| firefox.settings.services.mozilla.com/v1/ | 143.204.55.35 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.35:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash1b3053fa528e28810f8a2cc9284cc921 cca9eb471d941881a6b9a1793aecb6c281908f6a a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 23:16:01 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1TV7GOKWvrUi7MG5DRSRANySisH1fU7xBPoNwJZzXF4nJ9Y0U2pYZw==
Age: 481
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7fb7c70f7f4e2cee27eb0e7d875931f7 98fca3817a551b1daecebae103a48e718b8b5a53 2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7871
Expires: Fri, 30 Sep 2022 01:35:13 GMT
Date: Thu, 29 Sep 2022 23:24:02 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain | 143.204.55.110 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP143.204.55.110:0
File typePEM certificate\012- , ASCII text Hash6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 29 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MOrJlT8-9odEaZaDnSZl4BnbsVRqomTuwry25dlzWaV_5XHzoolSIA==
age: 64535
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash16b9c2e6a043c5a4938d00ee0c4fe07b b389faaa7dea4aa532debc46e4f84e00820e4da9 197cacb6c4c98de873bb4e6e29157489a451e29960c2adcf2f390b9d269e0a23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "197CACB6C4C98DE873BB4E6E29157489A451E29960C2ADCF2F390B9D269E0A23"
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21564
Expires: Fri, 30 Sep 2022 05:23:26 GMT
Date: Thu, 29 Sep 2022 23:24:02 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 23:24:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| tsinnovation.it/cimr/eradeuaascn | 86.107.32.70 | 301 Moved Permanently | 0 B |
URL HTTP/2tsinnovation.it/cimr/eradeuaascn IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /cimr/eradeuaascn HTTP/1.1
Host: tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
set-cookie: PHPSESSID=a5dd3d4a8726ff10fa2d6b6c96ebde74; path=/
location: https://www.tsinnovation.it/cimr/eradeuaascn
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 29 Sep 2022 23:24:02 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.35 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.35:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 29 Sep 2022 22:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 29 Sep 2022 22:32:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r0gd_XxEut-5pZefwIsXiYwU9b6Wekhs7aUuj7ZAVBkAsKKdeWKhog==
Age: 3270
|
|
| www.tsinnovation.it/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.7 | 86.107.32.70 | 200 OK | 22 kB |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.7 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (21597) Hash43225b73832b4e7bf6e2b8425415249c 7f7d01efe4c6473206dd12605b5ad8e7a22e293c eb3666c237dfc004679d0009a45702814420164d6248978309842dfdf6fcda23
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.7 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:24:31 GMT
etag: "2301450-545e-5e9cd71dd99e1"
accept-ranges: bytes
content-length: 21598
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf09cb223e3dc028c58cf32c2274c3766 ca7f1663a1200941986e786353ed2f3ff50bd0b2 9b89a5534b1a84f0a86f150dc7f1f699bb972f7b8e151b29c02454dd939066ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6177
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:03 GMT
Last-Modified: Thu, 29 Sep 2022 21:41:06 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
|
|
| www.tsinnovation.it/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 | 86.107.32.70 | 200 OK | 89 kB |
URL HTTP/2www.tsinnovation.it/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (43771) Hashb7915926fe42d76e9c802353ab01dae4 3a8192a4312f25f53de25b100d62829c0f14d67c d7705700d24d5919255576642ad2c28bfc790390b7183a369038ff5c1e814d51
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:22:16 GMT
etag: "1da01d8-15b64-5e9cd69cbbe95"
accept-ranges: bytes
content-length: 88932
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 | 86.107.32.70 | 200 OK | 19 kB |
URL HTTP/2www.tsinnovation.it/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (15660) Hash32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:22:15 GMT
etag: "1da02b9-48b9-5e9cd69ca0914"
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.6.4 | 86.107.32.70 | 200 OK | 38 kB |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.6.4 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeUnicode text, UTF-8 text, with very long lines (5178) Hashbea5fe1e39ca9381ebf70c13d90500ef fbbc970b10f5c542e4a147b7b0a523eb444c2327 eb2ffac7bd025d687b9c0a334610a62f9ef509682ec5f07667bca2c7e76ef82a
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.6.4 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:44:16 GMT
etag: "1d416a6-9626-5ae2aec1efb11"
accept-ranges: bytes
content-length: 38438
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/plugins/unyson/framework/extensions/forms/static/css/frontend.css?ver=2.7.27 | 86.107.32.70 | 200 OK | 8.2 kB |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/unyson/framework/extensions/forms/static/css/frontend.css?ver=2.7.27 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash60ae98a80cc9c6ff40be5e4a252761ec 64ad8dc6b2769aec729da1f66f953f3a5fe4361d d94a6f7805414cb84319355ac5284387de5a45789083d85335e3dcbffd9bdeb5
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/unyson/framework/extensions/forms/static/css/frontend.css?ver=2.7.27 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:25:10 GMT
etag: "2f206b7-2035-5e9cd742f5061"
accept-ranges: bytes
content-length: 8245
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/plugins/unyson/framework/extensions/builder/static/css/frontend-grid.css?ver=1.2.10 | 86.107.32.70 | 200 OK | 12 kB |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/unyson/framework/extensions/builder/static/css/frontend-grid.css?ver=1.2.10 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeassembler source, ASCII text Hashfc0315eb50a641bf13400343e67a2077 66e71634250f025d858ac89a44b7237dec078fdf ce0015410ed069b3528daf54a512e5d8a2e29fa0eccf48b2d6eeeda230d92bd3
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/unyson/framework/extensions/builder/static/css/frontend-grid.css?ver=1.2.10 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:25:10 GMT
etag: "2f20663-2f18-5e9cd742f3121"
accept-ranges: bytes
content-length: 12056
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/plugins/unyson/framework/static/libs/font-awesome/css/font-awesome.min.css?ver=2.7.27 | 86.107.32.70 | 200 OK | 31 kB |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/unyson/framework/static/libs/font-awesome/css/font-awesome.min.css?ver=2.7.27 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/unyson/framework/static/libs/font-awesome/css/font-awesome.min.css?ver=2.7.27 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:25:10 GMT
etag: "2ae04d6-7918-5e9cd742ca4c7"
accept-ranges: bytes
content-length: 31000
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/animate.min.css?ver=3.4.0 | 86.107.32.70 | 200 OK | 54 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/animate.min.css?ver=3.4.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (54279) Hashb360c85f3ebce9327e12463b3fb19713 71f4980867ad8127c1cdbf80161e734408ff533f 2609c8416e734fd20b11bd264de51c77fe1973b85234a0d899990b17736cba13
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/animate.min.css?ver=3.4.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d80187-d4cd-5ae2adaab43d4"
accept-ranges: bytes
content-length: 54477
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/bootstrap.min.css?ver=3.3.4 | 86.107.32.70 | 200 OK | 121 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/bootstrap.min.css?ver=3.3.4 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (65371) Size121 kB (121201 bytes) Hashe3e8b38fed66211f84a6d5ddb8e0f876 72c1ca53cfb37b171bae828f97c914ae4fb2021e 4194fb4472202061ab0db48cd8908fdfc09e95ee60edd654cac0c4e5cef31806
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/bootstrap.min.css?ver=3.3.4 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d80188-1d971-5ae2adaac803f"
accept-ranges: bytes
content-length: 121201
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/slick.css?ver=1.5.9 | 86.107.32.70 | 200 OK | 1.7 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/slick.css?ver=1.5.9 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash13b1b6672b8cfb0d9ae7f899f1c42875 6e9d13342a11a8cfd9e42ee243eaeae01cda4e25 d917660c3d6f7aad32ebc4b0012c6d0bb84a13e201a012e334bcca4b9f4686c9
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/slick.css?ver=1.5.9 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d80191-6c1-5ae2adaae6c74"
accept-ranges: bytes
content-length: 1729
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/simple-line-icons.css?ver=1.0.0 | 86.107.32.70 | 200 OK | 13 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/simple-line-icons.css?ver=1.0.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash534f3e6c61596e6f9209da4288a89015 ada9262ecd9666c895edca6ae4f41c8e391955dd 39d625b053f1ad0ff49891d480909565b2f7ad43e0a1088ead155771b80ff668
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/simple-line-icons.css?ver=1.0.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d80190-3131-5ae2adaae688c"
accept-ranges: bytes
content-length: 12593
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/themify-icons.css?ver=1.0.0 | 86.107.32.70 | 200 OK | 16 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/themify-icons.css?ver=1.0.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash618b09ad6e7615a54765de7495dcd58c 59448422203d094f936e63ea250213ff4b43e857 ce9af444584313e143441b82e02d377e2864bf44a8a69dd0b2d28b497d61693e
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/themify-icons.css?ver=1.0.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d80194-400c-5ae2adab0e54a"
accept-ranges: bytes
content-length: 16396
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/lightcase.css?ver=1.0.0 | 86.107.32.70 | 200 OK | 18 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/lightcase.css?ver=1.0.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (334) Hash260dbfbcdf6e21c6ee96c6d6cda4c8d1 b74cda4a803977ed878f416c70f5c681f3f3d4cb d7351bc528cf1742647a1f6f0f662be66b6b7646ee3b2f689ea3e406c0c48f53
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/lightcase.css?ver=1.0.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d8018c-44e0-5ae2adaad5331"
accept-ranges: bytes
content-length: 17632
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/jssocials.css?ver=1.0.0 | 86.107.32.70 | 200 OK | 1.3 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/jssocials.css?ver=1.0.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash03a45d066ebf7c2f542c160ff0d6e84e ca3f4eeaaf2384d921da5e9452f10033be4cf139 8b0883d8e254cd86fc46665e6c17048e92904284fba02bdb94536267bf264f83
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/jssocials.css?ver=1.0.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d8018b-51b-5ae2adaac8427"
accept-ranges: bytes
content-length: 1307
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/jquery.simpleselect.min.css?ver=1.0.0 | 86.107.32.70 | 200 OK | 2.7 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/jquery.simpleselect.min.css?ver=1.0.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (2705), with no line terminators Hashc76269f23244935c526c95c33d034837 4dfaf31fe9c30885903bbf5707e1daec9af0588a 3aed40ca4c88bf5d3416d398edb147a098ea1c10b2c131c18b2d70c8cfb2b217
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/jquery.simpleselect.min.css?ver=1.0.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d80189-a91-5ae2adaab1cc4"
accept-ranges: bytes
content-length: 2705
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/sumoselect.min.css?ver=1.0 | 86.107.32.70 | 200 OK | 7.4 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/sumoselect.min.css?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (7402), with no line terminators Hashabf41c1df8a72c3e96d04bbb7f78cbf7 8683919bcf48b01239618dee4c77ead2116fe0fa 59342a30b63463f3f413ee6487cf373e0627f569013e678be121f78b2f5a38ea
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/sumoselect.min.css?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d80193-1cea-5ae2adaaff700"
accept-ranges: bytes
content-length: 7402
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/responsive.css?ver=1.0 | 86.107.32.70 | 200 OK | 9.3 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/responsive.css?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash86cd22e97348e8819935ecc645233d80 9207cae3725413a9124429e83e3eda818139cb8a 817bd0f49d2109441608ab7d9baa1eafc636f909176a30f4e756e800b8335e56
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/responsive.css?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d8018e-2432-5ae2adaafd7c0"
accept-ranges: bytes
content-length: 9266
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/pe-icon-7-stroke.css?ver=1.0.0 | 86.107.32.70 | 200 OK | 9.7 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/pe-icon-7-stroke.css?ver=1.0.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashed466b5afe78306fdf6bf0c9cd069ccd dd1d3b603ad004a988c1cdc5674e5c511319cbc0 e3432e8144c51caa4ec4b9ee343ac5d96e747cee95dd548c4cb964f2f18a8984
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/pe-icon-7-stroke.css?ver=1.0.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d8018d-25d4-5ae2adaae7ffc"
accept-ranges: bytes
content-length: 9684
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/css/shortcodes.css?ver=1.0 | 86.107.32.70 | 200 OK | 116 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/css/shortcodes.css?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Size116 kB (116535 bytes) Hash97c49170800af6d9c0d91a3648c1116a 123564611e4feb123dc187b1aeda433f39d170ca 0bd287ff66dbcca8dcd452ce1a4e76e1ccf91912ccf53c8db1192842996725a7
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/css/shortcodes.css?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:24 GMT
etag: "1d8018f-1c737-5ae2adab26036"
accept-ranges: bytes
content-length: 116535
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash6ac97060c75238244bfa94c6c6f63e40 9a640270fe62b82a8d971472f28a150e23f3a0c2 f7c0b8dc16c4a08e73772eadf8303a509768acf9d70f132c1c1db899534d4bab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/style.css?ver=1.0 | 86.107.32.70 | 200 OK | 155 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/style.css?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeassembler source, ASCII text Size155 kB (155180 bytes) Hash3f5ca721b2beca3e20ec70ac6487580b c88001202a4bba0393785f57a1d0beb00d27e17c bac8df36c3dc116049937fb8dd7814a1a8ffbd9a30b73c0111c1eab072c1628e
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/style.css?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:25:54 GMT
etag: "1d80185-25e2c-5ae2aaa67b86a"
accept-ranges: bytes
content-length: 155180
content-type: text/css
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 86.107.32.70 | 200 OK | 11 kB |
URL HTTP/2www.tsinnovation.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (11126) Hash79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:22:15 GMT
etag: "1da0348-2bd8-5e9cd69c9ca93"
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.9.0 | 86.107.32.70 | 200 OK | 12 kB |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.9.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (1577) Hasha76f61318af036823b08d73536486be6 31ff9b215dcef9151b9f4fc50ea91a9df1962102 abc9faa4970e07db7d506d6b2a98e4c86223be305c7541ced54ea2e15f99a76e
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.9.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 18:21:19 GMT
etag: "1d60f09-2e7a-5e94820c09916"
accept-ranges: bytes
content-length: 11898
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/superfish.js?ver=1.7.5 | 86.107.32.70 | 200 OK | 7.5 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/superfish.js?ver=1.7.5 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hasha9721a79829c73542da51e0d1dbd223f 6184e0eb94092bf7165dc4a4b534737bf62c19dc 4bd938863d8e473540c7300aec8fd156822f4701cee5fb6b3328a2cc9b0a012b
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/superfish.js?ver=1.7.5 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:28 GMT
etag: "1d80617-1d7c-5ae2adae835fd"
accept-ranges: bytes
content-length: 7548
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash86e0fe14ac54b7b9131a460fd65d73fd 49ec80657f4183e2ad7e906583b94cbf48a94809 9f30a1437666225f096d72763cf89a4e5ae9e5f501ffed4becc51b08c515cf6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.cookie.js?ver=6.0.2 | 86.107.32.70 | 200 OK | 3.1 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.cookie.js?ver=6.0.2 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashde952eda41b0edc0b5c416ee48f7028e dc07de882ab68370534fbf9440ac7b8c068695a7 631ea2bc942c1791920270ba02eef37774aa10db3994b4936a2b5f891a970ff7
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.cookie.js?ver=6.0.2 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80608-c43-5ae2adae35bc1"
accept-ranges: bytes
content-length: 3139
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 | 86.107.32.70 | 200 OK | 90 kB |
URL HTTP/2www.tsinnovation.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (65447) Hash02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:22:15 GMT
etag: "1da1416-15db1-5e9cd69c9ce7b"
accept-ranges: bytes
content-length: 89521
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-114841997-1 | 142.250.74.72 | 200 OK | 42 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-114841997-1 IP142.250.74.72:0
File typeASCII text, with very long lines (2039) Hash5bc3e1ffd952ea9f975e55068f760919 7112879e6aaae47a15e23e4b87b1c52c7ef98478 b9ff9c923e5d8041ebcf32463f40fac917be3a8cac692268fb6b6f7b0a595d35
GET /gtag/js?id=UA-114841997-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 29 Sep 2022 23:24:03 GMT
expires: Thu, 29 Sep 2022 23:24:03 GMT
cache-control: private, max-age=900
last-modified: Thu, 29 Sep 2022 21:05:07 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42375
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 | 86.107.32.70 | 200 OK | 17 kB |
URL HTTP/2www.tsinnovation.it/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (15439) Hashaa5fef7b171510a2a430328d4a0f3b03 cf6377f9bd83d9ce5f18c3de8ac7e57c047168d4 5f030eda75a32de3b4f63e28a38e83642b8a723c84ae73bf3726b85cd411bfee
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:22:15 GMT
etag: "1da036f-43b3-5e9cd69c9edbb"
accept-ranges: bytes
content-length: 17331
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/wow.min.js?ver=1.2.2 | 86.107.32.70 | 200 OK | 8.4 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/wow.min.js?ver=1.2.2 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (8396) Hash161ba788d7ca4d554b4a0c609ce2cd67 4ec798a81020992a75f08b37584fb5314ac8516f 167d7ca784f3d3948837ea87c90fae712a158e7f34d02fc8dcdc091aefa62c7f
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/wow.min.js?ver=1.2.2 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:28 GMT
etag: "1d8061b-20ea-5ae2adae9c471"
accept-ranges: bytes
content-length: 8426
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.resize.sensor.js?ver=0.3 | 86.107.32.70 | 200 OK | 5.4 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.resize.sensor.js?ver=0.3 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash33be100662c5784c60df55ebdfa399fd 3f993829aa147e8c805e95c8f3ebe48e743b5fd2 3ecdeacf45dce48febfac9b4995320b42ebb29813967f7ac017fc44db7f6f3c3
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.resize.sensor.js?ver=0.3 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d8060b-1506-5ae2adadf391f"
accept-ranges: bytes
content-length: 5382
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.vide.js?ver=0.3.7 | 86.107.32.70 | 200 OK | 12 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.vide.js?ver=0.3.7 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashf81fdbecca988269d75629c251882a54 1a998ca594448d101aeb430df5d8c8d482ba2ff7 7889396481a838af006bac42e6796cfa22c74f824beeea7652e46b92a6f2c0c9
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.vide.js?ver=0.3.7 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d8060e-2df2-5ae2adae23aae"
accept-ranges: bytes
content-length: 11762
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/bootstrap.min.js?ver=3.3.4 | 86.107.32.70 | 200 OK | 37 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/bootstrap.min.js?ver=3.3.4 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (32033) Hash79b5346433d3bdf736aab2379a008083 ce18fabde2fc070790d807e8753327524906db1e 612553e6a88fa4e0196ef0c81f332c75ce887d471b1dd0abe2c3bd05ce861353
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/bootstrap.min.js?ver=3.3.4 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80600-90b6-5ae2adadb4945"
accept-ranges: bytes
content-length: 37046
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/lightcase.min.js?ver=1.0 | 86.107.32.70 | 200 OK | 31 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/lightcase.min.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeHTML document, ASCII text, with very long lines (5630) Hashf41fccf5f0d67869e1996975cad2d7d4 77c02cb38d79a436d29941c3c9066df93fd3f5e0 d04f905f3b8d0eb616b8ba2eea216610df2ef07a3432f59e03738e7d114e80ab
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/lightcase.min.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80612-79f8-5ae2adae59617"
accept-ranges: bytes
content-length: 31224
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/slick.min.js?ver=1.5.9 | 86.107.32.70 | 200 OK | 42 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/slick.min.js?ver=1.5.9 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (32076) Hashb53bdfc29e18f4d493d775a8023fbdc8 e9fcbcc4fa70cba093b81d982a1b78509414cef7 e02af7df9a190d88380e2dcec2050ecaa493ae2d23526dbeec67f6907df3a752
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/slick.min.js?ver=1.5.9 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:28 GMT
etag: "1d80615-a3e1-5ae2adae816bd"
accept-ranges: bytes
content-length: 41953
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/typed.js?ver=1.0 | 86.107.32.70 | 200 OK | 14 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/typed.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashd22be6242fbf26e4e8b9068738122db8 7e5f128747a75c9e00387c5ef0c97897ec926fdf 1f052e67e4af9290687b07dc44e0d7ba3b107330257cc3859966ec57218a9eef
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/typed.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:28 GMT
etag: "1d80619-37f4-5ae2adae9a531"
accept-ranges: bytes
content-length: 14324
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/uploads/2018/02/sito3.png | 86.107.32.70 | 200 OK | 5.5 kB |
URL HTTP/2www.tsinnovation.it/wp-content/uploads/2018/02/sito3.png IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typePNG image data, 225 x 138, 8-bit/color RGBA, non-interlaced\012- data Hash82ad849f00c87f24f3120a65956a320c e9edea77f1b5b1e06ea2fe0462aa57a72a66747e ce4dc27945fd1323f144fb6c1da43963eae6df272dc998806890540ab0b0ec21
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/uploads/2018/02/sito3.png HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:41 GMT
etag: "1d80770-158d-5ae2adbbaca4d"
accept-ranges: bytes
content-length: 5517
content-type: image/png
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 34.215.91.121 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.215.91.121:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Z58E/c4+jiZqnPAkKAR29w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vGy+O5ij50xwZNzwBmAQcBGGUP0=
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jssocials.min.js?ver=1.0 | 86.107.32.70 | 200 OK | 8.8 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jssocials.min.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (8692) Hash35ef958fc20381f35ef5f09cc2e7916f f4a6d0b17a151292568c921d8ee7e66d9e104c35 e8d46dfb4ca0d270a4789461c199b3a7c7ce9ba6a733d6a4abc59ccdafa71170
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jssocials.min.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80611-2264-5ae2adae51145"
accept-ranges: bytes
content-length: 8804
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.counterup.min.js?ver=1.0 | 86.107.32.70 | 200 OK | 2.7 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.counterup.min.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashe18247324fa82fe5599cd553914c5c82 552cf5b85dcd70c2b43ca0aaaf003a8a84553610 5e056cb18de61f8a92a83f22eacacc03dbd3cc6051f90f1da7febf6449b6238e
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.counterup.min.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80609-a71-5ae2adadd645a"
accept-ranges: bytes
content-length: 2673
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-includes/js/imagesloaded.min.js?ver=4.1.4 | 86.107.32.70 | 200 OK | 5.6 kB |
URL HTTP/2www.tsinnovation.it/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (5477) Hash3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:22:15 GMT
etag: "1da028c-15fd-5e9cd69ca14cc"
accept-ranges: bytes
content-length: 5629
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.viewportChecker.js?ver=1.0 | 86.107.32.70 | 200 OK | 7.6 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.viewportChecker.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashaa394f145aa23d02f84069233ffee70e 519995508acf5e4ea77a4216d020e0927348202c a2e8c9c1761d02dac9b8d6718cc9417b5a409a09f5873abb3df235b23a959d0c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.viewportChecker.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d8060f-1db9-5ae2adae4cedd"
accept-ranges: bytes
content-length: 7609
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.waypoints.min.js?ver=1.0 | 86.107.32.70 | 200 OK | 8.8 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.waypoints.min.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeUnicode text, UTF-8 text, with very long lines (8668) Hash43b1aa1ea2d73e79e9d45980c7920446 1bef149aedeafff7a797e799cfba168bed0d6dc6 9c7bd3dadf6edc19d3b8876a8e2b0b0ae6b54f403d7e987ec82b041128cfdd35
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.waypoints.min.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80610-2281-5ae2adae4da95"
accept-ranges: bytes
content-length: 8833
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jarallax-video.min.js?ver=1.0.1 | 86.107.32.70 | 200 OK | 10 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jarallax-video.min.js?ver=1.0.1 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (8198) Hashe91db42fe72ef3274a1405041d032789 563ec87f1f8de86e7cc933f8a3330b375782d56e eecd77ef79d0cab4c241ff0d14722645c65cecae4a0febdc03bf39ae88e590e2
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jarallax-video.min.js?ver=1.0.1 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80605-27db-5ae2adadcc818"
accept-ranges: bytes
content-length: 10203
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash6ac97060c75238244bfa94c6c6f63e40 9a640270fe62b82a8d971472f28a150e23f3a0c2 f7c0b8dc16c4a08e73772eadf8303a509768acf9d70f132c1c1db899534d4bab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jarallax.min.js?ver=1.5.2 | 86.107.32.70 | 200 OK | 9.8 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jarallax.min.js?ver=1.5.2 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (9689) Hash24a155d138df54ec56b433fd2e20c8f8 9c13d8c0eb2b5c690e2418cf30c1c625ebfcb63a dbffdfeef10d0f5b2fa9d115b7cc7cd61465e55191469e5a6ff1b6e241c88f5a
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jarallax.min.js?ver=1.5.2 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80606-2675-5ae2adadf297e"
accept-ranges: bytes
content-length: 9845
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-includes/js/masonry.min.js?ver=4.2.2 | 86.107.32.70 | 200 OK | 24 kB |
URL HTTP/2www.tsinnovation.it/wp-includes/js/masonry.min.js?ver=4.2.2 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (23966) Hash3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:22:15 GMT
etag: "1da028f-5e4a-5e9cd69c9fd5b"
accept-ranges: bytes
content-length: 24138
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/velocity.min.js?ver=1.0 | 86.107.32.70 | 200 OK | 35 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/velocity.min.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (32066) Hashbd0a8f24807c40a9ed56185167534f26 4677ccc68b2e6de96dd24ff9cba706ed2df22f37 bf0576b87978f24f743e2c5191296d4b1c7eff84bc5e17af5c2ae96a22531abf
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/velocity.min.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:28 GMT
etag: "1d8061a-88eb-5ae2adaea4172"
accept-ranges: bytes
content-length: 35051
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash86e0fe14ac54b7b9131a460fd65d73fd 49ec80657f4183e2ad7e906583b94cbf48a94809 9f30a1437666225f096d72763cf89a4e5ae9e5f501ffed4becc51b08c515cf6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/isotope.pkgd.min.js?ver=1.0 | 86.107.32.70 | 200 OK | 41 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/isotope.pkgd.min.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (32031) Hash993af08be0b86ea8d282f6300236c611 01f232e86fa362a808e391e333bc4dc5a886c4c7 338867db60061d0d769700bd29def22fd63bce55e904001ecb7a4bfe2f4912b4
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/isotope.pkgd.min.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80604-9f8f-5ae2adadcb878"
accept-ranges: bytes
content-length: 40847
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.simpleselect.min.js?ver=1.0 | 86.107.32.70 | 200 OK | 6.2 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.simpleselect.min.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (5998) Hash5f9caed53a8f3880a99fb144a3d89336 b6084cabdd5c7657f1956489198788fc67b610e9 37f52c39bcc1689201a105b906e0b48edf1f818f7b07bcbe7b2f4841546858d3
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.simpleselect.min.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d8060c-1812-5ae2adadf40ef"
accept-ranges: bytes
content-length: 6162
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.hoverdir.js?ver=1.0 | 86.107.32.70 | 200 OK | 9.5 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.hoverdir.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash10d8f6e0492b2f3cb46de5cb9d202baf 03dc7fe1c34e9fe54cbad3c1e78692c0cce3cdfb ccf5864a9addf749650590dec8d52b3547e54e4fd434b21e35b1a941d4b3e4f4
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.hoverdir.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d8060a-2509-5ae2adadf19de"
accept-ranges: bytes
content-length: 9481
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.actual.min.js?ver=1.0.16 | 86.107.32.70 | 200 OK | 1.1 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/jquery.actual.min.js?ver=1.0.16 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash1860686367c8e1fcf924f6692ddfd2dd b398b9c0017b078b2f9b38026c2af62506f71be1 9b0c7b1b5fbdfeaa58f197d39cf9ae0e988a3d89247a8d5353005ae11a0dd5c0
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/jquery.actual.min.js?ver=1.0.16 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80607-466-5ae2adae017c9"
accept-ranges: bytes
content-length: 1126
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/js/scripts.js?ver=1.0 | 86.107.32.70 | 200 OK | 45 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/js/scripts.js?ver=1.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashd93aee92511fd681659dd55c7074d94b cd8cf4e5b1d2bf05197d933f22bd30f30e9a7f56 1ffe52420e6fbe8088b92b3950c0ec31f98788c3d73f648a1db43430c15c1774
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/js/scripts.js?ver=1.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:27 GMT
etag: "1d80613-b0c7-5ae2adae66909"
accept-ranges: bytes
content-length: 45255
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.7 | 86.107.32.70 | 200 OK | 28 kB |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.7 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeASCII text, with very long lines (27578) Hash1b2407158f28d680406f7c2878f6c016 80a1417d038e808209838a9cb971c3ca8b375e95 ef9c24e9283aeb9681eddde538642816aa7b981dae1fd839d4c61647929cae65
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.7 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:24:31 GMT
etag: "22e014d-6bbb-5e9cd71dd47d8"
accept-ranges: bytes
content-length: 27579
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/themes/jevelin/fonts/Simple-Line-Icons.ttf?v=2.2.2 | 86.107.32.70 | 200 OK | 53 kB |
URL HTTP/2www.tsinnovation.it/wp-content/themes/jevelin/fonts/Simple-Line-Icons.ttf?v=2.2.2 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeTrueType Font data, 11 tables, 1st "OS/2", 18 names, Macintosh, type 1 string, simple-line-icons\012- data Hashb2892aa62b0fb2c21c8d7700e2ef6e56 acb3e2b0f5ba11b8e4e43b7f73223ec048054861 937e59152189ecedb8688efcd8b927fc40d43b5c5225a05a25f4cf537ad8ca7c
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/themes/jevelin/fonts/Simple-Line-Icons.ttf?v=2.2.2 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/wp-content/themes/jevelin/css/simple-line-icons.css?ver=1.0.0
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:25 GMT
etag: "1d80365-d078-5ae2adabf163e"
accept-ranges: bytes
content-length: 53368
content-type: font/ttf
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/plugins/unyson/framework/static/libs/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 | 86.107.32.70 | 200 OK | 77 kB |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/unyson/framework/static/libs/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/unyson/framework/static/libs/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tsinnovation.it/wp-content/plugins/unyson/framework/static/libs/font-awesome/css/font-awesome.min.css?ver=2.7.27
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Sep 2022 09:25:10 GMT
etag: "2ae04cf-12d68-5e9cd742ca0df"
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8045f030f1424d43155236ac74193734 9f5d53209a1b442a342d7d59986e4817024e2fcd 211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8045f030f1424d43155236ac74193734 9f5d53209a1b442a342d7d59986e4817024e2fcd 211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8045f030f1424d43155236ac74193734 9f5d53209a1b442a342d7d59986e4817024e2fcd 211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 142.250.74.163 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tsinnovation.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 16:40:18 GMT
expires: Fri, 29 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 24226
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 | 142.250.74.163 | 200 OK | 46 kB |
URL HTTP/2fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data Hashc1fd378f54921c75e4ae1821e7b8fff6 2ce96e97783b2f154d07f4464ca6f8eb2469f2c1 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tsinnovation.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:13:12 GMT
expires: Tue, 26 Sep 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 267052
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8045f030f1424d43155236ac74193734 9f5d53209a1b442a342d7d59986e4817024e2fcd 211c2261b71490e21be41166efa63b59b01ed4188f80c7e095b748abf1f0ae68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 23:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ssl.google-analytics.com/ga.js | 172.217.21.168 | 200 OK | 17 kB |
URL HTTP/2ssl.google-analytics.com/ga.js IP172.217.21.168:0
File typeASCII text, with very long lines (1305) Hash01d5892e6e243b52998310c2925b9f3a 58180151b6a6ee4af73583a214b68efb9e8844d4 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Thu, 29 Sep 2022 22:17:11 GMT
expires: Fri, 30 Sep 2022 00:17:11 GMT
cache-control: public, max-age=7200
age: 4013
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/uploads/2018/02/cropped-sito5-192x192.png | 86.107.32.70 | 200 OK | 10 kB |
URL HTTP/2www.tsinnovation.it/wp-content/uploads/2018/02/cropped-sito5-192x192.png IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hash8135baa126cea4f11f1376357fc760b5 e43540d4b55d35b266248e9e377aad5e76030005 b670eb00e741c5ecf7113bce44f0aca9b354b7ee0faca6b3eb50519d77d5775d
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/uploads/2018/02/cropped-sito5-192x192.png HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:39 GMT
etag: "1d80758-2753-5ae2adb95020e"
accept-ranges: bytes
content-length: 10067
content-type: image/png
date: Thu, 29 Sep 2022 23:24:04 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/uploads/2018/02/cropped-sito5-32x32.png | 86.107.32.70 | 200 OK | 872 B |
URL HTTP/2www.tsinnovation.it/wp-content/uploads/2018/02/cropped-sito5-32x32.png IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash0e573327d0160a4d65a1c305a31df9b5 a48cfc8a0571e4ba84afc475ea2c75490c1c2c6c a0870b47c8899c8ba6108337f7c8df36e085beca27a4829254e352627bb4f8c0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/uploads/2018/02/cropped-sito5-32x32.png HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:39 GMT
etag: "1d8075b-368-5ae2adb9972d1"
accept-ranges: bytes
content-length: 872
content-type: image/png
date: Thu, 29 Sep 2022 23:24:04 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=711139690&utmhn=www.tsinnovation.it&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Pagina%20non%20trovata%20%7C%20TS%20INNOVATION&utmhid=659992282&utmr=-&utmp=%2Fcimr%2Feradeuaascn&utmht=1664493841123&utmac=UA-114841997-1&utmcc=__utma%3D215738002.148667375.1664493841.1664493841.1664493841.1%3B%2B__utmz%3D215738002.1664493841.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1079381485&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ | 172.217.21.168 | 200 OK | 35 B |
URL HTTP/2ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=711139690&utmhn=www.tsinnovation.it&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Pagina%20non%20trovata%20%7C%20TS%20INNOVATION&utmhid=659992282&utmr=-&utmp=%2Fcimr%2Feradeuaascn&utmht=1664493841123&utmac=UA-114841997-1&utmcc=__utma%3D215738002.148667375.1664493841.1664493841.1664493841.1%3B%2B__utmz%3D215738002.1664493841.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1079381485&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ IP172.217.21.168:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash28d6814f309ea289f847c69cf91194c6 0f4e929dd5bb2564f7ab9c76338e04e292a42ace 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=711139690&utmhn=www.tsinnovation.it&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Pagina%20non%20trovata%20%7C%20TS%20INNOVATION&utmhid=659992282&utmr=-&utmp=%2Fcimr%2Feradeuaascn&utmht=1664493841123&utmac=UA-114841997-1&utmcc=__utma%3D215738002.148667375.1664493841.1664493841.1664493841.1%3B%2B__utmz%3D215738002.1664493841.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1079381485&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Thu, 29 Sep 2022 23:24:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.174 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.174:0
File typeASCII text, with very long lines (1325) Hashcae538dcce82598fbe43c0bf443e62dd cc68ac6be9c5e0087a0000e5735b83270ace30f5 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Thu, 29 Sep 2022 22:41:09 GMT
expires: Fri, 30 Sep 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 2575
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/?wordfence_lh=1&hid=48A61F06C959581927273EE70499EDC0&r=0.25944135568716686 | 86.107.32.70 | 200 OK | 0 B |
URL HTTP/2www.tsinnovation.it/?wordfence_lh=1&hid=48A61F06C959581927273EE70499EDC0&r=0.25944135568716686 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /?wordfence_lh=1&hid=48A61F06C959581927273EE70499EDC0&r=0.25944135568716686 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924; __utma=215738002.148667375.1664493841.1664493841.1664493841.1; __utmb=215738002.1.10.1664493841; __utmc=215738002; __utmz=215738002.1664493841.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1; _ga=GA1.2.148667375.1664493841; _gid=GA1.2.804453686.1664493841; _gat_gtag_UA_114841997_1=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://www.tsinnovation.it/wp-json/>; rel="https://api.w.org/", <https://www.tsinnovation.it/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://www.tsinnovation.it/>; rel=shortlink
x-robots-tag: noindex
content-length: 0
content-type: text/javascript;charset=UTF-8
date: Thu, 29 Sep 2022 23:24:04 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7995
Expires: Fri, 30 Sep 2022 01:37:19 GMT
Date: Thu, 29 Sep 2022 23:24:04 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7995
Expires: Fri, 30 Sep 2022 01:37:19 GMT
Date: Thu, 29 Sep 2022 23:24:04 GMT
Connection: keep-alive
|
|
| www.tsinnovation.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.6.4 | 86.107.32.70 | 200 OK | 503 B |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.6.4 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Hash47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.6.4 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:44:17 GMT
etag: "1d416cd-fd85-5ae2aec29a1bc"
accept-ranges: bytes
content-length: 64901
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7995
Expires: Fri, 30 Sep 2022 01:37:19 GMT
Date: Thu, 29 Sep 2022 23:24:04 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg | 34.120.237.76 | 200 OK | 5.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash13a12db696bc2bf6a6ea2f48f4c1428e 3481dce8ab711111fc8863d88bee1a887cfd43ac 6dae6c9e5de4146e1f528a36a1795225c9731385f13927fc001fb3f9842fe8f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5106
x-amzn-requestid: a906507c-8820-489c-9978-7d0fd026c862
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPd5PE0MIAMF3DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6336103a-49eb3879088f17bc01d177c7;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: op_2CSOAx9-hqXvj1nOyitq0UXqIyItmquWjMkmMdKWnwoTIA_SA6A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:45:26 GMT
age: 5918
etag: "3481dce8ab711111fc8863d88bee1a887cfd43ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11dc66d9-c0dc-4009-bc21-1bc7de4d071d.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11dc66d9-c0dc-4009-bc21-1bc7de4d071d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashcab91ea6d86b9d8af67590ec8638c35e 126d8bfe9e913c8ea665089270d0d524ed5a1234 cec04f205ed6397a11cea16a3370d1cbac52cf63f65742bea1a43232ea61a993
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11dc66d9-c0dc-4009-bc21-1bc7de4d071d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7537
x-amzn-requestid: e4f3306b-5d8c-4257-8b1c-042227c802d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdbFHE4oAMFc3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f79-691ce35a37178a0a189879c6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qLUYGKeXkYVpH-oleaqCadfIgRE66QXj-uK_YccpQUeJYnsFq7GaUQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:12:16 GMT
age: 4308
etag: "126d8bfe9e913c8ea665089270d0d524ed5a1234"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac0adb1a-3390-4c2f-8884-055b217a0c2c.jpeg | 34.120.237.76 | 200 OK | 9.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac0adb1a-3390-4c2f-8884-055b217a0c2c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8337b3316a9c7ee94fea710d83ab5b70 632f621fe04de121001fb4d3b51fa8e318376bb2 070deb0d8955fabda308ae55d6ed0ebead9a5ea310b913e6ef762eb16b63c100
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac0adb1a-3390-4c2f-8884-055b217a0c2c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9685
x-amzn-requestid: a7a4df5a-3456-4658-aba9-abec376d79af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZaHHJIAMFdhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-28aecee27887f6516d2df6c9;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wzCOPcEwFdINaJFDS3hgms9bG2-nL2YsQJ9tNmWq7xd7S05irtgpbQ==
via: 1.1 94be61e339880d0097634de6934f7710.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:45:15 GMT
age: 5929
etag: "632f621fe04de121001fb4d3b51fa8e318376bb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71a33966-cff2-4544-a638-1c5553336f6f.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71a33966-cff2-4544-a638-1c5553336f6f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3d493b47d1b8dd8dab16bf3a63a1077e b75156a9249cda46c3225068a72699723b7dfed9 52335f41b0c95c1073ae25969e6ef1c39b3d67bc9636ec691c87237a8a635680
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71a33966-cff2-4544-a638-1c5553336f6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10460
x-amzn-requestid: 8478b281-7567-4a60-acc4-61d749f06168
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNf0CGnnoAMFoXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63354680-40673e6f75d0a6055da2c749;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:17:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4yb5_kLFDk9wRcbODgdDsmkI2fujGgQ0wAKUcIf6YMyzg9E1njl1zQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 07:50:08 GMT
age: 56036
etag: "b75156a9249cda46c3225068a72699723b7dfed9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash11594ce7500d8776bfd5162b17f87d72 72603efba82d649ce5a7a0ca45dc830c0d9ef012 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dyDhatfeYzzSQpRY7JpOIu3VhjlI8IOWcKCLCBWYaxJ1CYgCxqdQjA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:49:47 GMT
age: 5657
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff846d550-1085-41f0-ab5c-5cbdba5d3a00.jpeg | 34.120.237.76 | 200 OK | 5.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff846d550-1085-41f0-ab5c-5cbdba5d3a00.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash39d9370f63a9d19ea9c05fa1926ce1d0 f15bb6564adddb9a3bb9949321482e65714c047a cf9353ff328f1afced61c19b48b2add29f4a212bd97cb4d874d5e7747850b3e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff846d550-1085-41f0-ab5c-5cbdba5d3a00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5094
x-amzn-requestid: 49ace90a-85a0-45ea-8c0d-6a498fb89042
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPd60Eo9oAMFtkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63361045-6b8a1c42300d4d6024186bfd;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fRMe9SPES3XBGB1yaL1KTmUcFsJb25xNyevvI8oggA5n5AvM0rN_Jg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:45:26 GMT
age: 5918
etag: "f15bb6564adddb9a3bb9949321482e65714c047a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.6.4 | 86.107.32.70 | 200 OK | 0 B |
URL HTTP/2www.tsinnovation.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.6.4 IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.6.4 HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/cimr/eradeuaascn
Cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:44:17 GMT
etag: "1d416ce-1af52-5ae2aec29b15c"
accept-ranges: bytes
content-length: 110418
content-type: application/javascript
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Raleway:200,300,regular,600,700,300italic,italic,600italic,700italic,|Montserrat:200,300,regular,600,700,300italic,italic,600italic,700italic,&subset=latin | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Raleway:200,300,regular,600,700,300italic,italic,600italic,700italic,|Montserrat:200,300,regular,600,700,300italic,italic,600italic,700italic,&subset=latin IP142.250.74.10:0
GET /css?family=Raleway:200,300,regular,600,700,300italic,italic,600italic,700italic,|Montserrat:200,300,regular,600,700,300italic,italic,600italic,700italic,&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tsinnovation.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Sep 2022 23:24:03 GMT
date: Thu, 29 Sep 2022 23:24:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.tsinnovation.it/cimr/eradeuaascn | 86.107.32.70 | 404 Not Found | 0 B |
URL HTTP/2www.tsinnovation.it/cimr/eradeuaascn IP86.107.32.70:0 ASN#52030 Server Plan S.r.l.
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /cimr/eradeuaascn HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.tsinnovation.it/wp-json/>; rel="https://api.w.org/"
set-cookie: PHPSESSID=bac5aa75550b18c08d8250655d768924; path=/
content-type: text/html; charset=UTF-8
date: Thu, 29 Sep 2022 23:24:03 GMT
server: Apache
X-Firefox-Spdy: h2
|
|