, 1120x500, components 3\012- data
Size 144 kB (144126 bytes)
Hash 38a3c870bdf478c3de9d538480156f30
827d46c73ce5fb5c11e76508fae22f2de6854199
95a626b14b1d2aba417f57af74c560f061a2229e9a9f77b23c283ee77430e498
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_006.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:03 GMT
ETag: "232fe-528d33a302ec0"
Accept-Ranges: bytes
Content-Length: 144126
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_002.jpg
195.225.169.195200 OK 80 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_002.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=28, height=900, bps=350, PhotometricIntepretation=RGB, manufacturer=Panasonic, model=DMC-FX35, orientation=upper-left, width=1200], baseline, precision 8, 1120x500, components 3\012- data
Hash 7e2bff428f1a1a162730045aee76d6a4
94dadbbb0703118d49a0384a947b2eace0e72376
3a56ac4f340c0b554a2d8c0baa7e79f8c09ee645953d7e5775bf5eb16ced738a
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_002.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:15:59 GMT
ETag: "1385b-528d339f325c0"
Accept-Ranges: bytes
Content-Length: 79963
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_008.jpg
195.225.169.195200 OK 83 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_008.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=18, height=900, bps=0, PhotometricIntepretation=RGB, manufacturer=Panasonic, model=DMC-FX35, orientation=upper-left, width=1113], progressive, precision 8, 1120x500, components 3\012- data
Hash 01f09caf5ab29adbd4fbee169c40d565
cc5ab94cbe01be12b074d90051fb1cbac9685319
87811bb8eca4d516433be6739b38886579cd6db88f5176c0ccd04fc20aa7f66f
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_008.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:04 GMT
ETag: "14515-528d33a3f7100"
Accept-Ranges: bytes
Content-Length: 83221
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_011.jpg
195.225.169.195200 OK 63 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_011.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=17, height=1200, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], progressive, precision 8, 1120x500, components 3\012- data
Hash 08d78da5339ab2e49000700640fb80cc
726116af28d315915270fce60a8b55ceb34c2f9c
6c694090ced8929c70d836ca8a7d118bdfd3df9c8127107ef03074a9e413fc2f
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_011.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:07 GMT
ETag: "f695-528d33a6d37c0"
Accept-Ranges: bytes
Content-Length: 63125
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_013.jpg
195.225.169.195200 OK 88 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_013.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=768, bps=194, PhotometricIntepretation=RGB, manufacturer=SAMSUNG, model=EK-GC200, orientation=upper-left, width=1024], baseline, precision 8, 1120x500, components 3\012- data
Hash f3b3cb91bf86beaa1581d8b080890005
9ff0d69c42841d6c83c62a4bd73483f8639fce87
4df145c89cf34ae025bca88ad167b3088511ffc00d13544ba4de0d872d37a5f6
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_013.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:08 GMT
ETag: "158d5-528d33a7c7a00"
Accept-Ranges: bytes
Content-Length: 88277
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_012.jpg
195.225.169.195200 OK 52 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_012.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=768, bps=194, PhotometricIntepretation=RGB, manufacturer=SAMSUNG, model=EK-GC200, orientation=upper-left, width=1024], baseline, precision 8, 1120x500, components 3\012- data
Hash a286c158c9e4c8898e998d4503766529
5ab26dba3b654e2815c8bac0f854ad3fd9e33fb8
a018e543309a241c5d1744e83e0a4e4ff7ff1df8f430677059b525a878427b61
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_012.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:07 GMT
ETag: "cb01-528d33a6d37c0"
Accept-Ranges: bytes
Content-Length: 51969
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_014.jpg
195.225.169.195200 OK 83 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_014.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=1836, bps=194, PhotometricIntepretation=RGB, manufacturer=Sony Ericsson, width=3264], baseline, precision 8, 1120x500, components 3\012- data
Hash 8020be50b2ace5e4431f63072de39dbd
e6662fafc0970c179d468ec9a4e14ddc3a72e106
5541b544655e775b971c48beaf539fae6ea2779b36f4231e194267fda3dec204
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_014.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:09 GMT
ETag: "1432b-528d33a8bbc40"
Accept-Ranges: bytes
Content-Length: 82731
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_015.jpg
195.225.169.195200 OK 93 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_015.jpg
IP 195.225.169.195:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=27, height=900, bps=338, PhotometricIntepretation=RGB, manufacturer=Panasonic, model=DMC-FX35, orientation=upper-left, width=1200], baseline, precision 8, 1120x500, components 3\012- data
Hash 0e0466107af1f1ad15399ddea68452de
58c75ce6ddfd7534ea1c3368a678207513ec78d9
aa7438fcf7b90cded0027905f53d9db9d5ef15a162d7588f3d234f937eb2052b
GET /userfiles/images/01_HOME_PAGE/Homepage_1120x500_IMG_015.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Fri, 08 Jan 2016 14:16:10 GMT
ETag: "169a3-528d33a9afe80"
Accept-Ranges: bytes
Content-Length: 92579
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
www.tgroupsrl.com/authentication/images/down.png
195.225.169.195200 OK 2.9 kB URL HTTP/1.1 www.tgroupsrl.com/authentication/images/down.png
IP 195.225.169.195:0
File type PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash c10b91e516b71d118a60f0df7e26a243
bd9453cf708356baa9caae3882e07090db9d5701
e25c96864510a609d62388dc0c04a6563037110cd607d5b5a720846876917d09
GET /authentication/images/down.png HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/authentication/css/authentication.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Mon, 14 Oct 2013 15:43:20 GMT
ETag: "b60-4e8b553d47600"
Accept-Ranges: bytes
Content-Length: 2912
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6117
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Last-Modified: Wed, 14 Sep 2022 19:56:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tgroupsrl.com/userfiles/images/TGROUP_Sito_Logo_societ_Web_Piccola.jpg
195.225.169.195200 OK 28 kB URL HTTP/1.1 www.tgroupsrl.com/userfiles/images/TGROUP_Sito_Logo_societ_Web_Piccola.jpg
IP 195.225.169.195:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 600x600, segment length 16, baseline, precision 8, 448x335, components 3\012- data
Hash 077c2cddf59292ce78ccf92272707343
c9caa88cefb5609f830e2815331538cca098d518
e17309061524e53d94349a1642614e48fac99ac49f2f1e9a542fb45bcc4266e8
GET /userfiles/images/TGROUP_Sito_Logo_societ_Web_Piccola.jpg HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:41 GMT
Server: Apache
Last-Modified: Wed, 15 May 2013 19:32:13 GMT
ETag: "6c08-4dcc6ce806940"
Accept-Ranges: bytes
Content-Length: 27656
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.tgroupsrl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 08:31:01 GMT
expires: Wed, 13 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 133665
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
142.250.74.163200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19292, version 1.0\012- data
Hash 19007b17e56daa60133bce9e9b352a95
bac1384caeae5762e7a1d8c18037f69c8cd21bc4
fd88a03358ba14440b78c6329717bdf6ed1a9fe97c3ad4e0a0a39d31fb1ac546
GET /s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.tgroupsrl.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 20:03:09 GMT
expires: Tue, 12 Sep 2023 20:03:09 GMT
cache-control: public, max-age=31536000
age: 178537
last-modified: Wed, 27 Apr 2022 16:12:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tgroupsrl.com/template/vision/style/boxed-light/css/fonts/fontawesome-webfont.woff2?v=4.3.0
195.225.169.195200 OK 57 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/css/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 195.225.169.195:0
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/style/boxed-light/css/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.tgroupsrl.com/template/vision/style/boxed-light/css/font-awesome.min.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:41 GMT
Server: Apache
Last-Modified: Fri, 17 Apr 2015 18:56:24 GMT
ETag: "ddcc-513f023028600"
Accept-Ranges: bytes
Content-Length: 56780
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tgroupsrl.com/template/vision/style/boxed-light/rs-plugin/assets/loader.gif
195.225.169.195200 OK 2.5 kB URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/rs-plugin/assets/loader.gif
IP 195.225.169.195:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /template/vision/style/boxed-light/rs-plugin/assets/loader.gif HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/template/vision/style/boxed-light/rs-plugin/css/settings.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:41 GMT
Server: Apache
Last-Modified: Tue, 05 Nov 2013 10:14:02 GMT
ETag: "9f1-4ea6b4aab8e80"
Accept-Ranges: bytes
Content-Length: 2545
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/gif
www.tgroupsrl.com/template/vision/style/boxed-light/rs-plugin/assets/timer.png
195.225.169.195200 OK 125 B URL HTTP/1.1 www.tgroupsrl.com/template/vision/style/boxed-light/rs-plugin/assets/timer.png
IP 195.225.169.195:0
File type PNG image data, 1 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash ba593bd9fc9e07110f3dc74f728b3768
9620e53c9e0a5b5d55e15b23f556e2089e903fc1
a15348b049a18c85702dde38f379aa78d3809af8c07adcf25236c69b03f6f746
GET /template/vision/style/boxed-light/rs-plugin/assets/timer.png HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/template/vision/style/boxed-light/rs-plugin/css/settings.css
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:41 GMT
Server: Apache
Last-Modified: Tue, 05 Nov 2013 10:14:02 GMT
ETag: "7d-4ea6b4aab8e80"
Accept-Ranges: bytes
Content-Length: 125
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 01721134027b8087fcaea01ae7470149
e3d82b3dd35d846d3bd662a0f9b7a51cba2ba864
a7aa0a8736af71aee8a545362876a784954dbb37cda1a2c184c7ef99e14f2b56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 21:38:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.74200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.74:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 21:22:28 GMT
expires: Wed, 14 Sep 2022 22:22:28 GMT
cache-control: public, max-age=3600
age: 978
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.237.51.86101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.51.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R/PzQDqkIMCcTYVsuHFjBA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W4mDl0PIPQkot9xYOfugk5ZG9zU=
fonts.googleapis.com/css?family=Piedra
142.250.74.10200 OK 94 kB URL HTTP/2 fonts.googleapis.com/css?family=Piedra
IP 142.250.74.10:0
File type ASCII text, with very long lines (1613)
Hash c36d06c34779507d682851a314053ef7
f9228c71976a47c8c39bc42fa51236a4daef6819
30bf8c6e2cb2f4fbb05353e8f4bf72e1910ac1402db4a9c54fdd69c6af63d1bc
GET /css?family=Piedra HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Exo
142.250.74.10200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Exo
IP 142.250.74.10:0
Hash e2acb7f1b5bfb871aa40eb8bc51729ab
2e31b272c48e5c1ad67c7ad0579320899613be61
f3365931d921bb7305165bab3acbfed85f44f333a12c2ae0783b8d40069699dc
GET /css?family=Exo HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Merriweather
142.250.74.10200 OK 960 B URL HTTP/2 fonts.googleapis.com/css?family=Merriweather
IP 142.250.74.10:0
Hash 76f8ee6fd8eef05ae597459d1812287b
429a0cea9f41a61c32cad94ad0af51ad4dc94493
cc6250a5c1e9c76bd68cf58afe230a6cddcdfa120e4267f7a512ade5184c6c1f
GET /css?family=Merriweather HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
142.250.74.42200 OK 1.4 kB URL HTTP/2 translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP 142.250.74.42:0
Hash 3ad547ec47ef63d87eff80e53d6dd861
20cd334266b4bc9b47966d5487f0a2b2d41db765
c9b9dc1b30d38db2a72068eb7d8a5d1af32006b64263cab5e89f500f62856ea3
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 14 Sep 2022 21:38:47 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Wed, 14 Sep 2022 21:38:47 GMT
set-cookie: NID=511=MUhHacAK8svPF-Ld95_PACyo210AAIAvTdwHD1Zc0ORE01oqpO8BARJIVDkWlVEwgPC2SBjR1732QFGcdrpPtihgWI6LKIwYVrQT_SHDOOnR8RXvpfR0ycj3ovIwNI_aiq_N8rkVdUzZVBCOrQ8sEoSVh2ibLrNlQNaosOiEBm4; expires=Thu, 16-Mar-2023 21:38:47 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+486; expires=Fri, 13-Sep-2024 21:38:47 GMT; path=/; domain=.googleapis.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10403
Expires: Thu, 15 Sep 2022 00:32:11 GMT
Date: Wed, 14 Sep 2022 21:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10403
Expires: Thu, 15 Sep 2022 00:32:11 GMT
Date: Wed, 14 Sep 2022 21:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10403
Expires: Thu, 15 Sep 2022 00:32:11 GMT
Date: Wed, 14 Sep 2022 21:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10403
Expires: Thu, 15 Sep 2022 00:32:11 GMT
Date: Wed, 14 Sep 2022 21:38:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10403
Expires: Thu, 15 Sep 2022 00:32:11 GMT
Date: Wed, 14 Sep 2022 21:38:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lxwNJTaYrkujzIInoTGcGSAnccefYJ9x4aUjaT3QKN2lmUCrQD7ySg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:11 GMT
age: 4657
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Rx8KX_QI5I2x7q0gcvxcJX7QzZUe2KkfqAUVR64lEujF4xDEWWDhZQ==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:13 GMT
age: 4655
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fef8234ab83f6f8f8b29665f592cbc9f
a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7
569c8c9736026fc310e148d4d74081e96a86245baaa1f784280d44a1cbd25ed0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GPFNoTdF_D8rFf6qKddyxIKzhtfGCW6iib0shChxTPHhZ1OXrzbmnw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 00:47:00 GMT
age: 75108
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c1314c7778ea0d32e8c69dae0c38b6d
c4772b9b182f9f905fead84f3761fe296073ca65
5fc8dc23f9b4d150b834aa69b358edd9f9f5f449607df07d579df66098d8aac6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10366
x-amzn-requestid: e4d41ba8-41c5-4350-bacb-850136434eaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEw28GD7IAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63182e92-4098031d1475d45f4899654b;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 05:39:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TPtgXtWkeCrsnGE_G-_MZj1U046kUiGsRaoGg-xCCavcQqt7p6jdwg==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:19 GMT
age: 4649
etag: "c4772b9b182f9f905fead84f3761fe296073ca65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yP22CSG5x3BVfq29UMdw30TZcvuaL-kUDgjBZDUEMpRVDWqlZrCgdQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:13 GMT
age: 4655
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f5befd5bb8e6d5dad2465be69d5a33e4
e5b46c3ca439a09950290cada1af5e27cede10f2
4dc0a3373fb4c1830c4e2420dddbcbe8dceecf10e969cbe8d02368e41207832c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sXVy7OFoVpLgfEUTqNaYBESwKOhqP9mG-uOb80Ye6bFb518BB-Panw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:20:55 GMT
age: 4673
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.tgroupsrl.com/widget/weather/jquery.weather.js
195.225.169.195200 OK 0 B URL HTTP/1.1 www.tgroupsrl.com/widget/weather/jquery.weather.js
IP 195.225.169.195:0
Analyzer Verdict Alert fortinet Phishing
GET /widget/weather/jquery.weather.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Thu, 28 Mar 2013 08:29:01 GMT
ETag: "15af-4d8f7f254ad40"
Accept-Ranges: bytes
Content-Length: 5551
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Ubuntu
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu
IP 142.250.74.10:0
GET /css?family=Ubuntu HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cuprum
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Cuprum
IP 142.250.74.10:0
GET /css?family=Cuprum HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+801; expires=Fri, 13-Sep-2024 21:38:46 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Syncopate
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Syncopate
IP 142.250.74.10:0
GET /css?family=Syncopate HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Candal
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Candal
IP 142.250.74.10:0
Analyzer Verdict Alert fortinet Malware
GET /css?family=Candal HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Chivo
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Chivo
IP 142.250.74.10:0
GET /css?family=Chivo HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Comfortaa
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Comfortaa
IP 142.250.74.10:0
GET /css?family=Comfortaa HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Mandali
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Mandali
IP 142.250.74.10:0
GET /css?family=Mandali HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Amita
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Amita
IP 142.250.74.10:0
GET /css?family=Amita HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Engagement
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Engagement
IP 142.250.74.10:0
GET /css?family=Engagement HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Imprima
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Imprima
IP 142.250.74.10:0
GET /css?family=Imprima HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Marmelad
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Marmelad
IP 142.250.74.10:0
GET /css?family=Marmelad HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Dosis
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Dosis
IP 142.250.74.10:0
GET /css?family=Dosis HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Quantico
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Quantico
IP 142.250.74.10:0
GET /css?family=Quantico HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Anton
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Anton
IP 142.250.74.10:0
GET /css?family=Anton HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cabin
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Cabin
IP 142.250.74.10:0
GET /css?family=Cabin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cinzel
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Cinzel
IP 142.250.74.10:0
GET /css?family=Cinzel HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Arya
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Arya
IP 142.250.74.10:0
GET /css?family=Arya HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Arimo
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Arimo
IP 142.250.74.10:0
GET /css?family=Arimo HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Share
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Share
IP 142.250.74.10:0
GET /css?family=Share HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Monoton
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Monoton
IP 142.250.74.10:0
GET /css?family=Monoton HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 142.250.74.10:0
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Italianno
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Italianno
IP 142.250.74.10:0
GET /css?family=Italianno HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Orbitron
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Orbitron
IP 142.250.74.10:0
GET /css?family=Orbitron HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Varela
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Varela
IP 142.250.74.10:0
GET /css?family=Varela HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Kalam
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Kalam
IP 142.250.74.10:0
GET /css?family=Kalam HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Satisfy
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Satisfy
IP 142.250.74.10:0
GET /css?family=Satisfy HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Muli
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Muli
IP 142.250.74.10:0
GET /css?family=Muli HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,300,700,800&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,300,700,800&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,300,700,800&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tgroupsrl.com/template/vision/rs-plugin/js/jquery.themepunch.revolution.min.js
195.225.169.195200 OK 0 B URL HTTP/1.1 www.tgroupsrl.com/template/vision/rs-plugin/js/jquery.themepunch.revolution.min.js
IP 195.225.169.195:0
Analyzer Verdict Alert fortinet Phishing
GET /template/vision/rs-plugin/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: www.tgroupsrl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Cookie: PHPSESSID=0tg9ijqd5e7hn9cicccr5bjgo7
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 21:38:40 GMT
Server: Apache
Last-Modified: Wed, 26 Nov 2014 13:23:30 GMT
ETag: "1b9f2-508c2ef003880"
Accept-Ranges: bytes
Content-Length: 113138
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Questrial
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Questrial
IP 142.250.74.10:0
GET /css?family=Questrial HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Boogaloo
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Boogaloo
IP 142.250.74.10:0
GET /css?family=Boogaloo HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Telex
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Telex
IP 142.250.74.10:0
GET /css?family=Telex HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway
IP 142.250.74.10:0
GET /css?family=Raleway HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Fenix
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Fenix
IP 142.250.74.10:0
GET /css?family=Fenix HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tgroupsrl.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 21:38:46 GMT
date: Wed, 14 Sep 2022 21:38:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2