| grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal |  50.31.176.23 | 301 Moved Permanently | 0 B |
URL HTTP/1.1grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal IP50.31.176.23:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp/wp-content/themes/twentysixteen/po/DHL/portal HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
x-litespeed-cache: hit
content-length: 0
date: Fri, 21 Oct 2022 02:13:25 GMT
server: LiteSpeed
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash24a97183f836954e0f05c4dc794ff4d1 52778bbe39b9f736c16b5798575d1d96607ce9d0 01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01F6721F2674F54662FFF590FDF7247CC8C58A3F84906CAE75527FB7B6DD2436"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16922
Expires: Fri, 21 Oct 2022 06:55:27 GMT
Date: Fri, 21 Oct 2022 02:13:25 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbdb8b66c705a7b996496d780f50c00b5 403ae92039fcc933870f51f913f78ccaf9652256 c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 21 Oct 2022 01:52:12 GMT
Expires: Fri, 21 Oct 2022 02:46:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mlnax5nE0N-W0KWGZB9wkHV_des9GQr06-gwfG41DlQjTObdZRllMw==
Age: 1273
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9dc4f23f82148797f6d8041bdda3c7f7 6841ded3e2dd94fd762316d01efd43f7aafb8354 e229db1854a85b320cee574e805210f3adf5797136ea820c0a0ce9abcd63d4dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E229DB1854A85B320CEE574E805210F3ADF5797136EA820C0A0CE9ABCD63D4DD"
Last-Modified: Thu, 20 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16857
Expires: Fri, 21 Oct 2022 06:54:22 GMT
Date: Fri, 21 Oct 2022 02:13:25 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ZXGotKtzqYbdf8IiQoWFRZdgBpUnopTuQE9SrHZAntHH71r3uh1ASSPEue6VrnjLStQtOtGkQ9Q=
x-amz-request-id: N0Y5Y98508912S7E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 21 Oct 2022 01:36:59 GMT
age: 2186
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 21 Oct 2022 02:13:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.27 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 21 Oct 2022 01:43:40 GMT
Cache-Control: max-age=3600
Expires: Fri, 21 Oct 2022 01:45:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bTYq1-AoVSEj5ylQCLoyaxAi4VZ4SAzg6OjSxnmAGASGwkXYAlwo6w==
Age: 1785
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb2f2dcfbd83f14e6cfab306caf84f40a 7878417dc2a940724f1742721ea179bd57b8efd0 d302e4d1ca92105eef9efc2b8b2d8ee146077cc783febd962a0e3f44a408fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hasha5dd4f71f4ddd5be9201466ed7a6c423 1d0832fb6e227d42137d319f728c8bc1414c816f 1edffa6a320210fccbd0e5fa6dbdaa45561678a75a66639985f02791c8283b40
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4351
Cache-Control: max-age=111951
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 02:13:26 GMT
Etag: "63510196-1d7"
Expires: Sat, 22 Oct 2022 09:19:17 GMT
Last-Modified: Thu, 20 Oct 2022 08:06:46 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
|
|
| grupointegrapr.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2 | 50.31.176.23 | 200 OK | 7.7 kB |
URL HTTP/2grupointegrapr.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2 IP50.31.176.23:0
File typeASCII text, with very long lines (38375) Hash5e8aa80e8c69e966aa5ddb223c5394a3 a99e0f026436b8a7f8d10da0f96e4a0977f003dc 66134865a5ca3fa8f1018bf7c1aeddd875cdd0eb41e3db1cbd50e0f1f4427571
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.2 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 20:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7686
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 | 50.31.176.23 | 200 OK | 11 kB |
URL HTTP/2grupointegrapr.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 IP50.31.176.23:0
File typeASCII text, with very long lines (43771) Hashd45207ee05c1f0c57dfa075e61405ccd a8d35143a2d828a739ea0fdde75f97d33621e7ec a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 16:47:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10946
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/css/wasi-connector-public.css?ver=2.0.1 | 50.31.176.23 | 200 OK | 4.1 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/css/wasi-connector-public.css?ver=2.0.1 IP50.31.176.23:0
File typeASCII text, with very long lines (950) Hash82a77927f4ef74fccf927579de6ce0ac d7438100e7dac49248dad58d8de319bd0a26e4a3 9b67910873968e38004123df6e22805853d9fcc9d24e3c15f81a0110706b90b3
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/wasi-connector-master/public/css/wasi-connector-public.css?ver=2.0.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Fri, 15 Jul 2022 21:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4114
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashb2f2dcfbd83f14e6cfab306caf84f40a 7878417dc2a940724f1742721ea179bd57b8efd0 d302e4d1ca92105eef9efc2b8b2d8ee146077cc783febd962a0e3f44a408fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.0 | 50.31.176.23 | 200 OK | 13 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.0 IP50.31.176.23:0
File typeASCII text, with very long lines (65497) Hash4074eac3f0d92b865f8562f5f093c7be 7e44d7f4ae376c15d2612b796fe2a75a77e233c3 e8f4f75d94572b50a0856b705a39a76b86016b5597362c43c6593b3a7a012f13
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12973
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 | 50.31.176.23 | 200 OK | 3.6 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 IP50.31.176.23:0
File typeASCII text, with very long lines (19233) Hashaf3bdf44d09914e8adb51fec560d8816 84bb225e096bab405868dd504e62133ba75cf1c1 4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3629
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/uploads/elementor/css/post-9.css?ver=1660399942 | 50.31.176.23 | 200 OK | 434 B |
URL HTTP/2grupointegrapr.com/wp-content/uploads/elementor/css/post-9.css?ver=1660399942 IP50.31.176.23:0
File typeASCII text, with very long lines (1905), with no line terminators Hash078a08065a7d6659a9d8e3462981d1ec 7add3c494310d379892f8dc175d67db846e2acb2 e6e14a04046d7e75457bf8221b39c22d372bfb963b730d1b825a866f68bc8620
GET /wp-content/uploads/elementor/css/post-9.css?ver=1660399942 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:12:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 434
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 | 50.31.176.23 | 200 OK | 1.5 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 IP50.31.176.23:0
File typeASCII text, with very long lines (11362) Hashf90e81674a08b7b1aba916040f2c2e93 d8eb3ce233010f310c6072d632662e255b316e68 beddae95f92593d062472030ea8e8e0ebac9f72cce4e3211751d2ffd1bb3b8bb
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:11:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1505
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/uploads/elementor/css/post-117.css?ver=1663013109 | 50.31.176.23 | 200 OK | 1.3 kB |
URL HTTP/2grupointegrapr.com/wp-content/uploads/elementor/css/post-117.css?ver=1663013109 IP50.31.176.23:0
File typeASCII text, with very long lines (14197), with no line terminators Hashc3878a48e328fb2061ac06df4809e026 4f9e48905b47c4cbb4aea5d91b373000cf07fd0c 1201d849ec0118df5c4431307e9a48261b6092a638cba60eeaff116b11138839
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-117.css?ver=1663013109 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 20:05:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1313
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/uploads/elementor/css/post-101.css?ver=1663012065 | 50.31.176.23 | 200 OK | 1.6 kB |
URL HTTP/2grupointegrapr.com/wp-content/uploads/elementor/css/post-101.css?ver=1663012065 IP50.31.176.23:0
File typeASCII text, with very long lines (9368) Hash40ba67a509351660f10d4559d8da5a70 554fe87ded4d117675b46aef7ca167769bd0c00e b67e038a6a93454f61fe5aa242114e8a975a56b88119f3ccdc631c57f391d24f
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/uploads/elementor/css/post-101.css?ver=1663012065 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Mon, 12 Sep 2022 19:47:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1615
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/uploads/elementor/css/global.css?ver=1660399943 | 50.31.176.23 | 200 OK | 2.6 kB |
URL HTTP/2grupointegrapr.com/wp-content/uploads/elementor/css/global.css?ver=1660399943 IP50.31.176.23:0
File typeASCII text, with very long lines (14692) Hashe6ae8a0de08641949a3f16a5699c6f40 5b74889d158c3982bd99a30065a9155866b54198 b1c42719ac11e1abb881e6448ea37de5a557f6791b7a5b06e9f25009da7bf839
GET /wp-content/uploads/elementor/css/global.css?ver=1660399943 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:12:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2637
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 | 50.31.176.23 | 200 OK | 30 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP50.31.176.23:0
File typeASCII text, with very long lines (65447) Hash34f918ada1fe4f01c5a4b90065bbc37a a731f6ce2d413805e39ae45994012b1bd5ea1e2b eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 | 50.31.176.23 | 200 OK | 284 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 IP50.31.176.23:0
File typeASCII text, with very long lines (489) Hashdc279c928e2924b07a4a7575f8070ee8 0196756cacdb61ef40483af7ea982b699b0933de 80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 284
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 50.31.176.23 | 200 OK | 4.0 kB |
URL HTTP/2grupointegrapr.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP50.31.176.23:0
File typeASCII text, with very long lines (11126) Hash7e058b51f939eacfa31cdface14dded5 9d732e5afdeb42edef9e1b9631b7e95e054787cc 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 | 50.31.176.23 | 200 OK | 286 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 IP50.31.176.23:0
File typeASCII text, with very long lines (483) Hash8828fa3c5bdcfa66615714a2b8c9d807 4f556d0b005ac7754af607418df445f8cf98e8b1 16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 | 50.31.176.23 | 200 OK | 283 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 IP50.31.176.23:0
File typeASCII text, with very long lines (491) Hash453a93dc816be89f942ebb253ff199fb 01563d6019803e3ff2a94c5397e7e771ee6f440d 36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 283
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 | 50.31.176.23 | 200 OK | 12 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 IP50.31.176.23:0
File typeASCII text, with very long lines (57726) Hashf463afd8661ddc733305df1f0cbdaff2 77262f0209e75e340eb7014aba9cd8d69966032f c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12133
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css?ver=3.3.7 |  104.18.10.207 | 200 OK | 25 kB |
URL HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css?ver=3.3.7 IP104.18.10.207:0
File typeASCII text, with very long lines (65371) Hashb4e8b8d49ece1353fd8853cff2c9afa9 a7536a76575bc03295d49811acf06c4abdb1e933 8d100392d88851915efae5781a8640e5f31bbd67adb6f358e88db6f3744d08fe
GET /bootstrap/3.3.7/css/bootstrap.min.css?ver=3.3.7 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 02:13:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 2021-04-23 06:29:02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 234d42a17775a67ff053e2a40c75b21b
cdn-cache: HIT
cf-cache-status: HIT
age: 14424758
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75d679564cba0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.1 | 50.31.176.23 | 200 OK | 2.0 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.1 IP50.31.176.23:0
File typeC source, ASCII text, with very long lines (8750), with no line terminators Hasha96c0f83522ef34892ab3722953bf3c7 140b12d376c14ac81b02bb6eee88c3c9bacb0478 daf9fbe2331e58518af4f06aafd164649cc399fe921299c57e2e4c046b942e83
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 20:34:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1970
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.3 | 50.31.176.23 | 200 OK | 967 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.3 IP50.31.176.23:0
File typeASCII text, with very long lines (5334), with no line terminators Hash257736dab7a9c54a1338e598f350c8e0 35603628a42981badb8bbcbef232458df605d9a4 97da98b3c8e9a41c2d04eb9875f48a3fc5b98ce708baf76fe795d4236b107c6e
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.0.3 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 20:34:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 967
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css | 50.31.176.23 | 200 OK | 755 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css IP50.31.176.23:0
File typeASCII text, with very long lines (12953) Hash459d601823d9e8346a3ba1aa4c391631 4679f8122ccd7b48e6415fbf49dc8ab5b10822d0 1bfcfc32f3bce95e4ba265eb7430f8826e735fe8ed0e723e008f216268d0c0f8
GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 755
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10 | 50.31.176.23 | 200 OK | 3.9 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10 IP50.31.176.23:0
File typeASCII text, with very long lines (15058), with no line terminators Hash15afa6e474b617a1ed4b5588603461c0 a665b9734e030006fae44e2f7ad4334dec9dce5b a622b73cb718a5cab53be457a6212876bcb5234be29a96bd95fff96f55729661
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.5.10 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Tue, 04 Oct 2022 20:34:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3893
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css | 50.31.176.23 | 200 OK | 3.3 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css IP50.31.176.23:0
File typeASCII text, with very long lines (29344) Hash72f80bd308445d5efdb2a62b1b52c624 427df6eba8704076b8aae92551a332f1096c39ff c57ddb664f6a695dda386d09f0c1b635a06e2fe36fdaf07bd317df9115330216
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:11:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3331
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css | 50.31.176.23 | 200 OK | 906 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css IP50.31.176.23:0
File typeASCII text, with very long lines (11736) Hash624a5a04bcd888f2094e79bbf036699b 04056ff903843d72a4e3e8066bcc41fac0f90208 a53f9d9ea0f0a778666bd7e054c0da65a20c819d407446d4dbfae7ba442ff7c3
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 906
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2 | 50.31.176.23 | 200 OK | 3.8 kB |
URL HTTP/2grupointegrapr.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2 IP50.31.176.23:0
File typeASCII text, with very long lines (16935), with no line terminators Hash3a5528d3c5255102448258fcf5496360 332bb0c5baaf8110b353094632417e9f313a8b94 024bb2f7ca7725ca60738783b8b6bbc237c937b6725aec3c2a1044961857186a
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.2 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 20:35:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3808
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10 | 50.31.176.23 | 200 OK | 2.5 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10 IP50.31.176.23:0
File typeASCII text, with very long lines (8029), with no line terminators Hash9aec3be2a6c9d9934729a5329234f3ce 084a7c4e6ef9a37ed7f8414588438091d89d32b5 53227dcc82d1c76043927f890e44733806159cbcb5bfd580b4df956eb04f4b9b
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.10 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 20:34:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2521
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.0 | 50.31.176.23 | 200 OK | 2.4 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.0 IP50.31.176.23:0
File typeASCII text, with very long lines (10019) Hashd2db71c82a8f672aea59a3e050cd8cd7 af626566f94b3164e4310288cfb142431e8349a6 bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.0 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 13 Aug 2022 14:01:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2442
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 | 50.31.176.23 | 200 OK | 6.9 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP50.31.176.23:0
File typeASCII text, with very long lines (25115) Hashe8d8c6e4997a420abc51e5fa8c1caa8b 39ae930f057de725cff8549eed82f31f8d0816c1 730b8265b47a7f9bf014b64fb5c27f9f1cff1051dbf53e60ceb3cc16def732cc
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 14:11:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6935
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/js/libs/vue.min.js?ver=2.5.6 | 50.31.176.23 | 200 OK | 31 kB |
URL HTTP/2grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/js/libs/vue.min.js?ver=2.5.6 IP50.31.176.23:0
File typeASCII text, with very long lines (65449) Hash96c0c3b608aaa4bc066ef1f26cebc599 6f37c179a653f985ff760a29edc8cbfd067f70dd 7a055f4d1bf77f409baff1128e36b1a8f6eaf6a1c7531822dbf3b984bfc6b7fd
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/wasi-connector-master/public/js/libs/vue.min.js?ver=2.5.6 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 21:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30834
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 34.212.166.60 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.212.166.60:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OW/ycWhaoPK8woLqKi0oYg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DCWQkLeKRRmH3nSujKHeXRpnjCY=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hasha0738b138f262176b9a5984a8afe3127 513e61f1dd78a6c51077165a5e5391119b9d9228 04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 172.217.21.163 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP172.217.21.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 110358
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hasha0738b138f262176b9a5984a8afe3127 513e61f1dd78a6c51077165a5e5391119b9d9228 04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 172.217.21.163 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP172.217.21.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:21 GMT
expires: Thu, 19 Oct 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 110345
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hasha0738b138f262176b9a5984a8afe3127 513e61f1dd78a6c51077165a5e5391119b9d9228 04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 172.217.21.163 | 200 OK | 7.8 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP172.217.21.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:30:59 GMT
expires: Thu, 19 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 110547
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 172.217.21.163 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP172.217.21.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 110358
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 | 172.217.21.163 | 200 OK | 7.9 kB |
URL HTTP/2fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 IP172.217.21.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://grupointegrapr.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 21:48:50 GMT
expires: Thu, 19 Oct 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 102276
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hasha0738b138f262176b9a5984a8afe3127 513e61f1dd78a6c51077165a5e5391119b9d9228 04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdcbf142b7958e83961fc03b9676d1fc6 930f67e486f95de63450b6d73d1957aac204fb43 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17547
Expires: Fri, 21 Oct 2022 07:05:54 GMT
Date: Fri, 21 Oct 2022 02:13:27 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdcbf142b7958e83961fc03b9676d1fc6 930f67e486f95de63450b6d73d1957aac204fb43 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17547
Expires: Fri, 21 Oct 2022 07:05:54 GMT
Date: Fri, 21 Oct 2022 02:13:27 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdcbf142b7958e83961fc03b9676d1fc6 930f67e486f95de63450b6d73d1957aac204fb43 9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17547
Expires: Fri, 21 Oct 2022 07:05:54 GMT
Date: Fri, 21 Oct 2022 02:13:27 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8fd73-9b5d-4b49-bb7c-ad83d6ee29a7.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8fd73-9b5d-4b49-bb7c-ad83d6ee29a7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2bd9e504ae33c774e41c4035c72dc29d 9103503978d592ebcd1d06db2fb4701b2340ed7d 563f0bfead286f83690e08c1f27358b99b367f866996a5c46b89638dc0db1033
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8fd73-9b5d-4b49-bb7c-ad83d6ee29a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9193
x-amzn-requestid: 54aaa73e-c50d-4168-8751-1412c88a548e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aVBttFGVIAMFgXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351e324-106401f979f891a158187003;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 00:09:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xGO7Lb8Zdn6K1VQNiK6CGv1VNPJ8LQIvMvIU6-UiviPR5ndzhwZryA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 00:23:21 GMT
etag: "9103503978d592ebcd1d06db2fb4701b2340ed7d"
content-type: image/jpeg
age: 6606
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd369f8641d3489521afd62e112136f5b 088a3290733195efeb1d79dcc995c22b603bece0 b18601499cbb7bbcc1eaa464cec12c0287f8fab52a89e97973bd78fcb26ea918
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9195
x-amzn-requestid: e40418b8-2272-44a3-83d6-9465798793ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLEk4oAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-34994aca1e13dcab306bf1a4;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86MQ2WBrOZ2pH88f27PxZ9f8tuu_9u6qNzyr4LZz6-yNbfjJdjgr0w==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:48:08 GMT
age: 15919
etag: "088a3290733195efeb1d79dcc995c22b603bece0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98b8db42-7c94-466e-b74a-050e96c7ba27.jpeg | 34.120.237.76 | 200 OK | 5.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98b8db42-7c94-466e-b74a-050e96c7ba27.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash65594d1dc13761dcc4674f03b629141f 440b895d33ade533ab57689cccfc533871958559 76eb16523cde78e0a7bc34e2a2d2a073b4569cd4b9ee5c28213497b1ea2893d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98b8db42-7c94-466e-b74a-050e96c7ba27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5029
x-amzn-requestid: 63037ba8-bfa6-4087-9486-d583348d79bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aVCNwGl1IAMFuvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351e3f1-4fa2d43240e5f45624553bd3;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 00:12:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XMtaqkFsfMBVLVpUxpPan5ED2X1hyfc0CLhPuZ_2GVWZfW7e68NOBg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 00:23:25 GMT
age: 6602
etag: "440b895d33ade533ab57689cccfc533871958559"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg | 34.120.237.76 | 200 OK | 4.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb772335d96ac97ec5b28623955fb026d 7a19bf011359ad768b05dd79cec66787d2dc59fd c13e7384880ec6fe431f3627eb61529c7fdb934cf0b021b4586ff2dc1c2e1244
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4786
x-amzn-requestid: 263fe384-2385-48c4-b250-1708a3cdd710
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKKFOYoAMF92Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-46dfbb85286685373b0b5e77;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xdusXhbeR0jyonK4NDRdcAGEDLLLJ5rL1X3u4seqIpfGaw4yIN5LEg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:50:08 GMT
age: 15799
etag: "7a19bf011359ad768b05dd79cec66787d2dc59fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe33f18c8-1681-4562-bd4e-6faf533351cf.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe33f18c8-1681-4562-bd4e-6faf533351cf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2604d057684fe42da19cfdc7aa6bf745 8d51d5db808059d2d937e5838d60d72b6979f6b8 6b965eb976fab7c3682123c7c23abf05d7673d1db421c115b76a72a1e351b5ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe33f18c8-1681-4562-bd4e-6faf533351cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10019
x-amzn-requestid: d38ff377-3d5b-46ea-8313-94a4de6a51ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aVBuAG6xoAMF8NA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351e326-76191f3b0c52beac36c6e588;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 00:09:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pk7tSL5hqd1gF8G1V5x9MvtblK3OoFupQ7jkckTxsijXwdn6AvzG9g==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 00:23:28 GMT
etag: "8d51d5db808059d2d937e5838d60d72b6979f6b8"
content-type: image/jpeg
age: 6599
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6bd5e942443ffd011faf10dc88d92081 beff4ae9e24599addce8a961c955788045c56645 2c59d984971e73d497975032c23700b5602fccf403f4683a8047f5f42d4e261f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10973
x-amzn-requestid: 081470ca-0107-4052-be55-9c713105bb27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUr-TEKPoAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c05b-17199f8c0fc0fb7443a902f1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:40:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: h8elwC37DfS3PoG9NuRyfp-bqOoLi9KWeSWvwuY4mFMGG4HHC3jZAg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 22:17:34 GMT
age: 14153
etag: "beff4ae9e24599addce8a961c955788045c56645"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 | 216.58.211.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 IP216.58.211.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CPoppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 21 Oct 2022 02:13:26 GMT
date: Fri, 21 Oct 2022 02:13:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/js/wasi-connector-public.js?ver=2.0.1 | 50.31.176.23 | 200 OK | 0 B |
URL HTTP/2grupointegrapr.com/wp-content/plugins/wasi-connector-master/public/js/wasi-connector-public.js?ver=2.0.1 IP50.31.176.23:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp-content/plugins/wasi-connector-master/public/js/wasi-connector-public.js?ver=2.0.1 HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 28 Oct 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 21:19:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3009
date: Fri, 21 Oct 2022 02:13:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
|
|
| grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal | 50.31.176.23 | 404 Not Found | 0 B |
URL HTTP/2grupointegrapr.com/wp/wp-content/themes/twentysixteen/po/DHL/portal IP50.31.176.23:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /wp/wp-content/themes/twentysixteen/po/DHL/portal HTTP/1.1
Host: grupointegrapr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://grupointegrapr.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
date: Fri, 21 Oct 2022 02:13:25 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js?ver=3.3.7 | 104.18.10.207 | 200 OK | 0 B |
URL HTTP/2maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js?ver=3.3.7 IP104.18.10.207:0
GET /bootstrap/3.3.7/js/bootstrap.min.js?ver=3.3.7 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://grupointegrapr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 02:13:26 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 06:50:00
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 8fceacdaeeafd26741a72a1764d9b5ac
cdn-cache: HIT
cf-cache-status: HIT
age: 14425659
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75d679564cbb0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|