| info.ciampinobus.com/ | 185.136.89.218 | 301 Moved Permanently | 162 B |
IP185.136.89.218:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 02:18:43 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://info.ciampinobus.com/
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashd4e95d0d8982bcd07804baf6fc88231c 5027abda0875bd2529dd4d6691784c74da71a9ee 373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7388
Expires: Sat, 04 Feb 2023 04:21:51 GMT
Date: Sat, 04 Feb 2023 02:18:43 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashec47f9eed203ae063b9c210009de54a9 19ff156471b9cffbc2432c5b65543bdd18e36271 3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14062
Expires: Sat, 04 Feb 2023 06:13:05 GMT
Date: Sat, 04 Feb 2023 02:18:43 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 01:43:35 GMT
content-type: application/json
age: 2108
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash9a76feabb767086ae0fa54e0ffbf763f 3655d78994a1e9838340669462728b67c8c12e54 bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2240
Expires: Sat, 04 Feb 2023 02:56:03 GMT
Date: Sat, 04 Feb 2023 02:18:43 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3MGeKjXWoCuB/JLQrUMClMjPkw7YsMYKwB1AOHdG6QWCbKRX3SFdeoEQ8LjfIfBphZMzuvgdilI=
x-amz-request-id: SMQDSGRP4XX6R3W3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 01:52:39 GMT
age: 1564
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:43 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 01:49:07 GMT
age: 1777
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf5767b08b0a4dbbdc5053b9d4578a7e7 79339b06deeab237f2a0fc890111d3bb2378b79c e22d5e5b1aaa6701575002f81f153f8406a2fb1fd9b568bd134b94576706f1af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E22D5E5B1AAA6701575002F81F153F8406A2FB1FD9B568BD134B94576706F1AF"
Last-Modified: Wed, 01 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 04 Feb 2023 08:18:44 GMT
Date: Sat, 04 Feb 2023 02:18:44 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashdedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12391
Expires: Sat, 04 Feb 2023 05:45:15 GMT
Date: Sat, 04 Feb 2023 02:18:44 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 35.81.158.34 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.81.158.34:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SYGQYgR0scxA+yFhdCccfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TCGbFrs3guouvGvp+p57RplGT90=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashc181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:18:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashc181c51a9326d56e60915a792c306c2c de1cc0ce1384905e65a9fa9575743091d785e528 b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:18:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| info.ciampinobus.com/wp-content/plugins/cws-svgicons/cwssvgi_f.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 573 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-svgicons/cwssvgi_f.css?ver=6.1.1 IP185.136.89.218:0
File typeASCII text, with CRLF line terminators Hash5e00cd408d64ea4b3b870c9165da4c43 dc3bcae1babb0c43965c77af37b9d8e411cc6a4b 65877c809bce553ad062656f7f89863c96a2b2ff51d25cf874bffab100ed8d96
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-svgicons/cwssvgi_f.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"63-5aa55e788d640"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/css/classic-themes.min.css?ver=1 | 185.136.89.218 | 200 OK | 648 B |
URL HTTP/2info.ciampinobus.com/wp-includes/css/classic-themes.min.css?ver=1 IP185.136.89.218:0
Hash71a8017b8d10dbefeb1e9d545c441ece 5ac5e59fb0b892de76619c74cb993cf61250deb3 9389347b836c115dc3ecbbadca8c6566384cf487c96bb92670da1c47e5ca8337
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 14 Nov 2022 10:24:00 GMT
etag: W/"d9-5ed6ba34dda28"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 | 185.136.89.218 | 200 OK | 1.4 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 IP185.136.89.218:0
Hash6fba5e37b07bc042411ca6327711c574 bd939adb15415c6604f2b3c518b68e4df5cca193 a020f4c60e1d456cff1b94625c1dbefffcb76444ef96f6fd71a91d3107b85168
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 08:52:21 GMT
etag: W/"63d390c5-af3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6661b7263315f5eb3cd2465f671e1fcd b7b5831c6b3ccc41d7a980b6088adc10ff8785f1 eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 15181
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash28099f5ad8a27e5a49a0d1c842486329 d47caba75b363a4c008e5a9a9d0b8e39d9fa4abd 1d798d35ceae594d86fa43aa0ef47b962c52bb1557e17dda9b294bd01f374b3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8352
x-amzn-requestid: 80032cef-14cd-4f56-9830-8c74891ed00f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEqQFDJIAMFspQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8174-6d3310287fc74bb27e9b038a;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:49:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: byr2TaC2xnnUl56r2iGKZI0o8Ctsv0iy42h_F7-ezKpEijaH9rr5EQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:53 GMT
etag: "d47caba75b363a4c008e5a9a9d0b8e39d9fa4abd"
content-type: image/jpeg
age: 14752
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F584e2763-154a-41f5-94f4-afe59c3b0984.jpeg | 34.120.237.76 | 200 OK | 6.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F584e2763-154a-41f5-94f4-afe59c3b0984.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha1356818f64ee520358098b40ccb11e6 234448cd9f2c28ee12a3499a17b45f0b8a2e5487 3035ce56cfd2ec24b2ce90f8f7c616a4a289827204750809bcf0c999d5de1dc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F584e2763-154a-41f5-94f4-afe59c3b0984.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6038
x-amzn-requestid: 103f1040-29d7-429d-a082-b8ae7c9ee6f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GHKKoAMFx7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-484abba13338b7ad3238276f;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2TgFe6k_kwTq5n27VTzD6jhXpz3dHzlZ_2pvMe7fkui617bPixVNcA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:00 GMT
etag: "234448cd9f2c28ee12a3499a17b45f0b8a2e5487"
content-type: image/jpeg
age: 14805
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg | 34.120.237.76 | 200 OK | 6.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash45c6a062f8637e689819f505b019dc0e 61665688f1039c4fad848853a68e28d057718ad1 c9b14113eba535a2e1a6cbbf121a818ad0204fc6dd7b2ea9b592830ab927d6d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6718
x-amzn-requestid: 662f889b-4c25-4dec-85d4-ea9dfa8b8974
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7DE5boAMF_cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-33ca99fc7b6eac8d5486d6c1;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvNs1hPPXHBJs5rTIBqH3DbqLLX6si9jHF46KrsuT9BFB2N2V3zeUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:06:20 GMT
age: 15145
etag: "61665688f1039c4fad848853a68e28d057718ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9ab97f766ee1ed6ebbb2b3889a9157b4 f87f165404dec4d65531e6e25146cb77601f3616 f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:47:06 GMT
age: 16299
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg | 34.120.237.76 | 200 OK | 8.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash99bf0073acf75f9e04b52a96bf47797b fa68da2c92fa89ed3dafe9915e064fca022af21f 961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8267
x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW0HM6IAMFXog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ThTL_OlFd4yMELCmSzH4ziqxa8gdYgAAbxLY9VZPVaIldOUkvFVF_Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:43 GMT
age: 14762
etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/logo-1_00fa00460_450.png | 185.136.89.218 | 200 OK | 13 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/logo-1_00fa00460_450.png IP185.136.89.218:0
File typePNG image data, 248 x 70, 8-bit/color RGBA, non-interlaced\012- data Hashb92dae2891a6a5b392b79837fb1a6ef6 ad9e390c1b535ed6451d8749d3cad055f11e137e e41b7997558606299a25ac8ab2c2d3c65fcdc5595dcf2871759aa228ad54f72d
GET /wp-content/uploads/logo-1_00fa00460_450.png HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: image/png
content-length: 13259
last-modified: Tue, 22 Sep 2020 09:06:45 GMT
etag: "5f69bea5-33cb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/logo-1_03ec011b1_450.png | 185.136.89.218 | 200 OK | 62 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/logo-1_03ec011b1_450.png IP185.136.89.218:0
File typePNG image data, 1004 x 283, 8-bit/color RGBA, non-interlaced\012- data Hash3b3f5dd5e58ded6a3295a2a15fa72420 78bd7b9f491f10016784af476a61351b4044479c 61dda81bcf0aa216bcd69babe6d99de6e88585045b2d6d0be58a4b7ebf690ea1
GET /wp-content/uploads/logo-1_03ec011b1_450.png HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: image/png
content-length: 62547
last-modified: Tue, 22 Sep 2020 09:04:14 GMT
etag: "5f69be0e-f453"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/logo-dark-1_07d802371_451.png | 185.136.89.218 | 200 OK | 90 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/logo-dark-1_07d802371_451.png IP185.136.89.218:0
File typePNG image data, 2008 x 567, 8-bit/color RGBA, non-interlaced\012- data Hash3862fad7d1b34a0f4efd82929cbf34b7 c3719879a7704132d9a5af4ff346b2edbad15b01 3d8ef98555076cb94d8da013b7f25de9e1f505cca5e05a7d574f3caa7cb9ad87
GET /wp-content/uploads/logo-dark-1_07d802371_451.png HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: image/png
content-length: 89629
last-modified: Tue, 22 Sep 2020 09:06:47 GMT
etag: "5f69bea7-15e1d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:18:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:18:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| info.ciampinobus.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 | 185.136.89.218 | 200 OK | 39 kB |
URL HTTP/2info.ciampinobus.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP185.136.89.218:0
File typeASCII text, with very long lines (15660) Hash28d7fe840c3a8b1b3b20bc6f2afa21e5 5cc2801a05b9d3ceb039432efd2af8bc6b7960d7 a55fb499f5ac59ac27ec2b405cf76bf6134eef40403f54d4a0bad1644d735649
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 03:39:03 GMT
etag: W/"628da4d7-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 | 142.250.74.67 | 200 OK | 36 kB |
URL HTTP/2fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 IP142.250.74.67:0
File typeWeb Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data Hashc26b97e7f5bb7a34d190703522d75e16 69d9e5aea0544dbaf9b78c1b65139c03eceece8f 96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.ciampinobus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 07:32:21 GMT
expires: Mon, 29 Jan 2024 07:32:21 GMT
cache-control: public, max-age=31536000
age: 499585
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:18:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:18:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash23287a0337047631e479bb3cbe8b0fcd 15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99 da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:18:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 | 185.136.89.218 | 200 OK | 28 kB |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 IP185.136.89.218:0
File typeWeb Open Font Format (Version 2), TrueType, length 28524, version 1.0\012- data Hash9ea7e687e990ed77db419dec2fb34df4 0e1d6ed823aeeb0b7bbbc9459ed7a2cc2ca688c0 304bc94b0a82879653e1c883b29df76e1afe331437ad9ee090b0d7627d6a185d
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/flaticon.css?ver=6.1.1
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: font/woff2
content-length: 28524
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: "5f0c97b1-6f6c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0 | 185.136.89.218 | 200 OK | 78 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0 IP185.136.89.218:0
File typeUnicode text, UTF-8 text, with very long lines (8853) Hash06304ec8ad4eb321a7eca54c5b6e1d89 f6b3ae3eb26adc98509457b64470a5ddd847971e 4eaee8116587dfc9f79f0117c2e29f2e9b1e928cda5c1ffb2cb929fb3e282819
GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: W/"620ccea9-2415"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=2.0.4 | 185.136.89.218 | 200 OK | 42 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=2.0.4 IP185.136.89.218:0
File typeUnicode text, UTF-8 text, with very long lines (65450) Hashb7031b33de4a10d7b44f5fb516a90a56 9ecc9dbe1bbd3263dd6b4ca8ba24854e0c31635f bcb084259a2bcfef97b9a3c2af2d1c3a625672354191537618d5b64c8e672a52
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=2.0.4 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 07:18:01 GMT
etag: W/"63ce34a9-150fe"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/fonts/vc_entypo.woff | 185.136.89.218 | 200 OK | 45 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/fonts/vc_entypo.woff IP185.136.89.218:0
File typeWeb Open Font Format, TrueType, length 45152, version 1.0\012- data Hash5460a9ba11448e34f332f25e72dc16df 9729b28b6872d971935ff58f460cf3c26dcb7380 434d5a30d2359d95efc266dbe0fffcac2c1846e133d4713bebb7c337bdfb84ce
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/css/lib/vc-entypo/fonts/vc_entypo.woff HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/vc_entypo.min.css?ver=6.8.0
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:46 GMT
content-type: application/font-woff
content-length: 45152
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: "620ccea9-b060"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/ciampino-bus-shuttle-station.jpg | 185.136.89.218 | 200 OK | 135 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/ciampino-bus-shuttle-station.jpg IP185.136.89.218:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x600, components 3\012- data Size135 kB (135079 bytes) Hash3d2c456eb55fae5ed1aa041b99760017 8d091fa0088535cfb6c2839b980edccd5436a9d8 93c9e5ae74d39eaae98a76e6960419e1386ed70cbe9aa336aba36fd897dc1988
GET /wp-content/uploads/ciampino-bus-shuttle-station.jpg HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:46 GMT
content-type: image/jpeg
content-length: 135079
last-modified: Mon, 13 Jul 2020 19:58:53 GMT
etag: "5f0cbcfd-20fa7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/cabecera_rya-1536x364.png | 185.136.89.218 | 200 OK | 682 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/cabecera_rya-1536x364.png IP185.136.89.218:0
File typePNG image data, 1536 x 364, 8-bit/color RGBA, non-interlaced\012- data Size682 kB (682386 bytes) Hash840d6777c97091954dee64d7ae18eea5 bec2b8ae7420328dd344d7ac5b661069441af739 3c3849f32f8d92519e01229445a0127aef0947b3f81f8a04e0f06d7b35468487
GET /wp-content/uploads/cabecera_rya-1536x364.png HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:46 GMT
content-type: image/png
content-length: 682386
last-modified: Mon, 13 Jul 2020 18:47:25 GMT
etag: "5f0cac3d-a6992"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/gwpf_icon/favicon.ico | 185.136.89.218 | 200 OK | 68 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/gwpf_icon/favicon.ico IP185.136.89.218:0
File typeMS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel\012- data Hashb5bf6a901d4a308c8bc82e4f4d2a37ba ad0424a4913641dd9c899b295dd8e178371c70f8 f72270552591fefa13463676ba0af297bbc09599dd11c635981757de1343ccc0
GET /wp-content/uploads/gwpf_icon/favicon.ico HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0; pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:46 GMT
content-type: image/vnd.microsoft.icon
content-length: 67646
last-modified: Fri, 25 Sep 2020 09:07:09 GMT
etag: "5f6db33d-1083e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg | 34.120.237.76 | 200 OK | 9.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash518bba9a8770e8ff15229a68be5bddc3 139f944b3f4279e640901f7a6b993f1a49b51a22 0591e73dec2190752677f06525bc993dc8c7a5aa20984a5eda64c323188e2b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9743
x-amzn-requestid: b6c1caa9-72e4-476f-9c3d-4a746c410ba3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHLJoAMF_TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-1289ef383fbad59621eda6d0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i7ZNMlYetTGgoM0beS97MTxveM1H7CI4JdAvPhYdqe9pyCCQugjgNg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:58:58 GMT
age: 15594
etag: "139f944b3f4279e640901f7a6b993f1a49b51a22"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-essentials//assets/css/main.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-essentials//assets/css/main.css?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-essentials//assets/css/main.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"290-5aa55e788d640"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/js_composer/custom.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/js_composer/custom.css?ver=6.8.0 IP185.136.89.218:0
GET /wp-content/uploads/js_composer/custom.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Wed, 16 Feb 2022 10:15:13 GMT
etag: W/"3c-5d81fecdc4e40"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 08:52:21 GMT
etag: W/"63d390c5-2945"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Wed, 09 Dec 2020 04:55:08 GMT
etag: W/"5fd058ac-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:04 GMT
etag: W/"620ccea8-865f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/core/css/gutenberg.css?ver=1.0.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/core/css/gutenberg.css?ver=1.0.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/core/css/gutenberg.css?ver=1.0.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"347-5aa55e5a08e40"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/vc_entypo.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/vc_entypo.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/css/lib/vc-entypo/vc_entypo.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: W/"620ccea9-33a0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/fonts/font-awesome/font-awesome.css?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/fonts/font-awesome/font-awesome.css?ver=1.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/fonts/font-awesome/font-awesome.css?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-116e1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/fonts/flaticon/flaticon.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/fonts/flaticon/flaticon.css?ver=6.1.1 IP185.136.89.218:0
GET /wp-content/themes/metamax/fonts/flaticon/flaticon.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-1d72"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/flaticon.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/flaticon.css?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/fonts/cws-iconpack/flaticon.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-1ceb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 IP185.136.89.218:0
GET /wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-1b37"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/css/animate.css?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/css/animate.css?ver=1.0 IP185.136.89.218:0
GET /wp-content/themes/metamax/css/animate.css?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-11ced"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/css/main.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/css/main.css?ver=6.1.1 IP185.136.89.218:0
GET /wp-content/themes/metamax/css/main.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-a56d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/js/scripts.js?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/js/scripts.js?ver=1.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/js/scripts.js?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-1b40f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: W/"620ccea9-caa8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/ | 185.136.89.218 | 200 OK | 0 B |
IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/html; charset=UTF-8
link: <https://info.ciampinobus.com/wp-json/>; rel="https://api.w.org/", <https://info.ciampinobus.com/wp-json/wp/v2/pages/200>; rel="alternate"; type="application/json", <https://info.ciampinobus.com/>; rel=shortlink
set-cookie: vchideactivationmsg_vc11=6.8.0
x-powered-by: PHP/7.3.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-essentials/assets/js/simple-likes-public.js?ver=0.5 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-essentials/assets/js/simple-likes-public.js?ver=0.5 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-essentials/assets/js/simple-likes-public.js?ver=0.5 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"5f0c97d1-534"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 08:52:21 GMT
etag: W/"63d390c5-31d9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/style.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/style.css?ver=6.1.1 IP185.136.89.218:0
GET /wp-content/themes/metamax/style.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"318-5aa55e5a08e40"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C700italic%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1 | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C700italic%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1 IP142.250.74.106:0
GET /css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C700italic%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 02:18:45 GMT
date: Sat, 04 Feb 2023 02:18:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/css/select2.css?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/css/select2.css?ver=1.0 IP185.136.89.218:0
GET /wp-content/themes/metamax/css/select2.css?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-44de"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 IP185.136.89.218:0
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: application/javascript
last-modified: Tue, 03 Dec 2019 15:09:50 GMT
etag: W/"5de67abe-4307e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: W/"620ccea9-76891"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front.js?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front.js?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front.js?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"5f0c97d1-162a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 04:55:02 GMT
etag: W/"63746d26-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Tue, 03 Dec 2019 15:09:50 GMT
etag: W/"5de67abe-e1a2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP185.136.89.218:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 14 Nov 2022 10:24:00 GMT
etag: W/"63721740-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:04 GMT
etag: W/"620ccea8-dc69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/js/sticky_sidebar.js?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/js/sticky_sidebar.js?ver=1.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/js/sticky_sidebar.js?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-3a49"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/css/jquery.fancybox.css?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/css/jquery.fancybox.css?ver=1.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/css/jquery.fancybox.css?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-137f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 10:15:04 GMT
etag: W/"620ccea8-4e9c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:44 GMT
content-type: application/javascript
last-modified: Tue, 03 Dec 2019 15:09:50 GMT
etag: W/"5de67abe-24ca1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0 IP185.136.89.218:0
GET /wp-content/themes/metamax/js/slick.min.js?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-a76f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/tablepress/css/build/default.css?ver=2.0.4 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/tablepress/css/build/default.css?ver=2.0.4 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/tablepress/css/build/default.css?ver=2.0.4 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: text/css
last-modified: Mon, 23 Jan 2023 07:18:01 GMT
etag: W/"63ce34a9-17b4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-svgicons/cwssvgi_f.js?ver=1.5.4 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-svgicons/cwssvgi_f.js?ver=1.5.4 IP185.136.89.218:0
GET /wp-content/plugins/cws-svgicons/cwssvgi_f.js?ver=1.5.4 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"5f0c97d1-526"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-essentials/assets/js/ajax_plugin.js?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-essentials/assets/js/ajax_plugin.js?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-essentials/assets/js/ajax_plugin.js?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:18:45 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"5f0c97d1-ab85"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|