| grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal |  50.31.176.23 | 301 Moved Permanently | 0 B |
URL HTTP/1.1grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal IP50.31.176.23:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp/wp-content/themes/twentysixteen/zab/DHL/portal HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
x-litespeed-cache: hit
content-length: 0
date: Thu, 27 Oct 2022 04:03:26 GMT
server: LiteSpeed
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe36c852b5e145f2f09fe73111fb162e1 e439c6a462f86a3003d6464a8b9999b1c4d1e210 52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5257
Expires: Thu, 27 Oct 2022 05:31:04 GMT
Date: Thu, 27 Oct 2022 04:03:27 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash45bfdf3b823cd24564c8ac296a8b5b19 b0c442eb4f87556b3beb18ca8039dd4399b73f16 32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4797
Cache-Control: max-age=110852
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:27 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 10:50:59 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha39eea1096852891690eaee02a64383e c273000f799fc3676e8e3ef3617611a31252cffc d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2842
Expires: Thu, 27 Oct 2022 04:50:49 GMT
Date: Thu, 27 Oct 2022 04:03:27 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PFB2yaeuuGYLWHv0WPLt0yXv8dZA4fOfRIHzj9Nl/whG6htarssIBnPYub9lBnC49+GEgRpM/OB6zX16x11zeg==
x-amz-request-id: P6B71QQNTH4JFCXD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 03:39:27 GMT
age: 1440
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 04:03:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashdd283dfc036535bdeb8a8be1310ef930 d3b1c300dd75d7af630e0f3112e49d7492d66c17 578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5710
Cache-Control: max-age=106709
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:28 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 09:41:57 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash91b74d6ae217958f13ebc358f22f561d 3f77d30d7eaf3c53fc45594dbf932353b06c2873 9ec534d559ceb1575554743f2bc9ade643e5d5e5a7e32355699eee8cb67460d5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1864
Cache-Control: max-age=95337
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:28 GMT
Etag: "6358cd31-116"
Expires: Fri, 28 Oct 2022 06:32:25 GMT
Last-Modified: Wed, 26 Oct 2022 06:01:21 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash91b74d6ae217958f13ebc358f22f561d 3f77d30d7eaf3c53fc45594dbf932353b06c2873 9ec534d559ceb1575554743f2bc9ade643e5d5e5a7e32355699eee8cb67460d5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 455
Cache-Control: max-age=93928
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:28 GMT
Etag: "6358cd31-116"
Expires: Fri, 28 Oct 2022 06:08:56 GMT
Last-Modified: Wed, 26 Oct 2022 06:01:21 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashf046e6113dd1e5e499c765516be08b17 c2253055e09b46209469853cad8720e64f84a1bf 18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| grupointegrapr.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2 | 50.31.176.23 | 200 OK | 7.7 kB |
URL HTTP/2grupointegrapr.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2 IP50.31.176.23:0
File typeASCII text, with very long lines (38375) Hash5e8aa80e8c69e966aa5ddb223c5394a3 a99e0f026436b8a7f8d10da0f96e4a0977f003dc 66134865a5ca3fa8f1018bf7c1aeddd875cdd0eb41e3db1cbd50e0f1f4427571
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 20:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7686
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 | 50.31.176.23 | 200 OK | 11 kB |
URL HTTP/2grupointegrapr.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 IP50.31.176.23:0
File typeASCII text, with very long lines (43771) Hashd45207ee05c1f0c57dfa075e61405ccd a8d35143a2d828a739ea0fdde75f97d33621e7ec a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 16:47:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash91b74d6ae217958f13ebc358f22f561d 3f77d30d7eaf3c53fc45594dbf932353b06c2873 9ec534d559ceb1575554743f2bc9ade643e5d5e5a7e32355699eee8cb67460d5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1864
Cache-Control: max-age=95337
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:28 GMT
Etag: "6358cd31-116"
Expires: Fri, 28 Oct 2022 06:32:25 GMT
Last-Modified: Wed, 26 Oct 2022 06:01:21 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 | 50.31.176.23 | 200 OK | 3.6 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 IP50.31.176.23:0
File typeASCII text, with very long lines (19233) Hashaf3bdf44d09914e8adb51fec560d8816 84bb225e096bab405868dd504e62133ba75cf1c1 4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3629
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/css/wasi-connector-public.css?ver=2.0.1 | 50.31.176.23 | 200 OK | 4.1 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/css/wasi-connector-public.css?ver=2.0.1 IP50.31.176.23:0
File typeASCII text, with very long lines (950) Hash82a77927f4ef74fccf927579de6ce0ac d7438100e7dac49248dad58d8de319bd0a26e4a3 9b67910873968e38004123df6e22805853d9fcc9d24e3c15f81a0110706b90b3
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/wasi-connector-master/public/css/wasi-connector-public.css?ver=2.0.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Fri, 15 Jul 2022 21:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4114
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.0 | 50.31.176.23 | 200 OK | 13 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.0 IP50.31.176.23:0
File typeASCII text, with very long lines (65497) Hash4074eac3f0d92b865f8562f5f093c7be 7e44d7f4ae376c15d2612b796fe2a75a77e233c3 e8f4f75d94572b50a0856b705a39a76b86016b5597362c43c6593b3a7a012f13
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12973
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/uploads/elementor/css/post-9.css?ver=1660399942 | 50.31.176.23 | 200 OK | 434 B |
URL HTTP/2grupointegrapr.com/wp-content/uploads/elementor/css/post-9.css?ver=1660399942 IP50.31.176.23:0
File typeASCII text, with very long lines (1905), with no line terminators Hash078a08065a7d6659a9d8e3462981d1ec 7add3c494310d379892f8dc175d67db846e2acb2 e6e14a04046d7e75457bf8221b39c22d372bfb963b730d1b825a866f68bc8620
GET /wp-content/uploads/elementor/css/post-9.css?ver=1660399942 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:12:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 434
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashf046e6113dd1e5e499c765516be08b17 c2253055e09b46209469853cad8720e64f84a1bf 18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 | 50.31.176.23 | 200 OK | 1.5 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 IP50.31.176.23:0
File typeASCII text, with very long lines (11362) Hashf90e81674a08b7b1aba916040f2c2e93 d8eb3ce233010f310c6072d632662e255b316e68 beddae95f92593d062472030ea8e8e0ebac9f72cce4e3211751d2ffd1bb3b8bb
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:11:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1505
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/uploads/elementor/css/global.css?ver=1660399943 | 50.31.176.23 | 200 OK | 2.6 kB |
URL HTTP/2grupointegrapr.com/wp-content/uploads/elementor/css/global.css?ver=1660399943 IP50.31.176.23:0
File typeASCII text, with very long lines (14692) Hashe6ae8a0de08641949a3f16a5699c6f40 5b74889d158c3982bd99a30065a9155866b54198 b1c42719ac11e1abb881e6448ea37de5a557f6791b7a5b06e9f25009da7bf839
GET /wp-content/uploads/elementor/css/global.css?ver=1660399943 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:12:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2637
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/uploads/elementor/css/post-117.css?ver=1663013109 | 50.31.176.23 | 200 OK | 1.3 kB |
URL HTTP/2grupointegrapr.com/wp-content/uploads/elementor/css/post-117.css?ver=1663013109 IP50.31.176.23:0
File typeASCII text, with very long lines (14197), with no line terminators Hashc3878a48e328fb2061ac06df4809e026 4f9e48905b47c4cbb4aea5d91b373000cf07fd0c 1201d849ec0118df5c4431307e9a48261b6092a638cba60eeaff116b11138839
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-117.css?ver=1663013109 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 20:05:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1313
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/uploads/elementor/css/post-101.css?ver=1663012065 | 50.31.176.23 | 200 OK | 1.6 kB |
URL HTTP/2grupointegrapr.com/wp-content/uploads/elementor/css/post-101.css?ver=1663012065 IP50.31.176.23:0
File typeASCII text, with very long lines (9368) Hash40ba67a509351660f10d4559d8da5a70 554fe87ded4d117675b46aef7ca167769bd0c00e b67e038a6a93454f61fe5aa242114e8a975a56b88119f3ccdc631c57f391d24f
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-101.css?ver=1663012065 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 19:47:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1615
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.3 | 50.31.176.23 | 200 OK | 967 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.3 IP50.31.176.23:0
File typeASCII text, with very long lines (5334), with no line terminators Hash257736dab7a9c54a1338e598f350c8e0 35603628a42981badb8bbcbef232458df605d9a4 97da98b3c8e9a41c2d04eb9875f48a3fc5b98ce708baf76fe795d4236b107c6e
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 20:34:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 967
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 | 50.31.176.23 | 200 OK | 283 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 IP50.31.176.23:0
File typeASCII text, with very long lines (491) Hash453a93dc816be89f942ebb253ff199fb 01563d6019803e3ff2a94c5397e7e771ee6f440d 36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 | 50.31.176.23 | 200 OK | 284 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 IP50.31.176.23:0
File typeASCII text, with very long lines (489) Hashdc279c928e2924b07a4a7575f8070ee8 0196756cacdb61ef40483af7ea982b699b0933de 80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 50.31.176.23 | 200 OK | 4.0 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP50.31.176.23:0
File typeASCII text, with very long lines (11126) Hash7e058b51f939eacfa31cdface14dded5 9d732e5afdeb42edef9e1b9631b7e95e054787cc 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 | 50.31.176.23 | 200 OK | 286 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 IP50.31.176.23:0
File typeASCII text, with very long lines (483) Hash8828fa3c5bdcfa66615714a2b8c9d807 4f556d0b005ac7754af607418df445f8cf98e8b1 16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css | 50.31.176.23 | 200 OK | 755 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css IP50.31.176.23:0
File typeASCII text, with very long lines (12953) Hash459d601823d9e8346a3ba1aa4c391631 4679f8122ccd7b48e6415fbf49dc8ab5b10822d0 1bfcfc32f3bce95e4ba265eb7430f8826e735fe8ed0e723e008f216268d0c0f8
GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 755
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10 | 50.31.176.23 | 200 OK | 3.9 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10 IP50.31.176.23:0
File typeASCII text, with very long lines (15058), with no line terminators Hash15afa6e474b617a1ed4b5588603461c0 a665b9734e030006fae44e2f7ad4334dec9dce5b a622b73cb718a5cab53be457a6212876bcb5234be29a96bd95fff96f55729661
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 20:34:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3893
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.1 | 50.31.176.23 | 200 OK | 2.0 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.1 IP50.31.176.23:0
File typeC source, ASCII text, with very long lines (8750), with no line terminators Hasha96c0f83522ef34892ab3722953bf3c7 140b12d376c14ac81b02bb6eee88c3c9bacb0478 daf9fbe2331e58518af4f06aafd164649cc399fe921299c57e2e4c046b942e83
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 20:34:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1970
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2 | 50.31.176.23 | 200 OK | 3.8 kB |
URL HTTP/2grupointegrapr.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2 IP50.31.176.23:0
File typeASCII text, with very long lines (16935), with no line terminators Hash3a5528d3c5255102448258fcf5496360 332bb0c5baaf8110b353094632417e9f313a8b94 024bb2f7ca7725ca60738783b8b6bbc237c937b6725aec3c2a1044961857186a
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 20:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3808
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css | 50.31.176.23 | 200 OK | 3.3 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css IP50.31.176.23:0
File typeASCII text, with very long lines (29344) Hash72f80bd308445d5efdb2a62b1b52c624 427df6eba8704076b8aae92551a332f1096c39ff c57ddb664f6a695dda386d09f0c1b635a06e2fe36fdaf07bd317df9115330216
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:11:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3331
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/js/wasi-connector-public.js?ver=2.0.1 | 50.31.176.23 | 200 OK | 3.0 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/js/wasi-connector-public.js?ver=2.0.1 IP50.31.176.23:0
Hashc04df709a9047c0847694db605080dc1 a56aa4625d7b31660eadb4493e4af16052c055b5 6208b8f91808999959acb9884c4b984ea1a3599bba3ed9d18f0654174ae1a7cb
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/wasi-connector-master/public/js/wasi-connector-public.js?ver=2.0.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 21:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3009
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.0 | 50.31.176.23 | 200 OK | 2.4 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.0 IP50.31.176.23:0
File typeASCII text, with very long lines (10019) Hashd2db71c82a8f672aea59a3e050cd8cd7 af626566f94b3164e4310288cfb142431e8349a6 bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 | 50.31.176.23 | 200 OK | 2.2 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 IP50.31.176.23:0
File typeASCII text, with very long lines (5118) Hash01c7a66a9e4efe2f8f7a4a7baa4b189b d77d59d40b70efbf17a6a7165e49546d1e91f083 8da1103b91a9b8e935070a6c7daf1e6057e78b9604cc2930d22ca7b3a8274eb8
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:11:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2180
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.0 | 50.31.176.23 | 200 OK | 2.0 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.0 IP50.31.176.23:0
File typeASCII text, with very long lines (4918) Hash78748a183ec873c10a7046772c49f49b ad969948662257f685d439657e942367ec620246 fcc2c27d4562583caf35836ec7fd3acba0da3b9b6825ce9922de982572e8c525
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:01:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2044
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10 | 50.31.176.23 | 200 OK | 2.5 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10 IP50.31.176.23:0
File typeASCII text, with very long lines (8029), with no line terminators Hash9aec3be2a6c9d9934729a5329234f3ce 084a7c4e6ef9a37ed7f8414588438091d89d32b5 53227dcc82d1c76043927f890e44733806159cbcb5bfd580b4df956eb04f4b9b
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 20:34:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2521
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 | 50.31.176.23 | 200 OK | 2.4 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP50.31.176.23:0
File typeASCII text, with very long lines (6475), with no line terminators Hash4e773d7cec56bacab6d2db420be6f262 c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a 5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 21:53:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2354
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 | 50.31.176.23 | 200 OK | 3.7 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 IP50.31.176.23:0
Hashf778ade6a70be55cbf039cfafb20fa7f 68d7a7f2d88907a038ec557ae0ab67f58d7bcdc5 88fd2a2f80a5ff9f70a6c4019d81f3bae8bc92623697454faa44f448cc43ad93
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 21:53:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3717
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 | 50.31.176.23 | 200 OK | 1.6 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 IP50.31.176.23:0
File typeASCII text, with very long lines (4875) Hash06a8ac0e71976bc143cfa7861a31169d def6031fe13259bf17752661832d815e37068bf2 e6f42d97e7299522bbb002364128fdf72cd22263ca72c5edc41dcd8f4672cd33
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 21:53:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1575
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 | 50.31.176.23 | 200 OK | 2.9 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP50.31.176.23:0
File typeASCII text, with very long lines (12198), with no line terminators Hash869caa171b68cbec9fee5abbfb944ee8 f237e485e41f88b77384cfdb880f9d5a8f46eac8 25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2867
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 | 50.31.176.23 | 200 OK | 1.3 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 IP50.31.176.23:0
File typeASCII text, with very long lines (3235) Hash91194abbabb66c22700e71f20e1e6044 38c55fe048913b6bb019340944be577d045c42cc cd144b8d1080b1c8e61c85a9357fea64c7b5be3ccbcef5c8f5301fab8eab999a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:11:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1254
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 | 50.31.176.23 | 200 OK | 12 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 IP50.31.176.23:0
File typeASCII text, with very long lines (57726) Hashf463afd8661ddc733305df1f0cbdaff2 77262f0209e75e340eb7014aba9cd8d69966032f c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 | 50.31.176.23 | 200 OK | 6.9 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP50.31.176.23:0
File typeASCII text, with very long lines (25115) Hashe8d8c6e4997a420abc51e5fa8c1caa8b 39ae930f057de725cff8549eed82f31f8d0816c1 730b8265b47a7f9bf014b64fb5c27f9f1cff1051dbf53e60ceb3cc16def732cc
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:11:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6935
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.0 | 50.31.176.23 | 200 OK | 10 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.0 IP50.31.176.23:0
File typeUnicode text, UTF-8 text, with very long lines (32889) Hash9aeff76fc44611806d476e95f01b7e62 3f7f8714e4fa4c7e9a902344adbc1c69ce50fe5e 9020148be76de8c20786305507b168e32fff678ef3fa7972ea3e02f915ad4957
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:01:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10420
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 50.31.176.23 | 200 OK | 6.9 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP50.31.176.23:0
File typeUnicode text, UTF-8 text, with very long lines (19138), with no line terminators Hash1f5152610686781567fb3008c4429792 d0c0bddf5fb8603ed8e55c32f3093c2207f72471 75806ece853d0d76e655a433bd03548d3be6237ea1e4cacd5963f528bbe0d192
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 21:53:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6872
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 | 50.31.176.23 | 200 OK | 6.6 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP50.31.176.23:0
File typeUnicode text, UTF-8 text, with very long lines (8189) Hash139a41f01d192d239e7dce15ca307983 62a3e7c0c77209832dc649bc5583e5e0b4918bf5 d796462a5d212cd93b315b43dafb6e77dbe1c3aa567964dc40c1ab0e2c28f405
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 21:53:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6637
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.0 | 50.31.176.23 | 200 OK | 12 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.0 IP50.31.176.23:0
File typeASCII text, with very long lines (40463) Hash043daa97eb1c43f5a389597c4e4689c5 ba9c4cd8bfdb93e8debf1dc473ca8b2ede8be4fd 9d9f13abec6bb7037ab7530abedd39970d2448de5f4ca573f97e857712d4ffbc
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:01:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11701
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 | 50.31.176.23 | 200 OK | 4.6 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 IP50.31.176.23:0
File typeASCII text, with very long lines (15660) Hash0232689bd203f330529b36a437f41a68 9046583f7469ad38297969f10a9513eb895d5316 feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 21:53:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4619
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 | 50.31.176.23 | 200 OK | 5.4 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 IP50.31.176.23:0
File typeASCII text, with very long lines (20991) Hash2fb9de03ee842948ca805253b172b485 9339b0fa885b816f9c41aef0cf31f6c7c18df2d0 e9842e285d587fa4094e28b239aed57c23f916aeb9efb68e132c5aca0dae953d
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:11:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5355
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 | 50.31.176.23 | 200 OK | 5.3 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 IP50.31.176.23:0
File typeASCII text, with very long lines (24836) Hash7d6aabcf30795f36cc54716f5f0af1ee c6444b177a88d07658b2646f2631cb3a8ca76b9b 4b3b79b6bfb0ebddbb9ae8edbc998f53efa7c706a0c4a7df0069032b2b21026a
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:11:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5295
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 | 50.31.176.23 | 200 OK | 30 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP50.31.176.23:0
File typeASCII text, with very long lines (65447) Hash34f918ada1fe4f01c5a4b90065bbc37a a731f6ce2d413805e39ae45994012b1bd5ea1e2b eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/js/libs/vue.min.js?ver=2.5.6 | 50.31.176.23 | 200 OK | 31 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/js/libs/vue.min.js?ver=2.5.6 IP50.31.176.23:0
File typeASCII text, with very long lines (65449) Hash96c0c3b608aaa4bc066ef1f26cebc599 6f37c179a653f985ff760a29edc8cbfd067f70dd 7a055f4d1bf77f409baff1128e36b1a8f6eaf6a1c7531822dbf3b984bfc6b7fd
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/wasi-connector-master/public/js/libs/vue.min.js?ver=2.5.6 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Thu, 03 Nov 2022 04:03:27 GMT
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 21:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30834
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 35.161.231.36 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.161.231.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U4zdh/0lcjZwzieN2u08zg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5TYCsb2CuVQPxBVJAkKzsaSVYjw=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashd14190b7d44355f74384008fc2bc965b 8899240507992ceba98f567c079650149cc583a4 2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:08 GMT
expires: Thu, 26 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 30561
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashd14190b7d44355f74384008fc2bc965b 8899240507992ceba98f567c079650149cc583a4 2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css?ver=3.3.7 |  104.18.11.207 | 200 OK | 28 kB |
URL HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css?ver=3.3.7 IP104.18.11.207:0
File typeASCII text, with very long lines (65371) Hashad90ef4bb5dbcc64e0a213b9babe4708 8a2ebdf425d9fd0bde0791d961bdb42033dc1d03 1a1b35e822d3175f34c39e119db24b3dd0c2e9bcbf247008abfc03df99d695a6
GET /bootstrap/3.3.7/css/bootstrap.min.css?ver=3.3.7 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:03:28 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 2021-04-23 06:29:02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 234d42a17775a67ff053e2a40c75b21b
cdn-cache: HIT
cf-cache-status: HIT
age: 14949760
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76088ac6d865b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashd14190b7d44355f74384008fc2bc965b 8899240507992ceba98f567c079650149cc583a4 2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashd14190b7d44355f74384008fc2bc965b 8899240507992ceba98f567c079650149cc583a4 2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:08 GMT
expires: Thu, 26 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 30561
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:21 GMT
expires: Thu, 26 Oct 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 30548
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.195 | 200 OK | 7.9 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 21:48:50 GMT
expires: Thu, 26 Oct 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 22479
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashd14190b7d44355f74384008fc2bc965b 8899240507992ceba98f567c079650149cc583a4 2db73ab3dfce1101ff8aaa09fe7227ad8017486b3ec3f536b7f8a1102ec0c267
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 04:03:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash358ecd0ec047d700042e2a62f9847199 7bf4c552f47536fe451dc6ccfb0930c592084ef9 e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2742
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 04:03:29 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash358ecd0ec047d700042e2a62f9847199 7bf4c552f47536fe451dc6ccfb0930c592084ef9 e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2742
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 04:03:29 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash358ecd0ec047d700042e2a62f9847199 7bf4c552f47536fe451dc6ccfb0930c592084ef9 e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2742
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 04:03:29 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash358ecd0ec047d700042e2a62f9847199 7bf4c552f47536fe451dc6ccfb0930c592084ef9 e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2742
Expires: Thu, 27 Oct 2022 04:49:11 GMT
Date: Thu, 27 Oct 2022 04:03:29 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg | 34.120.237.76 | 200 OK | 5.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashcd902e06ceaeb060cec24c464c11738d ffdfde08eb38e20b01c550fd4b1bb871304bb0ea 593f5c12c617c7217205d8aa95fe5f0c46014e5be8f2c8d3010cdd876faeb7dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd660616a-1641-4ad3-bf62-59dfe54ba2e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5247
x-amzn-requestid: 7e07eeaa-b95a-4283-8ca7-fb28e9e30258
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aRpdhGDJIAMFd7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63508923-4e947c3539ad0d6d777a47cd;Sampled=0
x-amzn-remapped-date: Wed, 19 Oct 2022 23:32:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2MCXNwZ3bpXpeSAlOCc2GbIYnv2qJNg2v2h2MWrfBr2OleP6g6kn2A==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:53:36 GMT
age: 22193
etag: "ffdfde08eb38e20b01c550fd4b1bb871304bb0ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5109ae5-81e3-49db-bbdc-eb160eef1dfd.jpeg | 34.120.237.76 | 200 OK | 9.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5109ae5-81e3-49db-bbdc-eb160eef1dfd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash33e31f3d27d3068624029f7a917ac24d d28a39cffb1d8a7a1a7bbfa3f95f98b790c6a673 31ead0fb893666b5c533ab6cb51e85b2646aa1ef46ef67ad80d2e7c911e0fdde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5109ae5-81e3-49db-bbdc-eb160eef1dfd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9686
x-amzn-requestid: c9a788b9-1367-4050-9590-30ef6d9a4fa3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocugHsUoAMFjnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-444afe996c8df73779f78a53;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 3otUfQziZmocFHGSOWSKJtXpgCOPfhxY3TOkbrBT6pdNi5B2Xrf67A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:50:51 GMT
age: 22358
etag: "d28a39cffb1d8a7a1a7bbfa3f95f98b790c6a673"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg | 34.120.237.76 | 200 OK | 7.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4f9f8683351154be3300311e3a7e29e3 4fc868d652910c7dcf4ef0e87531de4ee6007c45 d4f012729e0eddc20948ad98d653794204f80344a5840142877dcaa8d2520a71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa85c6304-6f72-4904-bb25-968b35616ef5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7428
x-amzn-requestid: 0eabcd9d-372d-4be6-aa58-26f3ce15d7bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aioHzF3dIAMFQ4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635753cb-7332e0ae76cbda142a20fe13;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 03:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dyWgeFHnO66HNq3jl8oFIZtile4ZIHXBlCCUXqACQ2Y9KEWMGjOFBA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 04:11:36 GMT
age: 85913
etag: "4fc868d652910c7dcf4ef0e87531de4ee6007c45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg | 34.120.237.76 | 200 OK | 8.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasheb430e5efbc6c8c306fce87e26faf734 b05b7299a7e473e873510671a6abdd5227a53f46 c49d64e87ec8243a1ee7f214f21988b6f6a33ba93814ec31262d80e4a22b8504
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8936
x-amzn-requestid: d0698fc0-e4c9-4633-9b64-df09be35b450
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGBlIAMF-LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7c78a1fc43552b934e6b8708;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gus8UKo03dRkfqPRhxnW6zzqx7o-2tZbbv-DsBSW7UREHPOA1uqdUw==
via: 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:50:53 GMT
age: 22356
etag: "b05b7299a7e473e873510671a6abdd5227a53f46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg | 34.120.237.76 | 200 OK | 5.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashace7660d2948795997e3c7cb9cf12495 fed9b6693077d233f60cc7394c7b667291ffade7 fd4718a6649572cbaf13f46b8e2961cd1c680afa1494b0bacd5fda9010a95098
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5136
x-amzn-requestid: 0059b05c-746b-41cd-8cc1-c744d0b149fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aoc2-H9sIAMFquA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a82c-772120580c4cf9e45b685971;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:35:40 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fqqRNgPgAZRwp_xRyHC3YzEKQTwydDs45MNLQC7hoRpytCb91-9b5Q==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:50:42 GMT
age: 22367
etag: "fed9b6693077d233f60cc7394c7b667291ffade7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg | 34.120.237.76 | 200 OK | 4.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc92c49279a7704d715e50836676d1abb 3092b4dbd87f7e5a2eff65c463da9c5103ff748a 6941145d63e68abf0f20081517faa4082eed3c59f8b8a69066f70b29d90fd355
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F529195e0-f6ac-4fd1-b685-62456b469ad7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4709
x-amzn-requestid: c2923a57-57c4-4d62-83bc-e4c8b61aa2bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGeeIAMF9Dg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7e47cfe804e333cc540f162a;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: M72Vjcyc06ihmWcqr2_Xrk8dGcC5pCoDidg5rhtRkVddavcUFE6G6w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:50:52 GMT
age: 22357
etag: "3092b4dbd87f7e5a2eff65c463da9c5103ff748a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 IP142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 27 Oct 2022 04:03:28 GMT
date: Thu, 27 Oct 2022 04:03:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal | 50.31.176.23 | 404 Not Found | 0 B |
URL HTTP/2grupointegrapr.com/wp/wp-content/themes/twentysixteen/zab/DHL/portal IP50.31.176.23:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp/wp-content/themes/twentysixteen/zab/DHL/portal HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://grupointegrapr.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
date: Thu, 27 Oct 2022 04:03:27 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js?ver=3.3.7 | 104.18.11.207 | 200 OK | 0 B |
URL HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js?ver=3.3.7 IP104.18.11.207:0
GET /bootstrap/3.3.7/js/bootstrap.min.js?ver=3.3.7 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 04:03:28 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 06:50:00
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 8fceacdaeeafd26741a72a1764d9b5ac
cdn-cache: HIT
cf-cache-status: HIT
age: 14950661
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76088ac6e870b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|