Report - lafinanciale.com/

Report Overview

Submitted URL
lafinanciale.com/
IP
208.82.114.167
ASN
#33322 NDCHOST
Submitted
2022-11-13 23:56:24
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
128

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.7 kB	3.5 kB	142.250.74.3
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	995 B	69 kB	216.58.207.195
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.8 kB	72 kB	34.120.237.76
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	436 B	746 B	142.250.74.10
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.7 kB	7.1 kB	23.36.76.226
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	682 B	1.6 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
lafinanciale.com	unknown			29 kB	1.2 MB	208.82.114.167
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.13.69.101

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed
2022-11-13	medium	lafinanciale.com	Sinkholed

JavaScript (16)

	URL	Size	First Seen	Last Seen
	lafinanciale.com/js/modernizr.custom.js	9.4 kB	2023-03-07	2024-02-23
Pretty URL lafinanciale.com/js/modernizr.custom.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:39 Last Seen2024-02-23 06:10:34 Times Seen87 Hash 51fe68d808b0a6d6f63100daa935e02f afea4bb5aa256136294125d869fc81efb24bd231 c149d82b63fc7d61100c27e5665468f0da79a3c4a55614ffea15448d62701b92 Loading...

	lafinanciale.com/js/portfolio/setting.js	1.3 kB	2023-03-07	2024-02-06
Pretty URL lafinanciale.com/js/portfolio/setting.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:58 Last Seen2024-02-06 03:47:17 Times Seen23 Hash a19c30a7a94c240e11fdea506e91cac2 1d78782f6148e8c556e48034c3cc805ffd49d61c 9843579762f45cf98c8988dd79c1487c12840e4b60f60b91c5b64caab3bf4a99 Loading...

	lafinanciale.com/js/jquery.ba-cond.min.js	532 B	2023-03-07	2024-02-06
Pretty URL lafinanciale.com/js/jquery.ba-cond.min.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:11 Last Seen2024-02-06 03:47:17 Times Seen39 Hash c792cdbd715e6aa28c2642cd2b275fa5 cda9a539c615c9946c4ddecb22d5ad702dcb024f 752e90ae7a06df05aace81f492bdbe7203254ccdcad0898eae04aa79f47d7379 Loading...

	lafinanciale.com/js/bootstrap.js	62 kB	2023-03-07	2024-04-04
Pretty URL lafinanciale.com/js/bootstrap.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:48 Last Seen2024-04-04 00:23:02 Times Seen221 Hash 4c24933a54aa9164ff84cf837821ac85 7f7ba92856cf2869e3f1300f89fc04c94bda73ce d866bfa9ce0720b22d3abb93fbbdcdd94d5c9a8afa4d460c9f81f8aa54d1912d Loading...

	lafinanciale.com/js/jquery.fancybox.pack.js	23 kB	2023-03-07	2024-02-06
Pretty URL lafinanciale.com/js/jquery.fancybox.pack.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:08 Last Seen2024-02-06 03:47:17 Times Seen107 Hash 4f80c485c47e2cfcd3f9e81153af310f a314fba2780389b5aff458b4c8773df848654a21 66a2f53ed8145207071794cee4cfff095bdce6f4e985cf02728a6e1950c8af45 Loading...

	lafinanciale.com/js/google-code-prettify/prettify.js	14 kB	2023-03-07	2024-02-26
Pretty URL lafinanciale.com/js/google-code-prettify/prettify.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:08 Last Seen2024-02-26 11:46:04 Times Seen65 Hash 3a4bca51fe65400664e03b6486331369 04593988a85d70b8eaeca8b148bedbdbc86ce315 77c640329c44673b32bebde6d833266b79e11d215addb2b0aff0451baeef4ab5 Loading...

	lafinanciale.com/js/animate.js	10 kB	2023-03-07	2024-02-06
Pretty URL lafinanciale.com/js/animate.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:58 Last Seen2024-02-06 03:47:17 Times Seen87 Hash 6c26e84b9638b9872c35b23f627e785c ce4d932523c48bdb7d6fec200ba977bf6b774161 c8e4c6333edb35d47565005acc5339e2f134ab26c67f2100d921275baa8d873a Loading...

	lafinanciale.com/js/custom.js	6.1 kB	2023-03-11	2023-03-11
Pretty URL lafinanciale.com/js/custom.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:44:20 Last Seen2023-03-11 11:44:20 Times Seen1 Hash cd8fbf69d8bf0fb1c74e741b9ac526ca 032f44bce6669ef9d7f4381a53326a9954a29341 70fad76e342590396aceb2ee092657de969b6ffefd3dff25d63da1655d68be1a Loading...

	lafinanciale.com/js/jquery.easing.1.3.js	8.1 kB	2023-03-07	2024-04-26
Pretty URL lafinanciale.com/js/jquery.easing.1.3.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-26 14:29:14 Times Seen7096 Hash 6516449ed5089677ed3d7e2f11fc8942 82e40d060bc269a6dde20c3990ca5a4fea6ca754 0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34 Loading...

	lafinanciale.com/js/jquery.fancybox-media.js	5.2 kB	2023-03-07	2024-04-18
Pretty URL lafinanciale.com/js/jquery.fancybox-media.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:09 Last Seen2024-04-18 12:43:08 Times Seen346 Hash 0bb202c2ad55a0d8162dfc732712c3ef a1a07d92c3c3cdbe03fef6d8d52eb4222cb6a0f4 984c09e727b377032a5aa557b62c89b96ab2245a99f44b6bcb6df5f66d239744 Loading...

	lafinanciale.com/js/jquery.slitslider.js	16 kB	2023-03-11	2024-02-06
Pretty URL lafinanciale.com/js/jquery.slitslider.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:44:20 Last Seen2024-02-06 03:47:17 Times Seen9 Hash 634917559b5167000a32c4e011bef5ca 821c990076bdf5d51882057f06b21c4e95201da5 cb85b2265a9b4798bfeb3cfa5c4faed7f823c6b25888798d1e41c6d2ec4c6803 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 16:32:25 Times Seen37096025 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	lafinanciale.com/js/jquery.nivo.slider.js	30 kB	2023-03-07	2024-04-02
Pretty URL lafinanciale.com/js/jquery.nivo.slider.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:23:58 Last Seen2024-04-02 13:57:22 Times Seen365 Hash d3356754fe8c2e45837b1efbfe7d3264 5482c18434d0437310164508c425855df24a5182 2499cc57fb7485383efeea091c6fcb8f48e1efec5462a2558c7cd377c9c55b79 Loading...

	lafinanciale.com/js/jcarousel/jquery.jcarousel.min.js	16 kB	2023-03-07	2024-02-27
Pretty URL lafinanciale.com/js/jcarousel/jquery.jcarousel.min.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:30 Last Seen2024-02-27 09:20:00 Times Seen29 Hash b622983e6a28edfcc59cd012659e5075 f092f7b9968166167bf3ea233956e09bf2832961 6fc1c781d3a209e0e552b6560623c72180fc2ba221f042542e614315f1d471c3 Loading...

	lafinanciale.com/js/portfolio/jquery.quicksand.js	15 kB	2023-03-07	2024-04-16
Pretty URL lafinanciale.com/js/portfolio/jquery.quicksand.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:08 Last Seen2024-04-16 14:06:13 Times Seen160 Hash 3bc84a2b9acf5f6cc1f372a71440d100 313e1f14095ed5ca75c2cc1170f89624a4cdfefb c67a802ec53700c0af5dbc4ef39d2808808ed45eb7a9c44b1250212de4f2b3f5 Loading...

	lafinanciale.com/js/jquery.flexslider.js	56 kB	2023-03-08	2024-02-26
Pretty URL lafinanciale.com/js/jquery.flexslider.js IP 208.82.114.167 ASN #33322 NDCHOST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:05:54 Last Seen2024-02-26 11:46:04 Times Seen85 Hash 0afa39f74c81c2dbbf16acebb5c6c881 8b44818f870781150a72f4cc34005331083c1864 9e7a1412730fc4c5b0f5722472d217ec2e106e0756fe6d97a37b0ea89db35960 Loading...

HTTP Transactions (94)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11997
Expires: Mon, 14 Nov 2022 03:16:10 GMT
Date: Sun, 13 Nov 2022 23:56:13 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b1e969be0f3201087da138cbc8b89f10
d0a27f525f2b242b5dafa157f126c2ba880c8809
f7e5f39372b5adcc30c27e727eee1b19e6d13ed1b54fa1ad67235dc8ee08ac51

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3126
Cache-Control: max-age=127634
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 23:56:13 GMT
Etag: "6370c779-1d7"
Expires: Tue, 15 Nov 2022 11:23:27 GMT
Last-Modified: Sun, 13 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8c15cef160d1514fc977ed4c4e97086c
ffe4ce3199658a1fc7a45d1607df40ef3911621d
db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14065
Expires: Mon, 14 Nov 2022 03:50:38 GMT
Date: Sun, 13 Nov 2022 23:56:13 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 13 Nov 2022 23:44:28 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 705
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: LO+68us8/AGQK3ITRdNDerxcmp79++MoNpCdYsjl48g3MI6znRErREyKpGJzjXZKYCDg3cjsgz8=
x-amz-request-id: 9G39P4D6N8M8NA0P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 13 Nov 2022 23:50:52 GMT
age: 321
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

lafinanciale.com/

208.82.114.167

301 Moved Permanently

707 B

URL HTTP/1.1
lafinanciale.com/
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 13 Nov 2022 23:56:13 GMT
server: LiteSpeed
location: https://lafinanciale.com/

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 13 Nov 2022 23:56:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 13 Nov 2022 23:25:00 GMT
cache-control: public,max-age=3600
age: 1873
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6cb3062ecd5ef7eb99af2b4f53816b63
b99b1c899c4315e52c517ee382a7adb395d23a01
9ee03693839b379b62f9d7cf175e5776d2334ebd7eb70461dd2ab425a73d2df5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EE03693839B379B62F9D7CF175E5776D2334EBD7EB70461DD2AB425A73D2DF5"
Last-Modified: Sat, 12 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 14 Nov 2022 05:56:13 GMT
Date: Sun, 13 Nov 2022 23:56:13 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0a9a357f652868f9317812b8103ba15d
95a90c7a07b591dce7f39c6f9ab27974d1a1ed2a
16fd52c7ee6806455e724f30af8d58630a141a8a3823c48c20b5da3a71f066da

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5481
Cache-Control: max-age=124920
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 23:56:13 GMT
Etag: "6370b3ac-1d7"
Expires: Tue, 15 Nov 2022 10:38:13 GMT
Last-Modified: Sun, 13 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bc49d7a510846ce4c52fc2bcf19c591c
42189d9ddeba55c15da20ab02c8ccad4a8ad7ae2
86ce259086857d53f246aa21f8cb5dc2be85435601b687f727d3a5a2e38ec406

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 23:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

52.13.69.101

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.13.69.101:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4iZa6iksP/pmukSLocqSdg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YGSioz786dBQEcn0PZ+SofEvvBc=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bc49d7a510846ce4c52fc2bcf19c591c
42189d9ddeba55c15da20ab02c8ccad4a8ad7ae2
86ce259086857d53f246aa21f8cb5dc2be85435601b687f727d3a5a2e38ec406

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 23:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lafinanciale.com/css/bootstrap.css

208.82.114.167

200 OK

17 kB

URL HTTP/2
lafinanciale.com/css/bootstrap.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
17 kB (17407 bytes)
Hash
2b4c268e8bd683dcbb0bc8aacf09ca23
15efccc68637dc6397c199a1eb32c8ecaca11ffd
e7965a0efc85788230eaf85653bb7dffc6946c9694d85351dae48cfe9cd74be5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/bootstrap.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17407
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/css/bootstrap-responsive.css

208.82.114.167

200 OK

3.8 kB

URL HTTP/2
lafinanciale.com/css/bootstrap-responsive.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
3.8 kB (3811 bytes)
Hash
b68cb839a7851201f73374862dd4d0de
b97eea3463617eca9d5846c7fada035322494204
57f6ef0a281b49c82a4ef45f55be7036931ceff029d6214ab7ecfd6ab8cd32ed

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/bootstrap-responsive.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3811
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/css/fancybox/jquery.fancybox.css

208.82.114.167

200 OK

1.3 kB

URL HTTP/2
lafinanciale.com/css/fancybox/jquery.fancybox.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
1.3 kB (1291 bytes)
Hash
d0e2c510db253d4a7e5d31d8ca7541e9
c9ad229ac786b6abe98679ef649d01056e0dd2fc
130a22c95d7f606772243e44b1bc3e038ac0ee33c274ad4b7f75b3e1f8426703

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/fancybox/jquery.fancybox.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1291
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/css/jcarousel.css

208.82.114.167

200 OK

712 B

URL HTTP/2
lafinanciale.com/css/jcarousel.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
712 B (712 bytes)
Hash
f90dca967cab8fe859defb68ec0e10d1
442690fbd098761596a2ae2d36405be0444403be
99966d89c7b4337320b3d778bb233c7f121e016e1c5c0868b0bec3b373e129db

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/jcarousel.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 712
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/css/flexslider.css

208.82.114.167

200 OK

1.2 kB

URL HTTP/2
lafinanciale.com/css/flexslider.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
1.2 kB (1174 bytes)
Hash
3c01c95bbd93fe72f484222acc4a6007
5b54206165484185c8d7767d2619b47390ab8f71
8074163b43d8a26f65757146fbd81f067ec4495d9bbcca518b30c14b4ecc79a6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/flexslider.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1174
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/css/style.css

208.82.114.167

200 OK

8.6 kB

URL HTTP/2
lafinanciale.com/css/style.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
8.6 kB (8570 bytes)
Hash
1cecc202659641d4014df9d45fb235b5
b4878071ad3e4323b5ce876655afac076398ae9e
987c02c54e82cd4c887a64f4bf8ae3389749519247411cb5d7c121bf7bed0b91

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/style.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: text/css
last-modified: Sun, 28 Jul 2019 06:48:43 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8570
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/skins/default.css

208.82.114.167

200 OK

1.1 kB

URL HTTP/2
lafinanciale.com/skins/default.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1073 bytes)
Hash
3ad0df0a71423384f5bceefb40f573cc
b0ed70245182a038a996d6a67034a0db4ac167c9
33e25a55c44470993c1b0d4822aa39e4a0021487e98eda9a459d0451743d7f5c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /skins/default.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: text/css
last-modified: Wed, 24 Jul 2019 20:49:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1073
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/layecredit2.png

208.82.114.167

200 OK

9.1 kB

URL HTTP/2
lafinanciale.com/img/layecredit2.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 359 x 135, 8-bit/color RGBA, non-interlaced\012- data
Size
9.1 kB (9143 bytes)
Hash
57ab78ff45eee43db17fd7a374d02436
cd6a507efcab4f2a9f36b6130f47cf049438445d
d31c9f36db4c156d2422cd48759d769181f5f37999461622d3854e5e7db3e02b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/layecredit2.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Sun, 15 Nov 2020 22:42:57 GMT
accept-ranges: bytes
content-length: 9143
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jquery.easing.1.3.js

208.82.114.167

200 OK

1.9 kB

URL HTTP/2
lafinanciale.com/js/jquery.easing.1.3.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
Unicode text, UTF-8 text
Size
1.9 kB (1879 bytes)
Hash
a35b62d32ba0b287ea965779c2f6bac5
203fa9a867f11d1f15d50907e2bf34d26b2ed655
0923840f1a66d89bf1a3754537fe5a5f9957c62bba7e97f8b318b302bfb6fc28

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jquery.easing.1.3.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: application/javascript
last-modified: Sat, 24 Mar 2012 18:00:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1879
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/bootstrap.js

208.82.114.167

200 OK

11 kB

URL HTTP/2
lafinanciale.com/js/bootstrap.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
11 kB (10709 bytes)
Hash
9e0cc75931512b41514a02f36cff9307
86c0fe82ee8eb9c691a3f51b8ef34f180b82dbfc
d31640dc53e80e140aea80b60bf4d7393e4649581f3dd5cfee415f3eeb7ce40c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/bootstrap.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: application/javascript
last-modified: Thu, 28 Feb 2013 20:26:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10709
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jcarousel/jquery.jcarousel.min.js

208.82.114.167

200 OK

4.3 kB

URL HTTP/2
lafinanciale.com/js/jcarousel/jquery.jcarousel.min.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with very long lines (15184)
Size
4.3 kB (4283 bytes)
Hash
d6ab847756542943a276e0d6d76ee04e
519832ec9a164dc62f4c235947970f1969977c9c
30bb22b95fa78be2562c5d80d2ddf8e21651d0c4bec7ab7769e2824d2d07642c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jcarousel/jquery.jcarousel.min.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: application/javascript
last-modified: Sat, 15 Sep 2012 03:01:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4283
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jquery.js

208.82.114.167

200 OK

32 kB

URL HTTP/2
lafinanciale.com/js/jquery.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
Unicode text, UTF-8 text, with very long lines (65416), with CRLF line terminators
Size
32 kB (32189 bytes)
Hash
47ce6fb407c5c59b70740cbba0a93176
8b78c2537d72aae71f848a38f7cfe6269012ba51
5108f929fb2376818f91bafc7f94a9507594a44cfa2f5c58a5b6d307d7a2c187

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jquery.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2013 11:14:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32189
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-01.png

208.82.114.167

200 OK

9.4 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-01.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGB, non-interlaced\012- data
Size
9.4 kB (9389 bytes)
Hash
2ba6af4825e2bb0c948048b793e3f5be
a4cf37b79d3d2e485a620ad4a58622180aa1e4e2
167c33018cb55befc1b4194fbe0e606b17a8ba684241bbddc27b4bd517542b3d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-01.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 9389
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-02.png

208.82.114.167

200 OK

7.0 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-02.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGB, non-interlaced\012- data
Size
7.0 kB (7005 bytes)
Hash
36a858d6528b4330aa4f109bb532ca1f
7100d9a62cf63f58188c2f1641b7b2d88ba981f7
3d417bada5bcdf8cb629d172e3269cbae5bf57a0c04004c310885d4246b38aa4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-02.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 7005
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-03.png

208.82.114.167

200 OK

8.0 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-03.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGB, non-interlaced\012- data
Size
8.0 kB (8032 bytes)
Hash
49036d105a8715479f6e8816dfec96a8
68af169ee9f11f67fb1ee756710838eb04416dd1
05382c9a0667922634130da802f3cce833d317ec67869b478289282df710ddf0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-03.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 8032
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-04.png

208.82.114.167

200 OK

6.1 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-04.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGB, non-interlaced\012- data
Size
6.1 kB (6094 bytes)
Hash
8c768b4ce4f056dc7465bcf92715a37c
ad6e553a04d608afae826450d2721b457ed08ea5
44206275a330481eed5d9b71b0bbd774c397b095429c762780854084b7b87a4f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-04.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 6094
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-06.png

208.82.114.167

200 OK

8.3 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-06.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGB, non-interlaced\012- data
Size
8.3 kB (8264 bytes)
Hash
7698ce5bcee7203515d25a23f8e8d5a3
f7309227bb0e82eea6ffc960146557febf65431c
ab2490cbb42e99807ef44cd2715cdff3bca44f63cf5de791e0e8a4cc92d73599

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-06.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 8264
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-08.png

208.82.114.167

200 OK

8.4 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-08.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGB, non-interlaced\012- data
Size
8.4 kB (8381 bytes)
Hash
ca42fb90b00c45ec6d0a996bdc2bd24a
4ff9f64cb2b8f995654fd62db9ffe69b54f05a4f
ef2a35f202686a27e45441159ca8dcb2c9f69e1ec033535b499d45ac008caac9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-08.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 8381
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-09.png

208.82.114.167

200 OK

9.7 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-09.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGB, non-interlaced\012- data
Size
9.7 kB (9702 bytes)
Hash
d91fb4b768e61deb5c3aec53cfd54ae3
0f17163a77e1778ec3fa48c9bf02d369039c422d
c8b0463d1c7b4649e14dd5f558b097d75aaabd1e08276167076d6a23b711c8de

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-09.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 9702
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/client1.png

208.82.114.167

200 OK

1.7 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/client1.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1721 bytes)
Hash
9e5eef5c40bde4aedb62b545e8c7ce4d
166f23be819bf2fa72a4c7fd4f1876234f65be05
e586e44bf0bc5eb4f665fdd4125722ccc9bfc163ec3d19388f59f4ebcd81ed74

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/client1.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Fri, 03 May 2013 11:44:56 GMT
accept-ranges: bytes
content-length: 1721
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/client3.png

208.82.114.167

200 OK

1.7 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/client3.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1661 bytes)
Hash
292e52b27ec2a8b4b6f6b6fdf744b619
13de786e77d4a4b643b9c209b34b41002a988660
7cd9fdeb5a32d176543e8405dfe120033c5a6f8d6e9497402892be681081742c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/client3.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Fri, 03 May 2013 11:44:00 GMT
accept-ranges: bytes
content-length: 1661
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/client4.png

208.82.114.167

200 OK

2.1 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/client4.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2101 bytes)
Hash
7712543c4beff5962515dcd7626436ff
4361c58f69de5a254af64a825b60c9ee36715a13
79f103eeee74afcd463a6c07e97d483b700690b83177e080692daee6d78b25e8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/client4.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Fri, 03 May 2013 11:45:38 GMT
accept-ranges: bytes
content-length: 2101
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/client5.png

208.82.114.167

200 OK

3.2 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/client5.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
3.2 kB (3165 bytes)
Hash
bd087c545726d93a0554fa438840369d
45ade302f2bfe3e895c8edd6c895130a74220831
69206fd511d2dec9b8aab31519b39834aeda2a5dd8c61cdb292c082a04402b5e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/client5.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Thu, 11 Apr 2013 14:24:54 GMT
accept-ranges: bytes
content-length: 3165
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/33.jpg

208.82.114.167

200 OK

2.0 kB

URL HTTP/2
lafinanciale.com/img/dummies/33.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
2.0 kB (1960 bytes)
Hash
714818a27171d5bf93ec2c1fb0766e76
95c0e16522c6d15d7110be277faf090a2bd12162
f8fcdbbbb1375f8a89984f87b49a2b57acd5fe342923754687c353be33d44309

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/33.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/jpeg
last-modified: Sat, 31 Aug 2019 13:22:10 GMT
accept-ranges: bytes
content-length: 1960
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/langues/fr.png

208.82.114.167

200 OK

536 B

URL HTTP/2
lafinanciale.com/img/langues/fr.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
536 B (536 bytes)
Hash
e81efecf1a1b1d3a17d00a904c5cc3c9
1203894dbfc8363302dc709d852c05a4dd8bf9dc
54df4beda3ad05d5c621511ff15b2882588ff457e36132035d5f21fb29f2a750

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/langues/fr.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 17 Apr 2019 22:33:09 GMT
accept-ranges: bytes
content-length: 536
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/langues/en.png

208.82.114.167

200 OK

1.2 kB

URL HTTP/2
lafinanciale.com/img/langues/en.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1177 bytes)
Hash
33a79546e65bf38629ec0bf90a0bcc3d
5afd0a44d0f4c8cadd3fea1ec866ddeb67e4afdd
9d5579d2ae226889e9cc592035a86cbe20c570edbdeb6394ec7ebc23c4246571

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/langues/en.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Mon, 24 Oct 2016 18:26:22 GMT
accept-ranges: bytes
content-length: 1177
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/langues/es.png

208.82.114.167

200 OK

666 B

URL HTTP/2
lafinanciale.com/img/langues/es.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
666 B (666 bytes)
Hash
5fa381a8eb16d9e673d32980e7fd1710
fc29fbbebe97109ef1d16a0d4a65637d6b725ac8
7b6f223153c8eda1b541326f9cd66aeb53a28801c58c4de751fd2f9f6f1d96ff

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/langues/es.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Mon, 24 Oct 2016 18:25:46 GMT
accept-ranges: bytes
content-length: 666
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/langues/de.png

208.82.114.167

200 OK

868 B

URL HTTP/2
lafinanciale.com/img/langues/de.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
868 B (868 bytes)
Hash
a55f6913265dbdceacbe95ce72e138d1
32d11f19b9db545e3e4b9a78407dd03875d35480
5bc1972a142cce559970e5da2dc13786b282cbd9524cb5f92dd5b3a4e3c245e1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/langues/de.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Mon, 24 Oct 2016 18:26:12 GMT
accept-ranges: bytes
content-length: 868
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/langues/it.png

208.82.114.167

200 OK

536 B

URL HTTP/2
lafinanciale.com/img/langues/it.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
536 B (536 bytes)
Hash
cb2a2c0133218ed487fedb13cb557cef
ea4b442f1bf67762919cea8c2d912e03f8f1ef56
7a09ba2cf9603da25ee59dff5b1e4ddb0fc20453c73375793ee8449f2186597c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/langues/it.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Mon, 24 Oct 2016 18:26:04 GMT
accept-ranges: bytes
content-length: 536
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/langues/pt.png

208.82.114.167

200 OK

869 B

URL HTTP/2
lafinanciale.com/img/langues/pt.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
869 B (869 bytes)
Hash
9bd01a2b808b73210521fa4d2a94b24b
3201f77ffad1cdfd5c7e8ea6ecf6a12f0db47da5
fb68cad25a51cefbdf5a139cf3dee033013cb0847fc1f17548cc32ae712c377e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/langues/pt.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Mon, 24 Oct 2016 18:26:38 GMT
accept-ranges: bytes
content-length: 869
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/langues/ro.png

208.82.114.167

200 OK

1.1 kB

URL HTTP/2
lafinanciale.com/img/langues/ro.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1142 bytes)
Hash
9db322295f04ca16058cdf8fac0444a9
4010793112ff4ef2bc862981edcde68d4988ac52
71af64ecde920d61f1c93747de9ad25d870d56a1f1f045e76a6635e36644eae5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/langues/ro.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Fri, 03 May 2019 09:57:03 GMT
accept-ranges: bytes
content-length: 1142
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/client6.png

208.82.114.167

200 OK

2.6 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/client6.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2565 bytes)
Hash
65da2ec10023936e7d05e2ca2f20ddd1
1a75ebe82051d3fc633e2b6f92c83d1ca2ebf1ac
943fe9b77e0097ae7f2c7fc0439d9237895996437c859075acd87fccf4c95168

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/client6.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Thu, 11 Apr 2013 14:28:32 GMT
accept-ranges: bytes
content-length: 2565
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/11.jpg

208.82.114.167

200 OK

19 kB

URL HTTP/2
lafinanciale.com/img/dummies/11.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2017:03:02 16:54:57], baseline, precision 8, 64x64, components 3\012- data
Size
19 kB (19290 bytes)
Hash
5a9a5d924d8db8b408e7648de12653f3
70813f8842e921eb95770e8f73ba5139bd0516b2
91ad854046ffb54fcb8b1bac267d6d12d59ed01f8ca10226f1b3f5ef10aba199

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/11.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/jpeg
last-modified: Sat, 31 Aug 2019 13:12:29 GMT
accept-ranges: bytes
content-length: 19290
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/13.jpg

208.82.114.167

200 OK

17 kB

URL HTTP/2
lafinanciale.com/img/dummies/13.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2017:03:02 16:56:57], baseline, precision 8, 64x64, components 3\012- data
Size
17 kB (17281 bytes)
Hash
e67d5407ed597092dce143d19122d8e2
e7d428259860c5ab523fe4d2717410503462402c
c51e9820852379bda835efcfe27971034a27ee518bb2262e1dc13d951a630bb2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/13.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/jpeg
last-modified: Sat, 31 Aug 2019 13:12:29 GMT
accept-ranges: bytes
content-length: 17281
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/10.jpg

208.82.114.167

200 OK

21 kB

URL HTTP/2
lafinanciale.com/img/dummies/10.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2017:03:02 16:54:09], baseline, precision 8, 64x64, components 3\012- data
Size
21 kB (20679 bytes)
Hash
98d2e39340c3d2b05ca38977334f7363
9e16866502c80682308871278d088efc409d43a0
6f5dacc12f4ce4e24cb02574d96f3234f86697291303c89097c8332e23c21f4c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/10.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/jpeg
last-modified: Sat, 31 Aug 2019 13:12:29 GMT
accept-ranges: bytes
content-length: 20679
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/72.jpg

208.82.114.167

200 OK

1.7 kB

URL HTTP/2
lafinanciale.com/img/dummies/72.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 64x64, components 3\012- data
Size
1.7 kB (1671 bytes)
Hash
d687083e548c07ddc3a25fb37b9ff0a0
86dae4e9784078c7ad1a26cff31d2f54a5b1c73d
9ad13e54948dd18426d3d2db4b7a1e1eb1446b186de08f22404491078c98ada7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/72.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/jpeg
last-modified: Sat, 31 Aug 2019 13:20:14 GMT
accept-ranges: bytes
content-length: 1671
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/slides/nivo/slide1.jpg

208.82.114.167

200 OK

215 kB

URL HTTP/2
lafinanciale.com/img/slides/nivo/slide1.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 1900x600, components 3\012- data
Size
215 kB (214768 bytes)
Hash
b75b2723c6829ee1e71bc899b4c32f1d
64ac663f7a510bf58e0a009d643a865a8231ed5e
be7230ebecfca36e7f9ff4b1443279f00a90734162872e654be5f99c6c91e98f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/slides/nivo/slide1.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/jpeg
last-modified: Fri, 30 Aug 2019 06:34:15 GMT
accept-ranges: bytes
content-length: 214768
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/slides/nivo/slide2.jpg

208.82.114.167

200 OK

197 kB

URL HTTP/2
lafinanciale.com/img/slides/nivo/slide2.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 1900x600, components 3\012- data
Size
197 kB (196940 bytes)
Hash
171c5a85c1a7e76b291b54a30579ece7
846025cf1a80cbb66ce7f1ca328df92a034015b9
839339d4618fe75624f0091f383c8e32fc86b726df1998cd1c8bfc395a5878d3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/slides/nivo/slide2.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/jpeg
last-modified: Thu, 25 Jul 2019 10:27:45 GMT
accept-ranges: bytes
content-length: 196940
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/slides/nivo/slide3.jpg

208.82.114.167

200 OK

467 kB

URL HTTP/2
lafinanciale.com/img/slides/nivo/slide3.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=0], baseline, precision 8, 1900x600, components 3\012- data
Size
467 kB (467449 bytes)
Hash
05acc1f06794485fc32ed9ae86475e44
69892484c0a7bd6bbf2e470e0dd364caa55f94b8
a67aa85006c595dce1402c2bef1fec858945e22459664052b59bb6f74eb727e5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/slides/nivo/slide3.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/jpeg
last-modified: Thu, 25 Jul 2019 10:27:46 GMT
accept-ranges: bytes
content-length: 467449
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12082
Expires: Mon, 14 Nov 2022 03:17:37 GMT
Date: Sun, 13 Nov 2022 23:56:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12082
Expires: Mon, 14 Nov 2022 03:17:37 GMT
Date: Sun, 13 Nov 2022 23:56:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12082
Expires: Mon, 14 Nov 2022 03:17:37 GMT
Date: Sun, 13 Nov 2022 23:56:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12082
Expires: Mon, 14 Nov 2022 03:17:37 GMT
Date: Sun, 13 Nov 2022 23:56:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12082
Expires: Mon, 14 Nov 2022 03:17:37 GMT
Date: Sun, 13 Nov 2022 23:56:15 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93dfd620-9002-46a5-b0e7-f76908157342.jpeg

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93dfd620-9002-46a5-b0e7-f76908157342.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6716 bytes)
Hash
91867304df5ea75d02ae48a94d24b62e
4e1159bd964a4c06ec237c81bb93eb1623aad66e
f946d60d53b9d6c8e11a9d15a8127c7a65cb2fad7b604ab8b007fa0137a9d370

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93dfd620-9002-46a5-b0e7-f76908157342.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6716
x-amzn-requestid: f0c6fef3-c522-4641-afba-96bb3ba25cd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjybzHzXoAMFv5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371644b-75160f836fb48bda59c470a8;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CuPYHc2of7TQ-WsM96Jjoz0CCQ6Z-pLlM8dqc3xK-gYZyPs1-mcRag==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:20:03 GMT
age: 5772
etag: "4e1159bd964a4c06ec237c81bb93eb1623aad66e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11667 bytes)
Hash
032386e5c9dffff1ba1ee5e8a322d438
dd4fd6c803a9b333bace9a541c6bd183d0c56bb9
0e9f559a0aa7e114c5810a27ba243c0da7b44dc0bf7aec2b7ab32b8f0e2b536c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92501a28-163f-4c6e-aed7-d31c29354d1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: 4778d1bd-28c3-4665-89da-046e356087f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyD1HE-oAMF0QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-53c7330c5fd36d3c4d9e6aed;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zAh7IawFpIJIJCMTeWKn99lx_R-88IOn5u8zRTMtzlDYEEqXSOyhGg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:57:55 GMT
age: 7100
etag: "dd4fd6c803a9b333bace9a541c6bd183d0c56bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ae99eef-8784-4c1a-8c91-bd4ef21987a2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7632 bytes)
Hash
f4ac79607215beb845b6e7bf1e92506b
d4ac19f0373649804e9747b30552897a453db42d
ec4691a0573471e50dce4bd5db454dcd0498939aa6d1d9d39a1221ad01578a45

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ae99eef-8784-4c1a-8c91-bd4ef21987a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7632
x-amzn-requestid: 2b3de800-a50f-4872-8a7c-54ec33923739
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjzJYFCdIAMFmLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371656f-1ee2b3f21d22619e3381e1a4;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:45:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Dr0oeNxvib4qjo6CAg6YPyXkypbU5eF6GLLK1mN3jJer6G22pE8jLQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:01:14 GMT
age: 6901
etag: "d4ac19f0373649804e9747b30552897a453db42d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F702f26c8-d862-4990-8495-2cead297cba5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9595 bytes)
Hash
bfd7b84df82a13b2ea007322eab69b77
e2803d3c0c7dfe4c052b3159f2d54cc66a379d5d
c38b65bba8ec8817930831c76c09b4dd620c8f5394d87c3b60e1753a0ee0ef60

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F702f26c8-d862-4990-8495-2cead297cba5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9595
x-amzn-requestid: 4c6840b8-17b3-425e-9b9f-3a44f6a1f53f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjybyH8hoAMFWCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371644b-18076898244705c50282e0c1;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:27 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5hFnfiQW9lh7eMkBGqkHJAkMcokct21U6V7927YNiQTVLdU6Xph1lQ==
via: 1.1 f6fac6150e74e246a088cfa5c1ab6452.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:28:12 GMT
age: 5283
etag: "e2803d3c0c7dfe4c052b3159f2d54cc66a379d5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e07f52c-038a-455c-999e-d73d0eb46026.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7362 bytes)
Hash
558f53737293f89e6ac57744a92fa0af
f943dc15ce5f4b1810d81cb35d03e8961b990abb
33a031ace07e6918493684847ba4b4596ce8cfcd3740d62cc8cc85021f3788e6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e07f52c-038a-455c-999e-d73d0eb46026.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7362
x-amzn-requestid: eee8797a-33b0-43a5-9ea6-d5678b166289
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ3beEiPoAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6c49-48ad19f870be15bd639da9f6;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:25:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tTVFFElm6FsUpU3hgfjA3-PjOf_mcEQ9nsRcT2UhtW4aqwmGOneMiw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 18:09:15 GMT
age: 20820
etag: "f943dc15ce5f4b1810d81cb35d03e8961b990abb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7494 bytes)
Hash
dfc7286992b2cebdf1ebb58f85576e61
a49a1bf9716e32979810931d04d1f84216d096c1
7c5288d4ae39202e00c7fd482faa10b5610d31edf0bba9fc69fa4fc1f422b837

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7494
x-amzn-requestid: b07e424a-c11e-442f-8636-e0670cb6f864
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bd8heGBtoAMFYQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f0e09-7dcda14e5077563d726752ae;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 03:07:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VXu3wEUmBJjK6YiXRFYVAuZ3h-ApKkvK1miRBXpo6faKsx8OOXu0JQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 03:16:13 GMT
age: 74402
etag: "a49a1bf9716e32979810931d04d1f84216d096c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

lafinanciale.com/css/font-awesome.css

208.82.114.167

200 OK

4.2 kB

URL HTTP/2
lafinanciale.com/css/font-awesome.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
4.2 kB (4216 bytes)
Hash
24cce83ca205e2d818032b0259d05891
e7bc6a858e11f9f665aa0348ebd55ec0fcb40ca3
2d62b2e88034b32a8e0ded5570db3bc6c64f06901d9bed57be50b76855ce94c8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/font-awesome.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/css/style.css
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4216
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/css/custom-fonts.css

208.82.114.167

200 OK

3.0 kB

URL HTTP/2
lafinanciale.com/css/custom-fonts.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with very long lines (5656)
Size
3.0 kB (2987 bytes)
Hash
33fdb36fc1a686b09d1866f29e9cdada
2e1c70e1a2fb0ddbbf9396a0f1c99110a4d7df43
9345cdaf52785f851cd43631d9cd6258d81f7ca32f2b1dab7de31e0d1d6f1dbe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/custom-fonts.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/css/style.css
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2987
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/css/overwrite.css

208.82.114.167

200 OK

4.1 kB

URL HTTP/2
lafinanciale.com/css/overwrite.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
4.1 kB (4087 bytes)
Hash
d79a07aac63ab48d5796798f673f5f9c
a4b1b7c3fb54d00cca4138cf9994d30f4eca5163
7b1ae9a5b0005fc90ec3936af860700b15672ce790eca9e726ab010c357f29e7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/overwrite.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/css/style.css
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4087
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/css/animate.css

208.82.114.167

200 OK

5.0 kB

URL HTTP/2
lafinanciale.com/css/animate.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with very long lines (460)
Size
5.0 kB (4996 bytes)
Hash
f304f9c9c6aa2c8023c280b7f5ad9f45
edcea91f52c74fb4736c2281d5bb6967cfb1e670
030b417079d5ae1d82059665263618b4c541fcb94e3085665c8b4fd196415c5e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/animate.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/css/style.css
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4996
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-05.png

208.82.114.167

200 OK

5.6 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-05.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGB, non-interlaced\012- data
Size
5.6 kB (5635 bytes)
Hash
e0983d799d9bd705a96670e8fbb914b2
e771862a9cbdd2f965ee6356942d9b852c7fbf68
53936039674a77254a91cd7add51c1ffa6c41c358d7ea522e42a51fbbb4ddb17

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-05.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 5635
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/client2.png

208.82.114.167

200 OK

1.9 kB

URL HTTP/2
lafinanciale.com/img/dummies/clients/client2.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
PNG image data, 310 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1910 bytes)
Hash
980ac4922c4810606bdbd15321593a26
2eafeccc611e84db3db5ea3332a920f9eaef1fad
8532b344048d44d669c0a7d1e66e965c962db2ec3ad22d87516fd48f8135288b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/client2.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: image/png
last-modified: Fri, 03 May 2013 11:43:24 GMT
accept-ranges: bytes
content-length: 1910
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/12.jpg

208.82.114.167

200 OK

18 kB

URL HTTP/2
lafinanciale.com/img/dummies/12.jpg
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2017:03:02 16:56:05], baseline, precision 8, 64x64, components 3\012- data
Size
18 kB (18545 bytes)
Hash
81ff47310f6243b887e5fba595402a6a
1a1108fe2e588ed61884d6f5c8414b0da8de4e14
4d7a69c2b74014908c1e162672d67e3c97009d4615f25c083aba6135d1f1e3c2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/12.jpg HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: image/jpeg
last-modified: Sat, 31 Aug 2019 13:12:29 GMT
accept-ranges: bytes
content-length: 18545
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jquery.fancybox.pack.js

208.82.114.167

200 OK

8.1 kB

URL HTTP/2
lafinanciale.com/js/jquery.fancybox.pack.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with very long lines (626)
Size
8.1 kB (8105 bytes)
Hash
62cb9e87c6c7d0695fceebe1dc3c8a5d
dbafa669b38a0df8f2c7b684fa9a4818bfcf2b7d
e4c6f6772d18d5f0f26a7dcd0253a4079dcc6e386efe9bda4bc64a129839f287

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jquery.fancybox.pack.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Sat, 20 Apr 2013 14:15:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8105
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jquery.fancybox-media.js

208.82.114.167

200 OK

1.8 kB

URL HTTP/2
lafinanciale.com/js/jquery.fancybox-media.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
1.8 kB (1826 bytes)
Hash
54fb02089ed1482940c5da1bacd9497b
904695cee35b8210c64c9d6e90ce4d18d0e1427b
75e8cdd283f9eaf527533c2978cf6b30cb855d81e7c420faaf03b193baa38e57

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jquery.fancybox-media.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Wed, 16 Jan 2013 02:10:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1826
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/google-code-prettify/prettify.js

208.82.114.167

200 OK

5.9 kB

URL HTTP/2
lafinanciale.com/js/google-code-prettify/prettify.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with very long lines (592)
Size
5.9 kB (5919 bytes)
Hash
c47f42d37ca0935e19dd0f24977302e1
091223ea3084392191516b45d458d9671f82a4dd
4eafaf8d6252ea4189d27acabab36b0bf14a59a6f18e573331b6dd3b91629bc2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/google-code-prettify/prettify.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2013 11:06:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5919
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/portfolio/jquery.quicksand.js

208.82.114.167

200 OK

3.1 kB

URL HTTP/2
lafinanciale.com/js/portfolio/jquery.quicksand.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
3.1 kB (3083 bytes)
Hash
c9fccd3c0574759b4125c218b5d7d5fa
e24ae9eb59151cfc16a87c6364057ebfa109a0b2
35f5487dfe6cbd9d684507c3c5cab8771b821fe41a2fb53e471aa908b3c95174

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/portfolio/jquery.quicksand.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Fri, 22 Jul 2011 11:46:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3083
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/portfolio/setting.js

208.82.114.167

200 OK

568 B

URL HTTP/2
lafinanciale.com/js/portfolio/setting.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
568 B (568 bytes)
Hash
29a37efe2af5a85801c3b8a0548ea1ce
f73b129267d19906853d0494be3d4e9969cbc94a
29d9ee9023f487f2dad7bb18ca2e99756a68b162bd6eec5c9de17481184f099e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/portfolio/setting.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Fri, 17 May 2013 01:25:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 568
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jquery.flexslider.js

208.82.114.167

200 OK

12 kB

URL HTTP/2
lafinanciale.com/js/jquery.flexslider.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with very long lines (325)
Size
12 kB (11735 bytes)
Hash
5bdbd8812f92c45f6e516c266389fa64
1d02246968880cad35d635cc4accc663206fd711
198d9224ba0f94584545344297da656ef641290b8efbcfeb972b8b8285fde5c2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jquery.flexslider.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Thu, 01 Feb 2018 23:43:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11735
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jquery.nivo.slider.js

208.82.114.167

200 OK

4.6 kB

URL HTTP/2
lafinanciale.com/js/jquery.nivo.slider.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with very long lines (386), with CRLF line terminators
Size
4.6 kB (4649 bytes)
Hash
c3c8856a77d254407fa09d9cd0a7cd8f
dcf672dfa0b8953af593e9ed170e5415ec2a4ede
748134724f005d5f24ea62b7b729e542d479fdd7d32afa2ebd36589de085a51f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jquery.nivo.slider.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Wed, 16 Jan 2013 10:47:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4649
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/modernizr.custom.js

208.82.114.167

200 OK

3.9 kB

URL HTTP/2
lafinanciale.com/js/modernizr.custom.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
HTML document text\012- HTML document, ASCII text, with very long lines (9163)
Size
3.9 kB (3892 bytes)
Hash
463122fae5d247f4858666b28b1503fb
94db55173c15b3ac55072d5e52bf1d431cc7a516
8965fa5552b483d091ad213202a1feaf04479d2ada4603c3e079576220fd1e1d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/modernizr.custom.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Wed, 17 Oct 2012 15:41:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3892
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jquery.ba-cond.min.js

208.82.114.167

200 OK

311 B

URL HTTP/2
lafinanciale.com/js/jquery.ba-cond.min.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
311 B (311 bytes)
Hash
4dedc7ceea072a5f5f89f181e28a45e4
13860853222a9fdac99b3f52b158870dfe54bf3e
c358bb1a40e83265d2181e3cf2d74d1a2445240f3b4a1c14b3992326828cd320

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jquery.ba-cond.min.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Sat, 25 Aug 2012 10:33:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 311
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/jquery.slitslider.js

208.82.114.167

200 OK

4.1 kB

URL HTTP/2
lafinanciale.com/js/jquery.slitslider.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
4.1 kB (4107 bytes)
Hash
5986bce3d51a09e2febd7b1282d2d0d7
1fb092fb2d7e778ddeaa5a54ffac76b54643ad86
511c64632dba3ba63f42c1704c59ff113f87d14cc3e64a078c0be762c989911e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/jquery.slitslider.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Sat, 30 Mar 2013 00:37:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4107
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/animate.js

208.82.114.167

200 OK

814 B

URL HTTP/2
lafinanciale.com/js/animate.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
814 B (814 bytes)
Hash
a23b0459aca4e1c82b808291facc328d
9b80ac325840d5a23f57daf06bc7eeac7e0eea99
493ebcf3f63b5b922b8cf8e5104185a0f6310219c6f972ebcd07d1d2ba361ff7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/animate.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Tue, 09 Apr 2013 15:26:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 814
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/custom.js

208.82.114.167

200 OK

1.8 kB

URL HTTP/2
lafinanciale.com/js/custom.js
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text, with CRLF line terminators
Size
1.8 kB (1794 bytes)
Hash
137848231883e4f3fbb764626a029fe9
bc202332ed43686c8344835a51980d3b73d94c4b
dbee1bf2fc35bd1c7c34fe2c93c8d6596a0a6af3f73ff63dbcf2fe86d65808dc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/custom.js HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: application/javascript
last-modified: Thu, 25 Oct 2018 08:17:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1794
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/js/google-code-prettify/prettify.css

208.82.114.167

200 OK

354 B

URL HTTP/2
lafinanciale.com/js/google-code-prettify/prettify.css
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
ASCII text
Size
354 B (354 bytes)
Hash
4887d38562fbede48791860a98d3a41d
dfb13e710813fa227258404db33cccceb3c8c683
1ab946d039e0e95c8b27d148a4cbaa72d117d3c099f72401cee48fb8df4fc476

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /js/google-code-prettify/prettify.css HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/css/style.css
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: text/css
last-modified: Thu, 15 Mar 2018 16:39:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 354
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
35ad471bf7f157abedbe322e59bb00ae
6f8c57f1c20377b6a1f74fd06849705a6370e291
b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 23:56:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
35ad471bf7f157abedbe322e59bb00ae
6f8c57f1c20377b6a1f74fd06849705a6370e291
b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 23:56:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lafinanciale.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 05:42:51 GMT
expires: Fri, 10 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 324804
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/notoserif/v21/ga6Kaw1J5X9T9RW6j9bNfFImajC7.woff2

216.58.207.195

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/notoserif/v21/ga6Kaw1J5X9T9RW6j9bNfFImajC7.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21916, version 1.0\012- data
Size
22 kB (21916 bytes)
Hash
4b63cb477ab7d5e6977a788100ae58d5
c6e58ffe35827e911091dfbe4447b9902406c9d0
b5bc6e295567ab6723e8b71b9cebbaf12239f9a94c804af09e57412ce70c3177

HTTP Headers

GET /s/notoserif/v21/ga6Kaw1J5X9T9RW6j9bNfFImajC7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lafinanciale.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21916
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 03:38:24 GMT
expires: Wed, 08 Nov 2023 03:38:24 GMT
cache-control: public, max-age=31536000
age: 505071
last-modified: Mon, 09 May 2022 19:18:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3723d23fdcd3f3d34132d56faae4428b
4bf9c6e15b8de24fc7387ce145382f9b3e9cb1c8
4bc047ec725bd4d99c9dd4fa11edc91702f722d16e53b5eef0920cb5dc7e7ca8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 13 Nov 2022 23:56:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lafinanciale.com/font/fontawesome/fontawesome-webfont.woff?v=3.0.1

208.82.114.167

200 OK

29 kB

URL HTTP/2
lafinanciale.com/font/fontawesome/fontawesome-webfont.woff?v=3.0.1
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
Web Open Font Format, TrueType, length 29380, version 1.0\012- data
Size
29 kB (29380 bytes)
Hash
21f212f94a9db6a0e3847c921842aa19
1f0bdc58aa59ab954ce78a94e4d0ea94ab436554
a6fb906942932de53852ee244ee3fec27bca0bf63a96421672aa4784851b8d4b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /font/fontawesome/fontawesome-webfont.woff?v=3.0.1 HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://lafinanciale.com/css/font-awesome.css
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: font/woff
last-modified: Thu, 17 Jan 2013 08:25:50 GMT
accept-ranges: bytes
content-length: 29380
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

lafinanciale.com/favicon.ico

208.82.114.167

200 OK

1.2 kB

URL HTTP/2
lafinanciale.com/favicon.ico
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
6600ae7c4787d043576ae32bbbc86080
4b55bfa9948d4cc26cdcaa93eb01eacd4f0f5478
9c89fe2cdef67188706bae47ed496ec03eab2d765f12fcc600126cca9f0cc7e4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:15 GMT
content-type: image/x-icon
last-modified: Sun, 15 Nov 2020 23:33:10 GMT
accept-ranges: bytes
content-length: 1150
date: Sun, 13 Nov 2022 23:56:15 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe28d811-107a-493e-9c36-93a37a7dfe1a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14493 bytes)
Hash
e04eab17e36899c3b3f67f6774d7a842
e4f3a076810adab8f034e34044aced853ffd1d35
45ab81ce9082af29333f76fb84791f2fde2e666a39671984196306f75f332187

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe28d811-107a-493e-9c36-93a37a7dfe1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 14493
x-amzn-requestid: c12b0588-18f2-4444-b5a2-4e066c428c33
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDvEE2IAMF7zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-3242621f173516376089985c;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6Jz5Qqi2FUso3VlVx4Rh8CXcQ_9l0WQDcQeM5wQ9nA5a7yh-VeJaAg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 22:18:50 GMT
age: 5852
etag: "e4f3a076810adab8f034e34044aced853ffd1d35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

lafinanciale.com/

208.82.114.167

200 OK

0 B

URL HTTP/2
lafinanciale.com/
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/7.2.34
set-cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sun, 13 Nov 2022 23:56:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

lafinanciale.com/img/dummies/clients/partner-07.png

208.82.114.167

200 OK

0 B

URL HTTP/2
lafinanciale.com/img/dummies/clients/partner-07.png
IP
208.82.114.167:0
ASN
#33322 NDCHOST

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/dummies/clients/partner-07.png HTTP/1.1
Host: lafinanciale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Cookie: PHPSESSID=a4a8a743afa28f322cdc126ced93cb42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 20 Nov 2022 23:56:14 GMT
content-type: image/png
last-modified: Wed, 24 Jul 2019 22:30:57 GMT
accept-ranges: bytes
content-length: 8937
date: Sun, 13 Nov 2022 23:56:14 GMT
server: LiteSpeed
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Noto+Serif:400,400italic,700|Open+Sans:300,400,600,700

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Noto+Serif:400,400italic,700|Open+Sans:300,400,600,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Noto+Serif:400,400italic,700|Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lafinanciale.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 13 Nov 2022 23:56:14 GMT
date: Sun, 13 Nov 2022 23:56:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations