| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashb7407cc102d62a5acd5e61f8a79bed36 c2f4890a62454e514962b55b7fc14228339c8e90 be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2970
Expires: Thu, 09 Feb 2023 03:08:24 GMT
Date: Thu, 09 Feb 2023 02:18:54 GMT
Connection: keep-alive
|
|
| info.ciampinobus.com/ | 185.136.89.218 | 301 Moved Permanently | 162 B |
IP185.136.89.218:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 09 Feb 2023 02:18:53 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://info.ciampinobus.com/
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash565c1bbc5c1c40be1988b3bf6fd9dc1a cfdba5bc597130461dd67bf6cda53183be592493 60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16987
Expires: Thu, 09 Feb 2023 07:02:01 GMT
Date: Thu, 09 Feb 2023 02:18:54 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Feb 2023 01:34:15 GMT
content-type: application/json
age: 2679
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashcc14b0d2f7c451f6431dc87ba54d1d60 bab8bfda6fa3e2f17125353f5147211787dc25d0 b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16521
Expires: Thu, 09 Feb 2023 06:54:15 GMT
Date: Thu, 09 Feb 2023 02:18:54 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe76071a28ee566dababb3834f46d68ed aebb4e68c1ba2de0f90025283e8ed8470944fde0 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OxXTv46VcJpQFui9jxLsmGvxZJ2gCDAOr2M1MNNsupz36qOrXPT09s+lHGFdARHjjbohYM8xmshuneGWcBEC/Q==
x-amz-request-id: N37Q3X1FMSMKJ7YD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Feb 2023 01:36:10 GMT
age: 2564
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashfb3c65fe006c56486697e64bd9ae8340 e7f85ab7261897c9ac30f9266d1d7415842c1b1a 5cc0f3341345f604331ed0443295b9c15af602156420df37e06791f3831328c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5CC0F3341345F604331ED0443295B9C15AF602156420DF37E06791F3831328C3"
Last-Modified: Wed, 08 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21542
Expires: Thu, 09 Feb 2023 08:17:56 GMT
Date: Thu, 09 Feb 2023 02:18:54 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 02:14:53 GMT
age: 241
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash248ce16379b12f11927ecc3142aec450 fa5b189f2d9182479170cb61cc1723571e437bd2 a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3856
Expires: Thu, 09 Feb 2023 03:23:10 GMT
Date: Thu, 09 Feb 2023 02:18:54 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 35.161.188.100 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.161.188.100:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q6ZdxXI3QxMOjrK67ldTQg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z5l6vPwnmillaLiJQ1ivIA5GpA8=
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash0333fa3e34f17f01e9829bd8ee662c23 be4c7a8599038facc49c73d6d14451023bc919e7 8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:18:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash0333fa3e34f17f01e9829bd8ee662c23 be4c7a8599038facc49c73d6d14451023bc919e7 8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:18:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| info.ciampinobus.com/wp-content/uploads/logo-1_00fa00460_450.png | 185.136.89.218 | 200 OK | 13 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/logo-1_00fa00460_450.png IP185.136.89.218:0
File typePNG image data, 248 x 70, 8-bit/color RGBA, non-interlaced\012- data Hashb92dae2891a6a5b392b79837fb1a6ef6 ad9e390c1b535ed6451d8749d3cad055f11e137e e41b7997558606299a25ac8ab2c2d3c65fcdc5595dcf2871759aa228ad54f72d
GET /wp-content/uploads/logo-1_00fa00460_450.png HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: image/png
content-length: 13259
last-modified: Tue, 22 Sep 2020 09:06:45 GMT
etag: "5f69bea5-33cb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/logo-1_03ec011b1_450.png | 185.136.89.218 | 200 OK | 62 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/logo-1_03ec011b1_450.png IP185.136.89.218:0
File typePNG image data, 1004 x 283, 8-bit/color RGBA, non-interlaced\012- data Hash3b3f5dd5e58ded6a3295a2a15fa72420 78bd7b9f491f10016784af476a61351b4044479c 61dda81bcf0aa216bcd69babe6d99de6e88585045b2d6d0be58a4b7ebf690ea1
GET /wp-content/uploads/logo-1_03ec011b1_450.png HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: image/png
content-length: 62547
last-modified: Tue, 22 Sep 2020 09:04:14 GMT
etag: "5f69be0e-f453"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/logo-dark-1_07d802371_451.png | 185.136.89.218 | 200 OK | 90 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/logo-dark-1_07d802371_451.png IP185.136.89.218:0
File typePNG image data, 2008 x 567, 8-bit/color RGBA, non-interlaced\012- data Hash3862fad7d1b34a0f4efd82929cbf34b7 c3719879a7704132d9a5af4ff346b2edbad15b01 3d8ef98555076cb94d8da013b7f25de9e1f505cca5e05a7d574f3caa7cb9ad87
GET /wp-content/uploads/logo-dark-1_07d802371_451.png HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: image/png
content-length: 89629
last-modified: Tue, 22 Sep 2020 09:06:47 GMT
etag: "5f69bea7-15e1d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash986afab4bad851da3c4a2b8db670c876 c58b7142ce3bebda918b77649973715dbd71b4d2 24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:18:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 | 142.250.74.35 | 200 OK | 34 kB |
URL HTTP/2fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data Hashc21e7acd53a6d80fa451f1af92d9a492 4096e12b96fa2549e4f169044a49b6ec60214008 6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd
GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.ciampinobus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 Feb 2023 00:13:15 GMT
expires: Fri, 09 Feb 2024 00:13:15 GMT
cache-control: public, max-age=31536000
age: 7541
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 | 142.250.74.35 | 200 OK | 36 kB |
URL HTTP/2fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data Hashc26b97e7f5bb7a34d190703522d75e16 69d9e5aea0544dbaf9b78c1b65139c03eceece8f 96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.ciampinobus.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 07:32:23 GMT
expires: Mon, 05 Feb 2024 07:32:23 GMT
cache-control: public, max-age=31536000
age: 326793
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 | 185.136.89.218 | 200 OK | 28 kB |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 IP185.136.89.218:0
File typeWeb Open Font Format (Version 2), TrueType, length 28524, version 1.0\012- data Hash9ea7e687e990ed77db419dec2fb34df4 0e1d6ed823aeeb0b7bbbc9459ed7a2cc2ca688c0 304bc94b0a82879653e1c883b29df76e1afe331437ad9ee090b0d7627d6a185d
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/flaticon.css?ver=6.1.1
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:56 GMT
content-type: font/woff2
content-length: 28524
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: "5f0c97b1-6f6c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Thu, 09 Feb 2023 03:15:41 GMT
Date: Thu, 09 Feb 2023 02:18:56 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Thu, 09 Feb 2023 03:15:41 GMT
Date: Thu, 09 Feb 2023 02:18:56 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Thu, 09 Feb 2023 03:15:41 GMT
Date: Thu, 09 Feb 2023 02:18:56 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Thu, 09 Feb 2023 03:15:41 GMT
Date: Thu, 09 Feb 2023 02:18:56 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3405
Expires: Thu, 09 Feb 2023 03:15:41 GMT
Date: Thu, 09 Feb 2023 02:18:56 GMT
Connection: keep-alive
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 | 185.136.89.218 | 200 OK | 76 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 IP185.136.89.218:0
File typeWeb Open Font Format (Version 2), TrueType, length 75760, version 330.32636\012- data Hash832f6e62aaf3909d6b94c8a9c1e4dd51 4a06418cb56a66af5a1c0f59791469dea1dc87fa 8556fd48cf33ca3028e3fff4042979f224987ee317cc9032dd5bba996b363009
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:56 GMT
content-type: font/woff2
content-length: 75760
last-modified: Wed, 16 Feb 2022 10:15:04 GMT
etag: "620ccea8-127f0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2 | 185.136.89.218 | 200 OK | 14 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2 IP185.136.89.218:0
File typeWeb Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data Hashe7d4bfa72a1f7d352fa6605501a3e2f2 afd94b571eff9da7d85490bdb4c9874419cd260d d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:56 GMT
content-type: font/woff2
content-length: 13564
last-modified: Wed, 16 Feb 2022 10:15:04 GMT
etag: "620ccea8-34fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/css/classic-themes.min.css?ver=1 | 185.136.89.218 | 200 OK | 11 kB |
URL HTTP/2info.ciampinobus.com/wp-includes/css/classic-themes.min.css?ver=1 IP185.136.89.218:0
Hashb00a4b9e8778533bee699bf877c1eefe 54cebbad6afbdf64157a5d7a9ca6750e05fd8d2d 78116f22550d4efd52728bccb22028a870eaf7142ec34df01064b029a07e80c6
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 14 Nov 2022 10:24:00 GMT
etag: W/"d9-5ed6ba34dda28"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/fonts/vc_entypo.woff | 185.136.89.218 | 200 OK | 45 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/fonts/vc_entypo.woff IP185.136.89.218:0
File typeWeb Open Font Format, TrueType, length 45152, version 1.0\012- data Hash5460a9ba11448e34f332f25e72dc16df 9729b28b6872d971935ff58f460cf3c26dcb7380 434d5a30d2359d95efc266dbe0fffcac2c1846e133d4713bebb7c337bdfb84ce
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/css/lib/vc-entypo/fonts/vc_entypo.woff HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/vc_entypo.min.css?ver=6.8.0
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:56 GMT
content-type: application/font-woff
content-length: 45152
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: "620ccea9-b060"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 20 kB |
URL HTTP/2info.ciampinobus.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 IP185.136.89.218:0
File typeASCII text, with very long lines (47826) Hash305a392d72a9ca4b4f0f5409106fccbd 733a1e37366d86066be0aa1ca537c5ce7f3e9041 ed7691dd36af573e70d6d166792d6b6ee38cfc187f4101a80169011641db3144
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 04:55:02 GMT
etag: W/"63746d26-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash986afab4bad851da3c4a2b8db670c876 c58b7142ce3bebda918b77649973715dbd71b4d2 24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:18:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc04429b-38db-4e0a-96bf-5a6d2bc7e8cf.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc04429b-38db-4e0a-96bf-5a6d2bc7e8cf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4b42802dc628e38e9631a01b6320040a c83355f0828815ecbff47d8195d2deed8077e368 d0f093b1769b568a5d68ada359eadfd1ab3360488a20e1deeb99b0a51b649441
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc04429b-38db-4e0a-96bf-5a6d2bc7e8cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11256
x-amzn-requestid: fc079b98-a94a-4945-8e51-9b5941fda799
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwD8SEOMIAMFomA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb381-72b83330325d280821ecf4c1;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:10:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8BUL5SSz4_Jh8-i92w6IGXQEnW6RH2580LbDBIul4S45Mtji53ieTw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:06:10 GMT
age: 15166
etag: "c83355f0828815ecbff47d8195d2deed8077e368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-essentials//assets/css/main.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 15 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-essentials//assets/css/main.css?ver=6.1.1 IP185.136.89.218:0
Hashbdeff85d5c4cfe4028f5c0bab7ca671f 2d32a5081e4a388d13042c3e19e0902e105b5633 eee0805dccced521e47abe511bea5e3570d39530587c012c93b9e1e1cfe3bdd1
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-essentials//assets/css/main.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"290-5aa55e788d640"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashce710ab5746832fe637fada3e6d63abf d545c85d4a8cf92dc8b88db0a056623d1ef7a943 40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: c3dabd4b-797b-4bbe-8824-5f502ff477b0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2aG-IoAMFfnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf5-68de905b2ed5bfe46a87e688;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CsMWJP4A64pbv9jhvJkyNF2SU7gQEIkQ5xWBlSVSlGjlfz9O0dkPGQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 03:38:47 GMT
age: 81609
etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 | 185.136.89.218 | 200 OK | 14 kB |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 IP185.136.89.218:0
Hash1c03cc9f7ea5ebb3a97fbc4813e6bad1 557c2eb4f66eefbcabb165970cb12426fe5ee38d a2f8b2488b2ba00816b556869fd3068d392c24ea761d118947f20815ff48ad7b
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 08:52:21 GMT
etag: W/"63d390c5-af3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/ciampino-bus-shuttle-station.jpg | 185.136.89.218 | 200 OK | 135 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/ciampino-bus-shuttle-station.jpg IP185.136.89.218:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x600, components 3\012- data Size135 kB (135079 bytes) Hash3d2c456eb55fae5ed1aa041b99760017 8d091fa0088535cfb6c2839b980edccd5436a9d8 93c9e5ae74d39eaae98a76e6960419e1386ed70cbe9aa336aba36fd897dc1988
GET /wp-content/uploads/ciampino-bus-shuttle-station.jpg HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:56 GMT
content-type: image/jpeg
content-length: 135079
last-modified: Mon, 13 Jul 2020 19:58:53 GMT
etag: "5f0cbcfd-20fa7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/cabecera_rya-1536x364.png | 185.136.89.218 | 200 OK | 682 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/cabecera_rya-1536x364.png IP185.136.89.218:0
File typePNG image data, 1536 x 364, 8-bit/color RGBA, non-interlaced\012- data Size682 kB (682386 bytes) Hash840d6777c97091954dee64d7ae18eea5 bec2b8ae7420328dd344d7ac5b661069441af739 3c3849f32f8d92519e01229445a0127aef0947b3f81f8a04e0f06d7b35468487
GET /wp-content/uploads/cabecera_rya-1536x364.png HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:56 GMT
content-type: image/png
content-length: 682386
last-modified: Mon, 13 Jul 2020 18:47:25 GMT
etag: "5f0cac3d-a6992"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/gwpf_icon/favicon.ico | 185.136.89.218 | 200 OK | 68 kB |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/gwpf_icon/favicon.ico IP185.136.89.218:0
File typeMS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel\012- data Hashb5bf6a901d4a308c8bc82e4f4d2a37ba ad0424a4913641dd9c899b295dd8e178371c70f8 f72270552591fefa13463676ba0af297bbc09599dd11c635981757de1343ccc0
GET /wp-content/uploads/gwpf_icon/favicon.ico HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0; pll_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:56 GMT
content-type: image/vnd.microsoft.icon
content-length: 67646
last-modified: Fri, 25 Sep 2020 09:07:09 GMT
etag: "5f6db33d-1083e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/core/css/gutenberg.css?ver=1.0.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/core/css/gutenberg.css?ver=1.0.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/core/css/gutenberg.css?ver=1.0.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"347-5aa55e5a08e40"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/tablepress/css/build/default.css?ver=2.0.4 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/tablepress/css/build/default.css?ver=2.0.4 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/tablepress/css/build/default.css?ver=2.0.4 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Mon, 23 Jan 2023 07:18:01 GMT
etag: W/"63ce34a9-17b4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 08:52:21 GMT
etag: W/"63d390c5-2945"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/vc_entypo.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/lib/vc-entypo/vc_entypo.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/css/lib/vc-entypo/vc_entypo.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: W/"620ccea9-33a0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-essentials/assets/js/ajax_plugin.js?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-essentials/assets/js/ajax_plugin.js?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-essentials/assets/js/ajax_plugin.js?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"5f0c97d1-ab85"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0 IP185.136.89.218:0
GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: W/"620ccea9-2415"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/ | 185.136.89.218 | 200 OK | 0 B |
IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/html; charset=UTF-8
link: <https://info.ciampinobus.com/wp-json/>; rel="https://api.w.org/", <https://info.ciampinobus.com/wp-json/wp/v2/pages/200>; rel="alternate"; type="application/json", <https://info.ciampinobus.com/>; rel=shortlink
set-cookie: vchideactivationmsg_vc11=6.8.0
x-powered-by: PHP/7.3.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/css/jquery.fancybox.css?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/css/jquery.fancybox.css?ver=1.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/css/jquery.fancybox.css?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-137f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/css/animate.css?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/css/animate.css?ver=1.0 IP185.136.89.218:0
GET /wp-content/themes/metamax/css/animate.css?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-11ced"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/flaticon.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/fonts/cws-iconpack/flaticon.css?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/fonts/cws-iconpack/flaticon.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-1ceb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Tue, 03 Dec 2019 15:09:50 GMT
etag: W/"5de67abe-24ca1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: W/"620ccea9-caa8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/js/scripts.js?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/js/scripts.js?ver=1.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/js/scripts.js?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-1b40f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-essentials/assets/js/simple-likes-public.js?ver=0.5 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-essentials/assets/js/simple-likes-public.js?ver=0.5 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-essentials/assets/js/simple-likes-public.js?ver=0.5 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"5f0c97d1-534"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0 IP185.136.89.218:0
GET /wp-content/themes/metamax/js/slick.min.js?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-a76f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C700italic%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1 | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C700italic%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1 IP142.250.74.106:0
GET /css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C700italic%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 Feb 2023 02:18:55 GMT
date: Thu, 09 Feb 2023 02:18:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 IP185.136.89.218:0
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Tue, 03 Dec 2019 15:09:50 GMT
etag: W/"5de67abe-4307e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP185.136.89.218:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 03:39:03 GMT
etag: W/"628da4d7-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Wed, 16 Feb 2022 10:15:04 GMT
etag: W/"620ccea8-4e9c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Tue, 03 Dec 2019 15:09:50 GMT
etag: W/"5de67abe-e1a2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/css/select2.css?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/css/select2.css?ver=1.0 IP185.136.89.218:0
GET /wp-content/themes/metamax/css/select2.css?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-44de"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/style.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/style.css?ver=6.1.1 IP185.136.89.218:0
GET /wp-content/themes/metamax/style.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"318-5aa55e5a08e40"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/css/main.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/css/main.css?ver=6.1.1 IP185.136.89.218:0
GET /wp-content/themes/metamax/css/main.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-a56d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/fonts/flaticon/flaticon.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/fonts/flaticon/flaticon.css?ver=6.1.1 IP185.136.89.218:0
GET /wp-content/themes/metamax/fonts/flaticon/flaticon.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-1d72"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:05 GMT
etag: W/"620ccea9-76891"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/uploads/js_composer/custom.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/uploads/js_composer/custom.css?ver=6.8.0 IP185.136.89.218:0
GET /wp-content/uploads/js_composer/custom.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Wed, 16 Feb 2022 10:15:13 GMT
etag: W/"3c-5d81fecdc4e40"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Wed, 09 Dec 2020 04:55:08 GMT
etag: W/"5fd058ac-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:04 GMT
etag: W/"620ccea8-dc69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front.js?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front.js?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front.js?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"5f0c97d1-162a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=2.0.4 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=2.0.4 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/tablepress/js/jquery.datatables.min.js?ver=2.0.4 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 07:18:01 GMT
etag: W/"63ce34a9-150fe"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 IP185.136.89.218:0
GET /wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-1b37"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP185.136.89.218:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 14 Nov 2022 10:24:00 GMT
etag: W/"63721740-15e54"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 08:52:21 GMT
etag: W/"63d390c5-31d9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-svgicons/cwssvgi_f.css?ver=6.1.1 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-svgicons/cwssvgi_f.css?ver=6.1.1 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/cws-svgicons/cwssvgi_f.css?ver=6.1.1 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"63-5aa55e788d640"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/fonts/font-awesome/font-awesome.css?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/fonts/font-awesome/font-awesome.css?ver=1.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/fonts/font-awesome/font-awesome.css?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-116e1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/cws-svgicons/cwssvgi_f.js?ver=1.5.4 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/cws-svgicons/cwssvgi_f.js?ver=1.5.4 IP185.136.89.218:0
GET /wp-content/plugins/cws-svgicons/cwssvgi_f.js?ver=1.5.4 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:20:17 GMT
etag: W/"5f0c97d1-526"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: text/css
last-modified: Wed, 16 Feb 2022 10:15:04 GMT
etag: W/"620ccea8-865f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| info.ciampinobus.com/wp-content/themes/metamax/js/sticky_sidebar.js?ver=1.0 | 185.136.89.218 | 200 OK | 0 B |
URL HTTP/2info.ciampinobus.com/wp-content/themes/metamax/js/sticky_sidebar.js?ver=1.0 IP185.136.89.218:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/themes/metamax/js/sticky_sidebar.js?ver=1.0 HTTP/1.1
Host: info.ciampinobus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.ciampinobus.com/
Cookie: vchideactivationmsg_vc11=6.8.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:18:55 GMT
content-type: application/javascript
last-modified: Mon, 13 Jul 2020 17:19:45 GMT
etag: W/"5f0c97b1-3a49"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|