Overview

URL www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440
IP85.234.151.73
ASNSimply Transit Ltd
Location United Kingdom
Report completed2022-07-06 04:38:29 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-06 2 www.tofi.it/alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js Phishing
2022-07-06 2 www.tofi.it/enroll/ScriptLib/md5.js Phishing
2022-07-06 2 www.tofi.it/alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js Phishing
2022-07-06 2 www.tofi.it/alaska/ScriptLib/DotNetScripts_v4.js Phishing
2022-07-06 2 www.tofi.it/alaska/ScriptLib/AriaLib.js Phishing
2022-07-06 2 www.tofi.it/alaska/Scripts/jquery-1.10.2.js Phishing
2022-07-06 2 www.tofi.it/enroll/ScriptLib/md5.js Phishing
2022-07-06 2 www.tofi.it/alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js Phishing
2022-07-06 2 www.tofi.it/alaska/ScriptLib/DotNetScripts_v4.js Phishing
2022-07-06 2 www.tofi.it/alaska/ScriptLib/AriaLib.js Phishing
2022-07-06 2 www.tofi.it/alaska/Scripts/jquery-1.10.2.js Phishing
2022-07-06 2 www.tofi.it/alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js Phishing
2022-07-06 2 www.tofi.it/enroll/ScriptLib/md5.js Phishing
2022-07-06 2 www.tofi.it/enroll/ScriptLib/md5.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (9)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-07-05 04:59:43 UTC 23.36.76.226
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-05 05:12:14 UTC 54.230.111.64
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] ocsp.digicert.com (5) 86 2012-11-29 12:49:49 UTC 2022-07-05 22:46:12 UTC 93.184.220.29
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-05 05:12:14 UTC 35.86.38.2
[Mnemonic Passive DNS] www.tofi.it (42) 0 2019-11-20 05:37:18 UTC 2022-07-06 03:38:25 UTC 85.234.151.73 Unknown ranking
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.7
[Mnemonic Passive DNS] www.alaskausa.org (10) 258465 2017-05-14 01:33:16 UTC 2020-09-09 07:00:54 UTC 107.162.171.161
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-05 12:56:13 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 85.234.151.73

Date UQ / IDS / BL URL IP
2022-07-14 02:35:51 +0000
0 - 0 - 28 tofi.it/alk/zeam.zip 85.234.151.73
2022-07-12 14:44:52 +0000
0 - 0 - 25 www.tofi.it/css/docusign.net/DocuSign/244129d (...) 85.234.151.73
2022-07-12 14:28:46 +0000
0 - 0 - 25 tofi.it/welbin-webcatche/upgrade%20_2%20_1/up (...) 85.234.151.73
2022-07-12 02:11:08 +0000
0 - 0 - 3 tofi.it/ 85.234.151.73
2022-07-07 08:24:06 +0000
0 - 0 - 23 www.tofi.it/alaska/login.php?cmd=login_submit (...) 85.234.151.73
2022-07-06 22:06:42 +0000
0 - 0 - 22 www.tofi.it/alaska/login.php?cmd=login_submit (...) 85.234.151.73
2022-07-06 22:06:40 +0000
0 - 0 - 24 tofi.it/alaska/login.php?cmd=login_submit&id= (...) 85.234.151.73
2022-07-06 15:36:43 +0000
0 - 0 - 23 www.tofi.it/alaska/login.php?cmd=login_submit (...) 85.234.151.73
2022-07-06 15:36:41 +0000
0 - 0 - 24 tofi.it/alaska/login.php?cmd=login_submit&id= (...) 85.234.151.73
2022-07-06 15:11:46 +0000
0 - 0 - 22 www.tofi.it/alaska/login.php?cmd=login_submit (...) 85.234.151.73

Last 10 reports on ASN: Simply Transit Ltd

Date UQ / IDS / BL URL IP
2022-08-16 05:02:28 +0000
0 - 0 - 18 negoziatoriprofessionisti.it/ 151.236.38.116
2022-08-15 20:55:59 +0000
0 - 0 - 16 www.enarmadbandit.org/ 213.229.101.106
2022-08-09 08:39:55 +0000
0 - 0 - 2 agrpartati.info/ 94.76.228.135
2022-08-08 19:47:24 +0000
0 - 0 - 1 151.236.38.234/ffwgrgrgfg10 151.236.38.234
2022-08-08 19:47:21 +0000
0 - 0 - 1 151.236.38.234/ffwgrgrgfg12 151.236.38.234
2022-08-08 19:47:15 +0000
0 - 0 - 1 151.236.38.234/ffwgrgrgfg7 151.236.38.234
2022-08-08 19:47:11 +0000
0 - 0 - 1 151.236.38.234/ffwgrgrgfg6 151.236.38.234
2022-08-08 19:47:04 +0000
0 - 0 - 1 151.236.38.234/ffwgrgrgfg14 151.236.38.234
2022-08-08 19:47:02 +0000
0 - 0 - 1 151.236.38.234/ffwgrgrgfg11 151.236.38.234
2022-08-08 19:46:55 +0000
0 - 0 - 1 151.236.38.234/ffwgrgrgfg3 151.236.38.234

No other reports on domain: tofi.it



JavaScript

Executed Scripts (6)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (72)


Request Response
                                        
                                            GET /alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         85.234.151.73
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:15 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (38668)
Size:   76265
Md5:    3c73eaf1954b5096f5d6e5558afbf1c4
Sha1:   2ec36d5f1c5aa5e58a2716963a5051ad459df138
Sha256: 98a0aaaed2b8232228aafa462444ce4ad732ce5bc96a968bd89a086ed67eed5a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659"
Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5439
Expires: Wed, 06 Jul 2022 06:08:54 GMT
Date: Wed, 06 Jul 2022 04:38:15 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.7
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 06 Jul 2022 03:56:00 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2v9Y6M0K31TBuFLD7X8AOj-96sdGWlKWTUfZ_zlvpfAjv7fST-a8_w==
Age: 2535


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 06 Jul 2022 03:26:46 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o-MRq4VFkw4Ia4VeO7Thky0sCEDY6qhycAZ5R-lvB8xSKgMHMbsDHQ==
age: 4290
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 06 Jul 2022 04:38:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /alaska/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/App_Themes/DefaultTheme/_ControlStyles_v4.css
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

                                        
                                            GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.7
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 06 Jul 2022 04:34:59 GMT
Cache-Control: max-age=3600
Expires: Wed, 06 Jul 2022 04:58:09 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4_Gkms5jtWYzQWl3LeaO2oHnhYxXkOZa8NaAkNtZrO9flmr_b_Nt-g==
Age: 200


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /enroll/ScriptLib/md5.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/ScriptLib/md5.js
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /alaska/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/App_Themes/DefaultTheme/_UtilityStyles_v4.css
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

                                        
                                            GET /alaska/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:15 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1896
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 04:38:16 GMT
Etag: "62c3dd6d-1d7"
Last-Modified: Wed, 06 Jul 2022 04:06:40 GMT
Server: ECS (amb/6BBE)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=93877
Date: Wed, 06 Jul 2022 04:38:16 GMT
Etag: "62c3dd6d-1d7"
Expires: Thu, 07 Jul 2022 06:42:53 GMT
Last-Modified: Tue, 05 Jul 2022 06:42:53 GMT
Server: nginx
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=93877
Date: Wed, 06 Jul 2022 04:38:16 GMT
Etag: "62c3dd6d-1d7"
Expires: Thu, 07 Jul 2022 06:42:53 GMT
Last-Modified: Tue, 05 Jul 2022 06:42:53 GMT
Server: nginx
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 04:38:16 GMT
Etag: "62c3dd6d-1d7"
Server: ECS (amb/6B9C)
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5773
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 04:38:16 GMT
Last-Modified: Wed, 06 Jul 2022 03:02:03 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

                                        
                                            GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

                                        
                                            GET /enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

                                        
                                            GET /angelfish.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tofi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 30 Jun 2022 20:52:57 GMT
Accept-Ranges: bytes
ETag: "2b438260c38cd81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:16 GMT
Content-Length: 8704
Via: 1.1 dca1-bit8010
Vary: Accept-Encoding
Content-Encoding: gzip
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (826)
Size:   8704
Md5:    23acb6d2cd2e079bfe986f0761b957d5
Sha1:   bb1cf7660324be47645c3e239b6fa51faa7421ea
Sha256: ad8da576b2060355b1ed4f753cb2a19ee37bba690f9fff2442a2654e55f235eb
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zKGvJNJ8dw7+E86L7uIP6A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.86.38.2
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hIy0nu745AXJz9j64D8XyoVELIQ=

                                        
                                            GET /js/jsSuite-1.8.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tofi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 302 Object moved
Content-Type: text/html
                                        
Cache-Control: private
Location: /pageUnavailable.asp?status=missing
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:16 GMT
Via: 1.1 dca1-bit8010
Set-Cookie: ASPSESSIONIDAWRTRQRR=EMBCPDICFEKFEFPMNINGIBHF; secure; path=/ TS01682a2f=01775417a245e9393f0a940536dc98d6027d63481af01bea8ae21351d6cc0075ad0045f764dfaa3d8ef629467ca0e1f361c7a997080520d6980a2714b265518e4a4f9675e2; Path=/; Secure; HTTPOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   158
Md5:    a6730c495428d38ee61106108ee68bed
Sha1:   144a27e215f87fb0243fe67383cead4ef9578ff4
Sha256: 4db93ed2a3dc72cfa7326a728841ac519bb13d5a081f4a499193a0ad2191a80d
                                        
                                            GET /alaska/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40705
Md5:    d3a84b26580bd3c14d7c4df2ef6a167a
Sha1:   1ee8a45d5106d6af1b245b2340cf66da9b15b3e4
Sha256: 3b68846418230e9abc7f09c44419eb1afc0da5b1d81276a5bedbf9d26beac724
                                        
                                            GET /alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40707
Md5:    7db2d3dea75159c9816ecbe72d0f98b3
Sha1:   747064dbb3280a503f50b83cdd989f943361f07a
Sha256: 8c6dde77401ee0d10188c82cbe4ec24c7e464142e4b4547ec503dc206e0f6e64

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /alaska/ScriptLib/DotNetScripts_v4.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/ScriptLib/DotNetScripts_v4.js
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/akusa-express.css HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tofi.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Last-Modified: Thu, 30 Jun 2022 20:53:05 GMT
Accept-Ranges: bytes
ETag: "a6b8ae65c38cd81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:17 GMT
Via: 1.1 dca1-bit8010
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   4644
Md5:    825350f09acb37cf5ec0cac6016f5c8d
Sha1:   253d99cb60408d7f60734dcaf60abe848b4281c9
Sha256: 4afa21fd07b5e1574b4637b41e29ae2e93176e941d172c1476ca7fa947f7834e
                                        
                                            GET /alaska/ScriptLib/AriaLib.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/ScriptLib/AriaLib.js
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /pageUnavailable.asp?status=missing HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200
Content-Type: text/html
                                        
Cache-Control: private
Set-Cookie: ss=c; expires=Fri, 05-Aug-2022 04:38:16 GMT; path=/ lst=1527112063; expires=Wed, 06-Jul-2022 04:53:16 GMT; domain=.alaskausa.org; path=/; secure ASPSESSIONIDAWRTRQRR=GMBCPDICOLHCKICFOKGDNMJL; secure; path=/; HttpOnly TS01682a2f=01775417a2e7949af8aec864f0b68d152da3904168a3e894b81a325aafaa33d333a611bb79841f8f6e0fcd2deee7945fb5f1e3ac7c72a9c2da10567cb0cc641dedf15d38f4f0f5a835ebb1b98bfe1ba37c85fb44cf; Path=/; Secure; HTTPOnly TS013395ac=01775417a2a2b54d61aceb49660ff72e6443078095a3e894b81a325aafaa33d333a611bb795cfbe48359a509beaac61c71c11fe69ecdc5cd4d4fb8f1f3376ec068ea843b9f; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:16 GMT
Via: 1.1 dca1-bit8010
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (539), with CRLF, LF line terminators
Size:   12964
Md5:    d187c7b66302b6f799cdb0ac8be09e8e
Sha1:   9424d2fa26d330fc0e884e1cfab74891a04918f4
Sha256: cfbfe97f69b6f3b9117c994e3270be971f4e2936f0970007f1d1982074309556
                                        
                                            GET /alaska/Scripts/jquery-1.10.2.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/Scripts/jquery-1.10.2.js
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40624
Md5:    e473f5293530a98681c6646ed2665392
Sha1:   11b3a85813830496edf5c168f7906a8aed3f6f39
Sha256: 08421087f538daf19fbe9ce998e91683bc21349f17372284603e80e1aff28ca5
                                        
                                            GET /js/jquery-1.11.3.min.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tofi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Thu, 30 Jun 2022 20:55:12 GMT
Accept-Ranges: bytes
ETag: "e748d5b0c38cd81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:17 GMT
Via: 1.1 dca1-bit8010
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038)
Size:   45711
Md5:    cf54b56dbd2adb27eb44fe6defb747e6
Sha1:   78e81335c5c317f9d56877d2f011a74a50910dd8
Sha256: 9256346dc8067ab6665a68fe1590b676d13f8ecd353fa2676ec372a2f3338a94
                                        
                                            GET /enroll/ScriptLib/md5.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40707
Md5:    8171633a922ca7e08aa587494613ac30
Sha1:   80d5570fba8536ace36674336574ecfeffd0bfbb
Sha256: 02ecc72b75a2f23a3dfd03447be2c9e2fcc16b4f5addfe137cb75042d136334c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /alaska/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40707
Md5:    04a665e6df5837ef658252a53d61c3d4
Sha1:   b2d59fef354c8b131ce58c0d758dbc12726c1382
Sha256: 21a9bf24197b3395e60922047d9431351da916d093879932cd7b231aca91adda
                                        
                                            GET /alaska/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:16 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40706
Md5:    7e8ce1a649912dccd4d37d95ed7e695c
Sha1:   8635ffc86b6091cffc653539ac32dff1ab8cb057
Sha256: 54878beaa011f14d5cb7214a1bef5d2e51f8c6081a3112584fd32f80c7f26add
                                        
                                            GET /images/nav/akusafcu_logo.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tofi.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 30 Jun 2022 20:53:14 GMT
Accept-Ranges: bytes
ETag: "82cff96ac38cd81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:17 GMT
Content-Length: 16228
Via: 1.1 dca1-bit8010


--- Additional Info ---
Magic:  PNG image data, 220 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size:   16228
Md5:    dc43cc5c96d54639189781edf322cac9
Sha1:   26c53d9c975f997481520a336ac5f6a22f115c74
Sha256: 6ceabe544edbb8513733f30b14c1d17a2fa51e461f972c31d17e5450d4718603
                                        
                                            GET /images/nav/EHL_2016_gray.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tofi.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 30 Jun 2022 20:55:05 GMT
Accept-Ranges: bytes
ETag: "9298e0acc38cd81:0"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:17 GMT
Content-Length: 3317
Via: 1.1 dca1-bit8010


--- Additional Info ---
Magic:  PNG image data, 55 x 59, 8-bit colormap, non-interlaced\012- data
Size:   3317
Md5:    859cf2ed8319f4931c1e2371bee8b46d
Sha1:   ff866fe6e3071999e6c057dae5aed927aefd047f
Sha256: 1c7cd686a01f2dcffc1f55119624e9166300721172b4e7ad284ff734bc8db0a1
                                        
                                            GET /images/images.asp?ref=NCUA_2016_gray.png HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tofi.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200 OK
Content-Type: image/x-png
                                        
Cache-Control: private
Expires: Wed, 06 Jul 2022 04:38:18 GMT
Content-Disposition: filename="ncua_2016_gray.png"
Set-Cookie: lst=469098879; expires=Wed, 06-Jul-2022 04:53:16 GMT; domain=.alaskausa.org; path=/; secure ASPSESSIONIDAUCAARBT=CDPBCNDCMONHDDHBINBDLKCN; secure; path=/; HttpOnly TS01682a2f=01775417a2a0b2e60499f3ba77f1ac4660b01791f7aa28325f83f13f488553acf90fbf9726640b9f65652ceef81cf7554fe3d4618a41b3de57f01857b4c9be1d097ed0a1de; Path=/; Secure; HTTPOnly TS013395ac=01775417a2d27f0be4a451fac129bdde678a191f80aa28325f83f13f488553acf90fbf972604dc5c1b0a259b10e732f28a31a53332efbb47cdbbf9de3efd9a599da3fede49; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:17 GMT
Connection: close
Via: 1.1 dca1-bit8010
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  PNG image data, 146 x 65, 8-bit colormap, non-interlaced\012- data
Size:   4280
Md5:    38b7240d957be9f71b5271246fb01f67
Sha1:   9007e7baf8e357ac11c8541c871e48960c8d9f30
Sha256: d6641292ca4109173a6ca88b1353f0a6edeaad1c5f90e4c69c6999943109a878
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9071
Expires: Wed, 06 Jul 2022 07:09:29 GMT
Date: Wed, 06 Jul 2022 04:38:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9071
Expires: Wed, 06 Jul 2022 07:09:29 GMT
Date: Wed, 06 Jul 2022 04:38:18 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9071
Expires: Wed, 06 Jul 2022 07:09:29 GMT
Date: Wed, 06 Jul 2022 04:38:18 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24a4e9ec-f2d8-496d-8bf5-4a09a1c529ac.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6451
x-amzn-requestid: 1aea88d2-bb3a-4c4d-9ad9-bcc717493d29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BtlHJ1IAMFlVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4aff0-2fe5fbde52a985f4692b5d86;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ay1wAs7K4Qj0kFA5gLmh2a7FBkMA-WvBsh68bB7OwRHreBVUDyl-kA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 22:12:24 GMT
etag: "9ab38400f242963b5e02b94fbdc7757dfe3b99f9"
content-type: image/jpeg
age: 23154
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6451
Md5:    be33cac352975a54b76edc4da7656a91
Sha1:   9ab38400f242963b5e02b94fbdc7757dfe3b99f9
Sha256: d29bdd7fcc9bfe862ff29fa52089ad9670141cef385d4bc7926ceb6e43612fba
                                        
                                            GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40627
Md5:    f8d387bf7ff8d1b29e912637c7b8f0f5
Sha1:   34ca75a362bd0e9acb4d10a0b7ee8d3f0be1bb61
Sha256: c9ae5eefa2bb3fde6b50c8bc84220c53e4c995a09b6462d74b61496d895e06f7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde8f4008-69f3-4766-a957-006ebc39d2e4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9047
x-amzn-requestid: 8e0eccf9-7f3e-4333-a5d7-a35dd0e068eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BU0HNmoAMFaQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af51-1d81f8e10200694125ede95f;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:25 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4HkBGv-aAOwIfyBaFSIlfMPFqYYUaIDzTfUADctfm1g3COtQS_UojA==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:58 GMT
age: 24440
etag: "7aa6cd994a565c8b6832d48c1e36b17f33621e90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9047
Md5:    bb2f16af747cd633f71de1966771b532
Sha1:   7aa6cd994a565c8b6832d48c1e36b17f33621e90
Sha256: b61a354007e630a3be3ae0c2c2336d3dd71cec02eab7b4234ebb40f69561acf0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb6c586-bb86-4a54-bd48-f2b5da763e74.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7117
x-amzn-requestid: 7cfe344b-f098-4260-bb50-6574786e6ee2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BW8HnbIAMFkrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af5f-14a960ac060d2d120cb0ad7c;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0F6ZVkqKywgjh9Qa1DJw_-rdOLcc1tzEll0J58NeawksoIu9nY1a-g==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:32 GMT
age: 24466
etag: "01efbdf6b2ab79332bf6a22d36472e294732aa17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7117
Md5:    b4ead2bdcbc998a5685d65a26e40ce1a
Sha1:   01efbdf6b2ab79332bf6a22d36472e294732aa17
Sha256: 04399a91345db4f89bdbbb9ddb30db0f2a0c29654491b38bb1a30bd40c4f3e48
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3138a2a5-6ce8-4465-8dff-7307ebdd802f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 13276
x-amzn-requestid: dce1c67f-c737-4247-9322-64e53683db76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Uo2PPFQuIAMFWPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c0372e-34f94a46660e3da478d8dc20;Sampled=0
x-amzn-remapped-date: Sat, 02 Jul 2022 12:16:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WTUH5lb3m_h2w5SPh5Jz9uFENg_0kger2oF8BRog11H-Fi19NA3gyA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 12:51:05 GMT
age: 56833
etag: "7e5a550bbbac49269cae75ce9bb92e8fdf77b086"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13276
Md5:    95aa230a6b516a252f3815c586803c15
Sha1:   7e5a550bbbac49269cae75ce9bb92e8fdf77b086
Sha256: fc3c49de063a4e13c64e799664fa6c7ccf6e42aac5973aaf1af2b7689338f3b9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabd9505b-43dd-4a15-95da-d320727bc76c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7381
x-amzn-requestid: 7d7f3d3b-e16a-48bd-8df6-62e2eed518db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UyBSIE-KIAMFegQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c3e273-4aac4b85691586656b440662;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 07:04:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: D2XIbeEoynUyeLDaTTx-rojkLM42l1GbQGkXcc03kLeOZayVRKqlDw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 07:20:11 GMT
age: 76687
etag: "0e711cdffbe58041b6567ff9475af3820529038f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7381
Md5:    a419e897adcc5361b4b5000e3f5cef87
Sha1:   0e711cdffbe58041b6567ff9475af3820529038f
Sha256: 8e0c6cecaaf6701faa8b1c2d0a925102074e5ef35b697a3f8e44c0ee75415d40
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa84f597b-27f5-4aa5-a416-9b7af03690c1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5579
x-amzn-requestid: 1dd88ff3-004d-4979-9b03-c67dd1674eed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UyBktHjloAMFyag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c3e2ea-774b45f11971772d475320bf;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 07:06:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: IhR8lAxRY1o4VDRqN2Cn2eP_WLH2M0iCGMHpRmB0oUuoKpwu0aOgeA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 07:16:48 GMT
age: 76890
etag: "88adaa91cabcf87f2b679e051c1da464cb297c00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5579
Md5:    2ef62ce237842260bf38afba9e210e79
Sha1:   88adaa91cabcf87f2b679e051c1da464cb297c00
Sha256: e00daace4e4d73799343aee18cbc8c64735221636908b8760bbc52a4d84353b0
                                        
                                            GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40624
Md5:    e0cffe310a3d8d8d9aebb13ea15c3df5
Sha1:   5f844a74973a5fc5d68535b9e25057b5c76e8982
Sha256: 836e6a91b98456637e80a133ce968ca807de07429eb9b29430bcaf48fda8a374
                                        
                                            GET /enroll/ScriptResource.axd?d=JnUc-DEDOM5KzzVKtsL1tcXbu1D4Hj6yCmHmr9cM66AViK3ia2ZDHVT7KW47KHMyBMtKHFfS1WB4puAzjXwId5XQy_jrygJTcv1Xors3xQgEJuGStAVwV63p2PylRvqJXzAeOswFDaHhtAK0W-ax5ffg3ZOYXYmQ06Ttk8PaI-ZJmv_M0&t=ffffffffa580202a HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40629
Md5:    feadfd4e0143a6afb46213bda5e9a1a6
Sha1:   315e9a1ed23543ee55a1f6e72788f4bc1ce8cc5d
Sha256: 559af4071cab75727f096fabf9f68146fb7e9da82f3f58c58a8ff7183ae1ecf4
                                        
                                            GET /alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /alaska/ScriptLib/DotNetScripts_v4.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40709
Md5:    a12de9e4c572925543c9cfd72e269dfb
Sha1:   2ba799c11eda3ec8889837ef06d6c63c878515a8
Sha256: e90f9d49815af9a898b0892b2139cda30c18f8e074d62f8ca837629badbb8d02

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /alaska/ScriptLib/AriaLib.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40709
Md5:    d0986e6f1cc371fa319d02eea9ed18f3
Sha1:   fdf44195751e5f84d95ef0aa4e3a7d5abdde2b89
Sha256: d11f779cfdf1a004a920198c5f9250283dd07fc089fbe64472d2c80337e3a9d8

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /alaska/App_Themes/DefaultTheme/ControlImages/close.png HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/App_Themes/DefaultTheme/ControlImages/close.png
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

                                        
                                            GET /alaska/Scripts/jquery-1.10.2.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:17 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40706
Md5:    f89ee54b47542a81245ded3c610a0205
Sha1:   8bc20209d3806fc74dd1f435539db0c5fc7b02c7
Sha256: 0f6fd4c999a100389766b8f2ad8cf4905258ae6574c66bc608e99729b1930480

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /alaska/ScriptLib/jquery/jquery.maskedinput-1.4.1.min.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:18 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40703
Md5:    eb2ecbf302f62259b6120d00236ca6aa
Sha1:   6545e9b70cd270e35d2ac9bd8e6bce582f3d2ae2
Sha256: fbdc81cc3528a9ab6bf9677c761993e16928c6ccb0932b81f4771342e072ef6e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jsSuite-1.8.js HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.tofi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 302 Object moved
Content-Type: text/html
                                        
Cache-Control: private
Location: /pageUnavailable.asp?status=missing
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:19 GMT
Via: 1.1 dca1-bit8010
Set-Cookie: ASPSESSIONIDAUCAARBT=ODPBCNDCFDCICAAGFEOIBMLN; secure; path=/ TS01682a2f=01775417a287c3dccc09dfb85733963271864df9552dd102a9cf2c7cfacd6712b53947828f7243f0e8dd5f723e5a6bed25d0c537693501fc70d9708ef8213e768412e66fa7; Path=/; Secure; HTTPOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   158
Md5:    a6730c495428d38ee61106108ee68bed
Sha1:   144a27e215f87fb0243fe67383cead4ef9578ff4
Sha256: 4db93ed2a3dc72cfa7326a728841ac519bb13d5a081f4a499193a0ad2191a80d
                                        
                                            GET /pageUnavailable.asp?status=missing HTTP/1.1 
Host: www.alaskausa.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         107.162.171.161
HTTP/1.1 200
Content-Type: text/html
                                        
Cache-Control: private
Set-Cookie: ss=c; expires=Fri, 05-Aug-2022 04:38:20 GMT; path=/ lst=1669947775; expires=Wed, 06-Jul-2022 04:53:20 GMT; domain=.alaskausa.org; path=/; secure ASPSESSIONIDAUCAARBT=PDPBCNDCBPLBLCFAHEBPCKJM; secure; path=/; HttpOnly TS01682a2f=01775417a263cf661a3cc91c6501d77a65109aac5066f22f4bd58804f13e3cc47f35311e4b2f2f1f3e54ab84edcac815af1d3ebddd5aa0c022849b146818f6dbdc841d2d6214aea7c3e0dbe7232a113f140fb2f748; Path=/; Secure; HTTPOnly TS013395ac=01775417a232e7365f906fbcdbea6d513baad6175066f22f4bd58804f13e3cc47f35311e4bd1ce9b81ac09d4515ec51bea4348acf4161b88e3d778509ca943a015a33ddc77; path=/; domain=.alaskausa.org; HTTPonly; Secure
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Date: Wed, 06 Jul 2022 04:38:19 GMT
Via: 1.1 dca1-bit8010
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (539), with CRLF, LF line terminators
Size:   12964
Md5:    d187c7b66302b6f799cdb0ac8be09e8e
Sha1:   9424d2fa26d330fc0e884e1cfab74891a04918f4
Sha256: cfbfe97f69b6f3b9117c994e3270be971f4e2936f0970007f1d1982074309556
                                        
                                            GET /alaska/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:20 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/App_Themes/DefaultTheme/_ControlStyles_v4.css
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

                                        
                                            GET /alaska/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:20 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

                                        
                                            GET /alaska/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:20 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/alaska/App_Themes/DefaultTheme/_UtilityStyles_v4.css
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

                                        
                                            GET /alaska/App_Themes/DefaultTheme/_ControlStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:20 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40701
Md5:    5b3b6c7e6f76f498fbcbed34aa36d176
Sha1:   29724c59e03cb859cdb243a41021309dad748166
Sha256: 285d3307501af1b3be07195a1c88d4574977df0a3d4217198c08aada13aadc2f
                                        
                                            GET /alaska/App_Themes/DefaultTheme/_ExternalTemplateStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:20 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40706
Md5:    73b3a4a9a55e1ffc7c66a4184aa2d8ab
Sha1:   fc57055e8f9e9f2c58b38ab0f7e0de9286956948
Sha256: bdab17fbf8d2bf58f63e1361eca72b9c0f1235624177efcf678efee8e820ad4a
                                        
                                            GET /alaska/App_Themes/DefaultTheme/_UtilityStyles_v4.css HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:20 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40704
Md5:    f72ed2921b643a7e0fa1ab74f89629ce
Sha1:   c969514f28c767e433528d9b31e892d88b7909e2
Sha256: a8ee43f7afa37bb7b1ef9f51bfd008db27a01ca4c972ac6f0e32898e7500fdaa
                                        
                                            GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:21 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive

                                        
                                            GET /enroll/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZFXjl5sPyt9kOGWz236FVgWAlp2jOnHz37PrZqhXVhK9g2YwSg2&t=636939665749177621 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:21 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40627
Md5:    80196404c2f4cc199ba6dab3befe2e94
Sha1:   8ca38eb28aa3be1c7d91d29682b44eebb8d8c193
Sha256: aba72eb57c5979088b5c99b6bb20d199615b1fc7251c151a5174d69ec1cbac3e
                                        
                                            GET /enroll/ScriptLib/md5.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:22 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/ScriptLib/md5.js
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /enroll/ScriptLib/md5.js HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:22 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40706
Md5:    b14e008879533099495cf84e1496f212
Sha1:   50332961f45ad6f00f723179d3d40ccb0afeb43d
Sha256: cc877d680a28ae200eb134b4b3eb758246c4ea33f1fd522d36628e0bc24defa4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:22 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive

                                        
                                            GET /enroll/ScriptResource.axd?d=nv7asgRUU0tRmHNR2D6t1EekDsxKEwSZJpikhL_6bvVcyxhDFC5xzBMYL4n2T3xzyjsI9y5GDnWtqEMRDzYwpwEqiv8d0zyvxyVarszwga4VVGDKdqK_TSDL0_zGf2hYrzZ7Qw2&t=4e518d44 HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:23 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40630
Md5:    284c13494e3b86517e5b9e49577876b2
Sha1:   497af192330b050d7f5914bad3c12676d9f54715
Sha256: 036e97105562874d444f1f0ddd0c8587fcd939a31244ba6da50d3bb88d07b5cc
                                        
                                            GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.tofi.it/alaska/login.php?cmd=login_submit&id=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440&session=6462876ffe9fc7d0f275384b7fec94406462876ffe9fc7d0f275384b7fec9440

                                         
                                         85.234.151.73
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:23 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.tofi.it/enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive

                                        
                                            GET /enroll/ScriptResource.axd?d=D9drwtSJ4hBA6O8UhT6CQl5kP-DNk5tqsFSKE4QAx7FiqQUkfG0xcYhM38F4ULHzEsr3ccm3WWC8c21Rx1XAbPd7dZSDwlwAN3FBxOF0-Op5UR1aFNYrVvCtHrsmIFUrjLaB6c2og1ihVr9uj93NAWWK3N01&t=ffffffffa580202a HTTP/1.1 
Host: www.tofi.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.tofi.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         85.234.151.73
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 04:38:23 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.tofi.it/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2401), with CRLF, LF line terminators
Size:   40629
Md5:    3d1ed3a0274d2120c506934525152937
Sha1:   e9620e6cb46142c9b7c2b60daead0370a441e6fe
Sha256: 74c09113065a86d37466d3697e909c689790fd7dccb7ba7cc46faaadd75ab04e