tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
81.208.42.112301 Moved Permanently 162 B URL HTTP/1.1 tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
IP 81.208.42.112:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso= HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 26 Sep 2022 16:30:42 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 16:01:47 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O4rESHtKZnxIU_DEEn0NAiDNrTYNFHctEtPiJz7U1VisrDvVDrkCzw==
Age: 1735
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2410
Expires: Mon, 26 Sep 2022 17:10:53 GMT
Date: Mon, 26 Sep 2022 16:30:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11271
Expires: Mon, 26 Sep 2022 19:38:34 GMT
Date: Mon, 26 Sep 2022 16:30:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EchUkNsK3VSDHzkbFEqkJdAeDzqVNDYdtllJ6UKxLqf16rRCtZTYYz3nCOLDGMnzW710B04+KpA=
x-amz-request-id: Y8C9WYJJXZFZECAN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Sep 2022 15:48:45 GMT
age: 2518
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c6242fb4d4c0ddb6f6683c7cbebedf58
19ade1aac6924a7f60f8cd5bc03baccf316fba9b
5843184fec1a60a35c63ac8bf80d5573ef0d6073bdd71532e91d3c4ce23c1765
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5843184FEC1A60A35C63AC8BF80D5573EF0D6073BDD71532E91D3C4CE23C1765"
Last-Modified: Mon, 26 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Mon, 26 Sep 2022 22:30:14 GMT
Date: Mon, 26 Sep 2022 16:30:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 16:10:46 GMT
Expires: Mon, 26 Sep 2022 16:42:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jYz7geNrk4NuJTloQBMDsBOrtE3cW66O2PxMgM0v1312JIB4Xs_bKw==
Age: 1198
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4704
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 16:30:44 GMT
Last-Modified: Mon, 26 Sep 2022 15:12:20 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.238.202.79101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.202.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: re0exfa6as+yCBbTGvP+iw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: x7HvRsnaiA07jBAwwWpYvCEJTrU=
tedxcesena.com/wp-content/plugins/uji-countdown/dist/style-ujicount.css
81.208.42.112200 OK 4.0 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/uji-countdown/dist/style-ujicount.css
IP 81.208.42.112:0
Hash b54dac87e889ce15481a06aaa501a97c
dd8d18015f30d13cd9f832ae223b0955f23aa5a4
fec5719e8cd5a06b7792ecfed30d024889a9148d961810649c092541ff67572c
GET /wp-content/plugins/uji-countdown/dist/style-ujicount.css HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: text/css
content-length: 4042
last-modified: Wed, 09 Feb 2022 14:11:09 GMT
etag: "6203cb7d-fca"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 16:30:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tedxcesena.com/wp-content/themes/Avada-Child-Theme/style.css?ver=6.0.2
81.208.42.112200 OK 1.3 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada-Child-Theme/style.css?ver=6.0.2
IP 81.208.42.112:0
Hash 0651bcc0ce5bd3007c32068d724fcb3f
d3a5d92e111d1e578b5a5156625bdf38aa6e9e3b
c22efa4600a0ca6d88f60586a555537142f0f2928557217e9a973d95681ad2f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada-Child-Theme/style.css?ver=6.0.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: text/css
content-length: 1324
last-modified: Thu, 07 Jan 2021 08:55:24 GMT
etag: "5ff6cc7c-52c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
81.208.42.112200 OK 11 kB URL HTTP/2 tedxcesena.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 81.208.42.112:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 11224
last-modified: Mon, 26 Jul 2021 10:40:29 GMT
etag: "60fe911d-2bd8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-55250415-17
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-55250415-17
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash e9f9b0b1a5937a1a0d8bfa9d3d85d9c6
24a761cef6fc7c7e976255b68ef903b223430492
f1c9a08776f60b7aab1d20a0dd3bbc81ae63a185fdb69359002f9ebf05d92819
GET /gtag/js?id=UA-55250415-17 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 16:30:45 GMT
expires: Mon, 26 Sep 2022 16:30:45 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 16:09:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42257
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 16:30:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tedxcesena.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23
81.208.42.112200 OK 60 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23
IP 81.208.42.112:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 6965137b6996c7953be805866df582ed
7fa546bdc941a31224fcc0b64c75d30f23630583
b86f3cdcccad303cb5300fab4d2774eafc3a2788f07ff1f3cd1953dd0debaa3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: text/css
content-length: 60053
last-modified: Thu, 15 Oct 2020 16:24:35 GMT
etag: "5f8877c3-ea95"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
81.208.42.112200 OK 90 kB URL HTTP/2 tedxcesena.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 81.208.42.112:0
File type ASCII text, with very long lines (65447)
Hash 02dd5d04add4759122013c5ab4dc5cc2
a45a56e396ac549b4ff39b696ce9e0c16a7612de
bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 89521
last-modified: Mon, 26 Jul 2021 10:40:29 GMT
etag: "60fe911d-15db1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5951
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 16:30:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5951
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 16:30:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5951
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 16:30:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5951
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 16:30:45 GMT
Connection: keep-alive
tedxcesena.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23
81.208.42.112200 OK 119 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23
IP 81.208.42.112:0
File type ASCII text, with very long lines (41022), with CRLF line terminators
Size 119 kB (119386 bytes)
Hash 1eca6ed028850aa07d5f4a003fd7079e
1f02b8c5485108373bdd14a96bb1fe22d72e157b
9556bca5ad5eb24439887d7339fcb687088776bbaa995553aa489c9607cf9e19
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 119386
last-modified: Thu, 15 Oct 2020 16:24:35 GMT
etag: "5f8877c3-1d25a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZRG0Axnhc5RY5rDbnnbauco9dpPeFdkP01UxkpNYI5pgSbfGKWcikw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:16:26 GMT
age: 65659
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HfslSWhSAKRjZr-qqajVm6bKf9jGt2pXq8N8GlXgyTwRxWqw0y-CgA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 06:49:49 GMT
age: 34856
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pt7rJi8EIQFBk0gHQZ1WnjvThPba86XZCGFs83l1ZW2dj-_6bZprAA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 67249
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d79a3a5bd7dc7aa6cab306176fafd11
0d5cb1f3e3ea510308034a5e569c0e65fae30835
57979dfcf6fdc76f04e4790c2b94b876e188ac780aa49d9bfc8a58c498dc4203
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7185
x-amzn-requestid: e7b997d7-f9ce-40c6-b9bb-372ee10d8ad0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTAfEX5oAMFcHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb9c-31e295e33ead940f381121a1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:43:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p7rimTrmOgUnwPuESSKSrsWlzhiSBJYx9h8XIacxP8DUyyvXye2iyg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 67249
etag: "0d5cb1f3e3ea510308034a5e569c0e65fae30835"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 66029
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23
81.208.42.112200 OK 327 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23
IP 81.208.42.112:0
File type ASCII text, with very long lines (64268)
Size 327 kB (327000 bytes)
Hash 8a5702feb8810be04c356543d737724b
3385fcee5497e03be43e3bbd17e052bb533f3994
60f59e08903c3d0b70e928af542ded081c10a790b6c198c7026788b77f4256ac
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 327000
last-modified: Thu, 15 Oct 2020 16:24:35 GMT
etag: "5f8877c3-4fd58"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
81.208.42.112200 OK 19 kB URL HTTP/2 tedxcesena.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 81.208.42.112:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 18617
last-modified: Sat, 18 Jun 2022 06:30:07 GMT
etag: "62ad70ef-48b9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
81.208.42.112404 Not Found 88 kB URL HTTP/2 tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
IP 81.208.42.112:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (10642), with CRLF, LF line terminators
Hash 08ae820f4a4bf4819165c6be3228767d
f5cd0f588ffc055e1c7745a9c8bacb4459a0a747
7e20567edca46dac14711673647ecc0b9d5cced733102d4a2e7d60e3efa22af2
GET /wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso= HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
server: nginx
date: Mon, 26 Sep 2022 16:30:43 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.2.32
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://tedxcesena.com/wp-json/>; rel="https://api.w.org/"
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
81.208.42.112200 OK 12 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 81.208.42.112:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 3f3fc23f477a3849aa5677c585b2a2b4
ccf0865ebd37f76c450c7a377a86ff2448288db3
985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 12211
last-modified: Thu, 08 Sep 2022 03:56:10 GMT
etag: "631967da-2fb3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
81.208.42.112200 OK 13 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1
IP 81.208.42.112:0
File type ASCII text, with very long lines (12991), with no line terminators
Hash 5c6f8c2d5542d6fa991c13b497d05b42
4136a4ad9c4514563be497f968ce56d11539c8a8
45489ffcf01ef61169bda340908095cfc2c0ddcfa78a6cad71a2d1b636feccdf
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/modernizr.js?ver=3.3.1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 12991
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-32bf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
81.208.42.112200 OK 2.2 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (2231), with no line terminators
Hash 7c776116c2cbdb865cb2a08251dad120
256ecd681bd4939819975d01aa67e8ae361949bb
4f1a52a62bd2fcc4f2173b6173a8774d73c4327085d912b18d10538981446ff7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column-bg-image.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 2231
last-modified: Wed, 31 Mar 2021 19:14:10 GMT
etag: "6064ca02-8b7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
81.208.42.112200 OK 3.3 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28
IP 81.208.42.112:0
File type ASCII text, with very long lines (3344), with no line terminators
Hash 6ee34d5acab69cb428cb2d5f4eb00d17
3b7ba1fea4b197f7363d0631ebb70ff1247594d5
daf181ab9ead5372eefb6fe5d87704d7abdbfa6c09e4c79a2a2f688c6fac5ada
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/cssua.js?ver=2.1.28 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 3344
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-d10"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.3
81.208.42.112200 OK 3.8 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (3759), with no line terminators
Hash 6440aaa90a83b515966b5485df43c893
4fe16633f5f3f140050832e246f3a59315367fc5
2fd7d3ce1df8c1670bb765db2f9d5e000531c7b9656aeaaeb3546a690e58a724
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion.js?ver=3.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 3759
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-eaf"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
81.208.42.112200 OK 35 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4
IP 81.208.42.112:0
File type ASCII text, with very long lines (34773), with no line terminators
Hash 2da6e4c018f2e2f1dfea2ebaa3ae11d5
b885a7a727ad25230a3bcdd3314da471df899371
ed00ca0964cbfca3e3a28ff14ba988ead8846f695adc310f8d3ad796ffed28fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/isotope.js?ver=3.0.4 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 34773
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-87d5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
81.208.42.112200 OK 14 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0
IP 81.208.42.112:0
File type ASCII text, with very long lines (13723), with no line terminators
Hash 05440d2fd20d5cad51df4b4ed447435d
ea9dba717a70c0afeb61f7a046c6682a62eed827
2b01072bc605e2004b2013b56510475dba15fc901809de67475269d32fb3384d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/packery.js?ver=2.0.0 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 13723
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-359b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
81.208.42.112200 OK 373 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6
IP 81.208.42.112:0
File type ASCII text, with very long lines (741), with no line terminators
Hash 0287f860a8c842bd15caea306aeae882
78fd117d49d7ee7aa8f57809902a190b16fe6040
b59b5dbbb13c25fbd8177298e3960a218c5034c076d4f840958540947896ae22
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.transition.js?ver=3.3.6 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 373
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "2e5-5bec578b794e2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
81.208.42.112200 OK 11 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5
IP 81.208.42.112:0
File type ASCII text, with very long lines (10862), with no line terminators
Hash bbd737e5303f22d6b2bbd4c4e9bfd2c6
f7f3712290245cc6f76dca570a3117681cd86546
23263a19c0dc4b29036a56f858a2b6f915ea0e415ed7c46071a071f170626c88
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/bootstrap.tooltip.js?ver=3.3.5 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 10862
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-2a6e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
81.208.42.112200 OK 2.3 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (2283), with no line terminators
Hash f04e95c229f0934515e1f800227f92a0
77f55dfe4505c3f241ae0845ad5dcdc8b807b8ba
c8c066c331d08eaf858338789a0499c5ad85cfc6325d7685ea8a9463750d8684
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.easing.js?ver=1.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 2283
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-8eb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
81.208.42.112200 OK 1.8 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1
IP 81.208.42.112:0
File type HTML document, ASCII text, with very long lines (1767), with no line terminators
Hash 882a4f6998e5d6878f6f53f15008e525
2f73282313194a5ea50186b3d94842b47f941274
233cb2b905dec5df68df039e52e26980f674880fee51a8f6b7f75486760f1f3e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 1767
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-6e7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
81.208.42.112200 OK 8.8 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (8833), with no line terminators
Hash c05b53928b00139c8e91f8486564e314
99f7ed822210b60736949fa700ed2bdc2c815270
5f4a78ccf9ce5efdc593c0350e8974fcb040b3c95c7763cee02ccf40e52b26b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.waypoints.js?ver=2.0.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 8833
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-2281"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2
81.208.42.112200 OK 22 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2
IP 81.208.42.112:0
File type ASCII text, with very long lines (22301), with no line terminators
Hash 9f42435f9fbe7157061d73f9c93c5ba1
aa8d8a931d8684ca79049e51fa073238f64b34cb
090db20789f62291ea860880d1751824e57fc619602b08a400a3a8b4cb0be3d9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.flexslider.js?ver=2.7.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 22301
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-571d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
81.208.42.112200 OK 334 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (647), with no line terminators
Hash d149404863e3dff58424f3f020ae6ace
869cc5667a9c403ceca871820efb16bd194251d6
bbf79d290f98746420dc076d71132d409a2f9dc4132f7d06669b615097fcfb8f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverflow.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 334
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "287-5bec578b7a482-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
81.208.42.112200 OK 1.1 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (1098), with no line terminators
Hash 3430261b0500bb2d00a6c002c4ffcc30
839ae2f86ab55112649406d8884524c2d66cc297
34e014c7d41ab0ae2996907824eda3bde337242ebd9dc29aeccd9d67078246ab
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.hoverintent.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 1098
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-44a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
81.208.42.112200 OK 21 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1
IP 81.208.42.112:0
File type ASCII text, with very long lines (20980), with no line terminators
Hash 6bbb65f9bccfc939ba77457d4b6c20ec
3c9b3ec7021e7e4d47a7f4e6218b4f887475fb27
ed7b60f6de9cc21491346a7e9d2e4a47cfe29ecdda640473875492e537b8143b
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.infinitescroll.js?ver=2.1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 20980
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-51f4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
81.208.42.112200 OK 2.6 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6
IP 81.208.42.112:0
File type ASCII text, with very long lines (2604), with no line terminators
Hash 5118a4965e81da6dcb7def1ca48b189b
f67279ea1c87e5605f9930c9eedfc4cb54c6adf5
136859a04a16d051a3d15752d0b415a6c2c837f1278a56dbb87a0e93ba8b9601
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.mousewheel.js?ver=3.0.6 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 2604
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-a2c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
81.208.42.112200 OK 2.2 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7
IP 81.208.42.112:0
File type ASCII text, with very long lines (2176), with no line terminators
Hash e9256563e9658d30f484407ffb8baf3a
ef00b51debbc367d6039482ef311c115496d5d7d
fa34de993dea91eb0120c3745378192fa1177ba8ec5772e08632318d1d5e1267
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.placeholder.js?ver=2.0.7 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 2176
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-880"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
81.208.42.112200 OK 1.4 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (1417), with no line terminators
Hash 044f04f1b997661773e5fb7a98f0283e
0e6a82d2e4e086f07b3a2f4043d444d44ae45a14
18d6442774348bade3c7053b5775acde74021892a547b57511e8f0c9842f74da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-equal-heights.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 1417
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-589"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
81.208.42.112200 OK 6.8 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (6803), with no line terminators
Hash c47fc57967c35a064f5d1918f173f9d0
96b06b5db2ef750abc8f6232771d7c52879a06d3
dcefc5cafed5481f31bf826c91496e5368751599dd37c4e8d39af82711b439fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/fusion-video-general.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 6803
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-1a93"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
81.208.42.112200 OK 250 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (381), with no line terminators
Hash ce76d7531184bf0b57bebd289fb7d42c
51f7a0f643501e393a8ecb658912f3b55eecfd33
46997de0a62465e85e421cbd4997bf92fd73398248f2523e8cf04ebe028e8794
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-waypoints.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 250
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "17d-5bec578b80242-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
81.208.42.112200 OK 7.3 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (7317), with no line terminators
Hash 06a7828219c74a6a5153331a24cc1ea3
d457d343b56373b2098f465d20862b943e4bb893
2fa970caddd915d54007f322bdeb7e8538fae637168f0980531c0879f775dafa
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-lightbox.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 7317
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-1c95"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
81.208.42.112200 OK 6.2 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (6195), with no line terminators
Hash acfd1c6729678a5fcd626e54023c685b
40f224087d3354b954224b654051ed08ded0e814
7f591dbd18b7c7e1835829a5a4cdca5dccc9a3e1f45bc66ad15b0f33b40d6961
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-flexslider.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 6195
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-1833"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
81.208.42.112200 OK 1.7 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (1717), with no line terminators
Hash 6dc0ed6af26f4c7f084877544fcf8bfc
5546027b819846fea40ceff0d4cd7cf9a5aa460d
a72d773722f022145b04242a05b206adf0d7dacaf493e7c56f5aa0a612fa2e29
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-tooltip.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 1717
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-6b5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
81.208.42.112200 OK 363 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (945), with no line terminators
Hash 31608b942a5fd102bd7061606beea21c
96d21bcd71d24e308fdab545337b51b0602d7b1b
94a33800d6c16d440ac846bdcd2620e5e794f4c1849e825d9b262d1c12121ea5
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-sharing-box.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 363
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "3b1-5bec578b7f2a2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2
81.208.42.112200 OK 5.8 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2
IP 81.208.42.112:0
File type ASCII text, with very long lines (5771), with no line terminators
Hash 8b11bce74ce94f4ebbbeae03ea618761
b9c1aa362667343b56b8fd5c5f39f787e54e69a0
0c5546e89790a549dd509663f1f11b0a9ec853448a3139026bef0df61970a383
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.sticky-kit.js?ver=1.1.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 5771
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-168b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
81.208.42.112200 OK 6.8 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8
IP 81.208.42.112:0
File type ASCII text, with very long lines (6785), with no line terminators
Hash 6fb516503ad779228bc4ce728695f863
4327965b2c094d7b2e0723e98fdc5278241faba5
e1ad0b4138c80c3d001287d48a3915724c963ef85787df537a8de61f906c5f8e
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/imagesLoaded.js?ver=3.1.8 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 6785
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-1a81"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.3
81.208.42.112200 OK 1.9 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (1850), with no line terminators
Hash 1fd0ebb8b1efa54b8d02dfe70a98f0d0
8b265e8e685d2dfc22a891994d848b71f9feb7ed
958e4e76341784cf7b5a332a49318b40402201cc24ec3ff396d4963987015ef3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-quantity.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 1850
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-73a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.3
81.208.42.112200 OK 343 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (886), with no line terminators
Hash 80ada6e5a72910c7934660b7b2abdd8e
bf9d02b2475365b25199119600c7887451b88cac
9bf5381e6f406dbc72404c0994322ae2dec8cffbe4bc0575a6909e1dae3b9639
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-select.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 343
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "376-5bec578c24342-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.3
81.208.42.112200 OK 259 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (503), with no line terminators
Hash 1e46ce5880df5dbf12b6a8f7f7d75e81
bdb3cc8f74ae0e319c3691c7ff4fa846a873498e
c87434343054c77a10df2527ae4041e503db763e1a6f7a901e1195917f27dc09
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-tabs-widget.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 259
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "1f7-5bec578c22402-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=7.3
81.208.42.112200 OK 1.6 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (1575), with no line terminators
Hash e60f8f70b97fc4cbf96fd8fce0e6ef1d
f75805001bafa09e647972050d84ba683d95522b
367625a83613a664b37a7fa4c39f3fdf78aa16436bb45aeda363654c0ad0c4ae
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-contact-form-7.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 1575
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-627"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.3
81.208.42.112200 OK 242 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (325), with no line terminators
Hash 08d2bf4a763267afc84beb93b7c39f88
2221be913b0428a1bafe766ec95a841b488318bc
2902a191ee6ba196d11c1606d3d05bcc3e9ed69a71e101ea4ab3735f6aa81105
GET /wp-content/themes/Avada/assets/min/js/general/avada-skip-link-focus-fix.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 242
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "145-5bec578c233a2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
81.208.42.112200 OK 17 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1
IP 81.208.42.112:0
File type Unicode text, UTF-8 text, with very long lines (16292)
Hash add41bd998490cb0db82b59c60b4b433
c367b3166670d0b6a0ee78f0cb8d476f780201cd
501c8b7edd85aa5b93a52254d40cf04d754018292b113caf7f76441701d30a0a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/vimeoPlayer.js?ver=2.2.1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 16573
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-40bd"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.3
81.208.42.112200 OK 218 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (413), with no line terminators
Hash 23f2f1c5d7ea17a286f0786a6e140c57
07747eb896e632ae0be9434bd6f72f23bfd5deba
37ec369020564a393ed54f305a9405de87340872e44669cc0a5d4f93b579715f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-general-footer.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 218
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "19d-5bec578c233a2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=6.0.2
81.208.42.112200 OK 8.0 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=6.0.2
IP 81.208.42.112:0
File type ASCII text, with very long lines (7988), with no line terminators
Hash 864a6a10aa1ee2c6936bea552483c417
d7a0e0ade113b91cec6ed33c016d646eec98724e
7d5675e7cafaff88df8d0e8b3d208994d5bc0eb85ed0f456db31f58531fceb34
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-blog.js?ver=6.0.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 7988
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-1f34"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-crossfade-images.js?ver=7.3
81.208.42.112200 OK 190 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-crossfade-images.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (418), with no line terminators
Hash 23f20a4910baec4f89ee4b41c41663a9
0137dfa686ad8e3c03afee4cb72ded6dafc52d65
cc1fc5dea521e84e6bc2f3ed7128896dce516f4c0f40c6e668a43fc7464badf5
GET /wp-content/themes/Avada/assets/min/js/general/avada-crossfade-images.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 190
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "1a2-5bec578c22402-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-rev-styles.js?ver=7.3
81.208.42.112200 OK 2.8 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-rev-styles.js?ver=7.3
IP 81.208.42.112:0
File type HTML document, ASCII text, with very long lines (2774), with no line terminators
Hash dddcad23e8a5b6a352037a2270f183e3
8b33d08235aca66809ac91b59d5c1c7f10544823
68bec0121363230f259b5abcfe8287100777c0e3b3d7bfb619d18273a6aa4728
GET /wp-content/themes/Avada/assets/min/js/general/avada-rev-styles.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 2774
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-ad6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/library/jquery.elasticslider.js?ver=7.3
81.208.42.112200 OK 4.5 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/library/jquery.elasticslider.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (4545), with no line terminators
Hash c20e1b58b03917fb1d004809ca774c36
c40b8d233beb2af2a07768207571cd1515537d7b
11f4df8462b2edc6add3928ab5f30dcab77f69c29c0e175b1888f4cb6275823c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/library/jquery.elasticslider.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 4545
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-11c1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.0.2
81.208.42.112200 OK 195 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.0.2
IP 81.208.42.112:0
File type ASCII text, with no line terminators
Hash 035163682275e8f6a212787443a5bec6
030d18ea4df0e92fc24075a087a5d9348ac9ec05
a8c8562166bc6c2f9865bcd3ce89dd0e9d5e49cb6583bcb7d4579e173a882f60
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-alert.js?ver=6.0.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 195
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "104-5bec578b80242-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.3
81.208.42.112200 OK 6.1 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (6070), with no line terminators
Hash e3d7b51ab0192ff754021c69f72e9191
5b1f0ab6cc37444c94846f9817516e2930f77321
579683e317a76a9a6758e42680b394e80957cbdd2863c25abac9a875852abfc7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-drop-down.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 6070
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-17b6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.3
81.208.42.112200 OK 33 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (33006), with no line terminators
Hash 6273abf595f935314ef0ad9259666c73
214bf521cd09f7ae98ca4cee733cdbc4cc3a5648
59f3d01871c11ef064438fcd032b1380044f7f80d823b1061341f29944038fa8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-header.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 33006
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-80ee"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.3
81.208.42.112200 OK 40 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (39902), with no line terminators
Hash 5fb2a61684317a4ef24130e928c7d0b4
e23c1a33a180394e22e136a7346b79feb75dfd3d
43ba72b7f528bee948b29ce090c6ea289a63bf7c58671916a0dc3a3211f5dae3
GET /wp-content/themes/Avada/assets/min/js/general/avada-menu.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 39902
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-9bde"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.3
81.208.42.112200 OK 460 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (1017), with no line terminators
Hash 0d808ead6673893f722abf2029709e16
678c466d63ccf49207902170d3bcca89b507ee7c
83774becdc5fb0a255975716cfd24378f4e459a94896aab680f5ef604e75e9c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-to-top.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 460
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "3f9-5bec578c21462-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.3
81.208.42.112200 OK 3.6 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (3566), with no line terminators
Hash 3a24aa689a98a563799adc4975682ec3
8a24c072282d789952ec4138e911ae5dbe30f883
db05d6e089dc6fd86e041257a2da23d4d4740d256dc9731e281e57401d12e23f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-sidebars.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 3566
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-dee"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=6.0.2
81.208.42.112200 OK 1.6 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=6.0.2
IP 81.208.42.112:0
File type ASCII text, with very long lines (1642), with no line terminators
Hash 31070c9c6bb7cce1141379f5341d63be
ff25be4c090dd58ce788388fa0776eba27976405
90ba13966c61f7ed9e4dfba7932afb7c4e8909d3b94c9a4155da726ae73eb367
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-animations.js?ver=6.0.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 1642
last-modified: Wed, 31 Mar 2021 19:14:10 GMT
etag: "6064ca02-66a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
81.208.42.112200 OK 3.6 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (3575), with no line terminators
Hash 7480eacd991c91b5a1afae374975f43d
467171ddc9cac8ceec20f088012a73d9bf46b2f3
d8821c5035a54ac174ed82f68e6d7ce4beb77d1d7c884fcf18d67f8cfb4a6eab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-responsive-typography.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 3575
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-df7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-elastic-slider.js?ver=7.3
81.208.42.112200 OK 233 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-elastic-slider.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (565), with no line terminators
Hash f39dd41bde45ff29bd8ce208c94482ca
82c273265b6ed4d17be7f2cd63d105892cc6fd77
ede9659bfe70a2ce8c8e5a06b443c7e70c93d0b83f930c7b5e6010674a4be1f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-elastic-slider.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 233
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "235-5bec578c22402-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
81.208.42.112200 OK 5.5 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (5512), with no line terminators
Hash 1fe28e8d1e7702cef111d084a4e8e704
cd152c8b8c3f2b26d2f30a923ab26cb67a5f4a76
d1d05eb5520d48c9c7dbd4b6b4799b04466f1e790518e717c35b786f5c1ef826
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-scroll-to-anchor.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 5512
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-1588"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
81.208.42.112200 OK 2.1 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (2069), with no line terminators
Hash a3304c9c1171401d80cace2144f8adc3
3a140da1c55015b949d1b02a18f853eb567dacd7
9a0a34bc67f5d3623591214473ac2d449be18a8ce1cb5e531b185ef22a09b31f
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-video.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 2069
last-modified: Wed, 31 Mar 2021 19:14:10 GMT
etag: "6064ca02-815"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
81.208.42.112200 OK 2.7 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2
IP 81.208.42.112:0
File type ASCII text, with very long lines (2714), with no line terminators
Hash fadc46774c7712da7f0b02b5d2db51ed
43dd8897810d67456494ddd42a8c9e96a6160e16
5c569522330e4e6b040229701ae98650839c5baa9912e15f821ffef8341187f5
GET /wp-content/themes/Avada/assets/min/js/library/bootstrap.scrollspy.js?ver=3.3.2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 2714
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "606372f3-a9a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.3
81.208.42.112200 OK 331 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (761), with no line terminators
Hash 23f44935192d6700820ccbb499e217ff
1a0df8aae68cef2f7046b3db9ab37e457b856153
7ff3a2a48c48f952369cd8e286aa3a4dc0f2cb300c6904a5b2b6b504e7c2c58b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/assets/min/js/general/avada-scrollspy.js?ver=7.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 331
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:27 GMT
etag: "2f9-5bec578c233a2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.3
81.208.42.112200 OK 1.9 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (1887), with no line terminators
Hash 0db8b8f836e72682522d3241d882f0fa
8d89a5ab9563a805537c4855fb297f2f68622042
dacf368c1e8ff4cf7ca357f6df7c9bba459b0d04b8820a009d0121fffec12620
GET /wp-content/plugins/fusion-core/js/min/fusion-vertical-menu-widget.js?ver=5.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 1887
last-modified: Wed, 31 Mar 2021 19:14:17 GMT
etag: "6064ca09-75f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
81.208.42.112200 OK 245 B URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (483), with no line terminators
Hash 4001b77cd3b0c975837e565ac678502a
044aa2eddb3c3f51fb12a4d2a28e251c80878202
040c6f4cd99e486f79e06fffdc110d3a554dd72a8d76ac025cf9a6c7110518ca
GET /wp-content/themes/Avada/includes/lib/assets/min/js/general/fusion-general-global.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 245
x-accel-version: 0.01
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "1e3-5bec578b7f2a2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
81.208.42.112200 OK 5.1 kB URL HTTP/2 tedxcesena.com/wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1
IP 81.208.42.112:0
File type ASCII text, with very long lines (5090), with no line terminators
Hash e4e326b1feda67dab24ce0bc84f52a18
8198b9c26cd01dc7e3a9919760ddd14879eca336
bb1aef79cfc971dea7253427d2b52152afd6f0a90a7e8f38babf163e8bcd2701
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/fusion-builder/assets/js/min/general/fusion-column.js?ver=1 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 5090
last-modified: Wed, 31 Mar 2021 19:14:10 GMT
etag: "6064ca02-13e2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
81.208.42.112200 OK 82 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb0c03e5454ce364e4225e3a86bdcd7f
58188a42ce5f48ea5f98dab71c6a888ccf81ea93
46fbb85906dcb19788d5587a40f8a789138e7ffe8cab09ececdfbc7fc906e6a6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/min/js/library/jquery.ilightbox.js?ver=2.2.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: application/javascript
content-length: 82318
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-1418e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/uploads/2020/02/TEDxCesena-logo.png
81.208.42.112200 OK 8.8 kB URL HTTP/2 tedxcesena.com/wp-content/uploads/2020/02/TEDxCesena-logo.png
IP 81.208.42.112:0
File type PNG image data, 361 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 120f4e0bbf315262ebf3e1dc4fb47789
544b05f92440cf494be7067ad1b3ea7adace62fa
631ce6d169444641df678e5d5c5bc7aa3d7ce23c9f3e67bb08ed20ef6e823201
GET /wp-content/uploads/2020/02/TEDxCesena-logo.png HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: image/png
content-length: 8784
last-modified: Mon, 03 Feb 2020 14:14:00 GMT
etag: "5e382aa8-2250"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/uploads/2020/02/TEDxCesena-logo-small.png
81.208.42.112200 OK 7.8 kB URL HTTP/2 tedxcesena.com/wp-content/uploads/2020/02/TEDxCesena-logo-small.png
IP 81.208.42.112:0
File type PNG image data, 200 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash f776280dc0118ebe2f49b8df320b805d
d2def9dbe20d3ff0fe707c50aa4ce45feab0e4a2
ee2115aa7fce73570160d9867a4e23f030c16d7115d1ff550a9d29d3fad1f692
GET /wp-content/uploads/2020/02/TEDxCesena-logo-small.png HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: image/png
content-length: 7759
last-modified: Thu, 06 Feb 2020 07:56:28 GMT
etag: "5e3bc6ac-1e4f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/uploads/fusion-styles/70f3b08454432a676db8bb6a6d2727b1.min.css?ver=3.3
81.208.42.112200 OK 1.1 MB URL HTTP/2 tedxcesena.com/wp-content/uploads/fusion-styles/70f3b08454432a676db8bb6a6d2727b1.min.css?ver=3.3
IP 81.208.42.112:0
File type ASCII text, with very long lines (58641)
Size 1.1 MB (1143311 bytes)
Hash 70f3b08454432a676db8bb6a6d2727b1
8ada61cf82318ab9f76233a743158b4b8f0b9e46
a1b6f905ec668966e629cb5f2a2aabe4474a2b8b568e1e88e61274fc68683230
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/fusion-styles/70f3b08454432a676db8bb6a6d2727b1.min.css?ver=3.3 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:44 GMT
content-type: text/css
content-length: 1143311
last-modified: Tue, 13 Sep 2022 17:51:18 GMT
etag: "6320c316-11720f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 16:30:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 16:30:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 16:30:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tedxcesena.com
Connection: keep-alive
Referer: https://tedxcesena.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:10:21 GMT
expires: Wed, 20 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 516025
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u_w4BMUTPHjxsI5wq_Gwft.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u_w4BMUTPHjxsI5wq_Gwft.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 24448, version 1.0\012- data
Hash 865e46af816320c9f32234e8968558d0
6791e9f732fcbde0f375f84ccbc14c4ac72795a3
6c84348296ebe2e2a0830c3962eb02156419d9bc76371c2eadaf7329d827d550
GET /s/lato/v23/S6u_w4BMUTPHjxsI5wq_Gwft.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tedxcesena.com
Connection: keep-alive
Referer: https://tedxcesena.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:27:46 GMT
expires: Wed, 20 Sep 2023 17:27:46 GMT
cache-control: public, max-age=31536000
age: 514980
last-modified: Tue, 26 Apr 2022 16:41:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tedxcesena.com
Connection: keep-alive
Referer: https://tedxcesena.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:10:21 GMT
expires: Wed, 20 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 516025
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
81.208.42.112200 OK 21 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
IP 81.208.42.112:0
File type Web Open Font Format, TrueType, length 20908, version 1.0\012- data
Hash 00491de6282bc94e9cc6a2ccbb4b3ae6
a3f9f4a0e469c3557e64029415698942903f10a4
22c851d5f36813ff8cbb4ab0d16273aa1eb536f84f2c56b53df8d2c7a54479a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tedxcesena.com/wp-content/uploads/fusion-styles/70f3b08454432a676db8bb6a6d2727b1.min.css?ver=3.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:45 GMT
content-type: application/font-woff
content-length: 20908
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-51ac"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
81.208.42.112200 OK 78 kB URL HTTP/2 tedxcesena.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 81.208.42.112:0
File type Web Open Font Format (Version 2), TrueType, length 78212, version 331.-31261\012- data
Hash 8c4f474a3aaa695346196b1f33fab616
abc1ae262d760e104a5a5cb68614ac119fd0db18
ef2369c82b6ec19bcf4fe76799d94edc43604e164c0f73978059536159845441
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tedxcesena.com/wp-content/uploads/fusion-styles/70f3b08454432a676db8bb6a6d2727b1.min.css?ver=3.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:45 GMT
content-type: font/woff2
content-length: 78212
last-modified: Tue, 30 Mar 2021 18:50:26 GMT
etag: "606372f2-13184"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 16:30:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tedxcesena.com/wp-content/uploads/2016/01/cropped-favicon.ico-32x32.png
81.208.42.112200 OK 1.7 kB URL HTTP/2 tedxcesena.com/wp-content/uploads/2016/01/cropped-favicon.ico-32x32.png
IP 81.208.42.112:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash eb5debcadccaf6d02dc80eaeb6aa3bd6
5156d002e8cece606731e725f37b632fd0f844a8
8e12ae35e566e8092f02a71c4b0983e791cb41a5ae82daa9932c511311ff06e4
GET /wp-content/uploads/2016/01/cropped-favicon.ico-32x32.png HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:46 GMT
content-type: image/png
content-length: 1730
last-modified: Fri, 13 Mar 2020 20:12:50 GMT
etag: "5e6be942-6c2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
tedxcesena.com/wp-content/uploads/2016/01/cropped-favicon.ico-192x192.png
81.208.42.112200 OK 21 kB URL HTTP/2 tedxcesena.com/wp-content/uploads/2016/01/cropped-favicon.ico-192x192.png
IP 81.208.42.112:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 1165e8e8232dad080f409b931b8e0e8c
0767c591b572ba2efb96abaf16d2bbd4f1cdaceb
b55bc03dc56b54392334cf130b981a89da4530d0429161f59a7f3cdcd2f7ce93
GET /wp-content/uploads/2016/01/cropped-favicon.ico-192x192.png HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:46 GMT
content-type: image/png
content-length: 21086
last-modified: Fri, 13 Mar 2020 20:12:50 GMT
etag: "5e6be942-525e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.iubenda.com/iubenda.js
104.66.117.233200 OK 5.2 kB URL HTTP/2 cdn.iubenda.com/iubenda.js
IP 104.66.117.233:0
File type ASCII text, with very long lines (14232), with no line terminators
Hash 93158bbda324986d0e156d53ddfd79c1
e7cef19da1db60d3bd8466a9cead10595dee2ee8
5541c87bcd354aea79a491aa532bac6b1fafb2350ffd41cc0587cad7aa1e831b
GET /iubenda.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: br
content-type: application/javascript
etag: "632d5991-1451"
last-modified: Fri, 23 Sep 2022 07:00:33 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
content-length: 5201
cache-control: public, must-revalidate, proxy-revalidate, max-age=86400
expires: Tue, 27 Sep 2022 16:30:47 GMT
date: Mon, 26 Sep 2022 16:30:47 GMT
X-Firefox-Spdy: h2
cdn.iubenda.com/iubenda_i_badge.js
104.66.117.233200 OK 2.6 kB URL HTTP/2 cdn.iubenda.com/iubenda_i_badge.js
IP 104.66.117.233:0
File type ASCII text, with very long lines (8044), with no line terminators
Hash ce029cfafc5e14d82bc66dc1f7584b7f
fa17354b1b363629af11e341d23166d60c5f7ebf
87f022a326b493e5b8c493492a73f3879d3f547f097c65e77cc9929f17dc1f2d
GET /iubenda_i_badge.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
etag: "632d5991-a3d"
last-modified: Fri, 23 Sep 2022 07:00:33 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
content-length: 2621
cache-control: public, must-revalidate, proxy-revalidate, max-age=86400
expires: Tue, 27 Sep 2022 16:30:47 GMT
date: Mon, 26 Sep 2022 16:30:47 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tedxcesena.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 14:41:09 GMT
expires: Mon, 26 Sep 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 6578
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tedxcesena.com/wp-json/contact-form-7/v1/contact-forms/4561/feedback/schema
81.208.42.112200 OK 0 B URL HTTP/2 tedxcesena.com/wp-json/contact-form-7/v1/contact-forms/4561/feedback/schema
IP 81.208.42.112:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-json/contact-form-7/v1/contact-forms/4561/feedback/schema HTTP/1.1
Host: tedxcesena.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tedxcesena.com/wp-admin/MandTBAnk/M&T/login.php?online_id=0e2b5aa27acc9dee341caa4a4&country=&iso=
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 16:30:46 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://tedxcesena.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
vary: Origin
x-powered-by: PHP/7.2.32, PleskLin
X-Firefox-Spdy: h2