Report - 85.37.40.164/wg_vasto

Report Overview

Submitted URL
85.37.40.164/wg_vasto_wip/index.php
IP
85.37.40.164
ASN
#3269 Telecom Italia
Submitted
2022-12-20 11:10:51
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
140

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	341 B	797 B	93.184.220.29
dev.virtualearth.net	1336	2012-06-01T12:33:50Z	2023-03-09T03:07:44Z	303 B	1.6 kB	52.156.193.145
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.3 kB	55 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	54.187.102.159
maps.googleapis.com	33876	2019-10-17T17:56:16Z	2023-03-09T13:33:34Z	1.3 kB	189 kB	142.250.74.138
85.37.40.164	unknown	2022-04-11T18:07:30Z	2023-01-10T15:41:48Z	30 kB	1.3 MB	85.37.40.164
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	1.7 kB	4.4 kB	23.36.77.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed
2022-12-20	medium	85.37.40.164	Sinkholed

JavaScript (33)

	URL	Size	First Seen	Last Seen
	85.37.40.164/wg_vasto_wip/index.php	36 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/wg_vasto_wip/index.php IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:57 Times Seen2 Hash 77d6c4888edb43a081010b46e1f35622 fd904ba21e8341f70fb2175319a577a0befd74d8 214ee88699e903b70cdd8a7c475c889a0236228cd5f2be1946bb98b4b8779987 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG4236.js	97 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG4236.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash f5c8668a7aa6fd6ab1b54b2d68c93627 1b7071b6c614df25dd6a5998a21d0524d9dcd3de f56b878235f47a502f04b678c49749421725dc41b92bcc05f5ff9a747174dd93 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23033.js	80 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23033.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 1aefa73dc5444a9933f55e28d9f2f864 2ca617dd8d508105cf67f566e9c2b15f45184ecb 0e8a868cd7e035a0b220ec4372eecec79557730468cc8e982eba5a25aa4edf15 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3044.js	80 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3044.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash a93a9f6a93cfd32f4e06aeccf11cbdbb 054989ccd9dcf27770e616271078509940e702cc ecba417a323082f47fc633454e7d565738eb7310034f18df4edc3bb13c8d3fc9 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/extensions/MeasureWithBearing.js	13 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/extensions/MeasureWithBearing.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:57 Times Seen2 Hash b139d1216b2ea4bd65bf08d43a6e720e 36731c996e64b4140996e54cf38e5ddda785e053 8ebb9cce6151dc7481fee75443e05a2946c1e7302142279459cfca5af21c5526 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/config.js	3.7 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/config.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 742fd48f4c36371febc8d2a0246db95e d316cf2f7a2f68a12df2ff14e760e74c5755267c ca4734e2dd1221c3350db4fd4e8f79848d8ea8c30705aae3beb69b3c3f4006a2 Loading...

	85.37.40.164/wg_vasto_wip/kendo/js/messages/kendo.messages.it-IT.min.js	8.3 kB	2023-03-09	2024-01-05
Pretty URL 85.37.40.164/wg_vasto_wip/kendo/js/messages/kendo.messages.it-IT.min.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2024-01-05 12:52:10 Times Seen7 Hash 7e45e21572b9237532b1bb8fcb2caf05 b297b15c138f7faa5af821ad0bd011d26ccc5d30 2e0aa71f2b3c3e5637bc2c9da66081bcb6b7e7e6905c9ded6ed1892bb5763fd9 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/proj4js-compressed.js	79 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/proj4js-compressed.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 0ebaf2e6bf509cf0156cbee160a6932c 26f342608d4b147774fb7d4f7e461519b9b0d7af 196b60f0998fb902f6c32b3dc51be6af3d81f1aaa3ba6fbd0a93be2742732448 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3045.js	80 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3045.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 8b4106ea5086d8e060a718384d5443e3 933e6419c270644023be4e5ee564c710997c78d5 51ad53cba6ca4e954452bdd8c8349dc6e4018e62eaec09070040644d982870d3 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dojo/dojo.js	460 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dojo/dojo.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 7eca8f5c4de75d4a9a8f947af778a073 917e263a4b2ca29f8d3439c9707aa050e7e6eea7 9cefd49ba6b881040032cccc1caab0226955ac27bdf5138d292c295a69de71a5 Loading...

	85.37.40.164/wg_vasto_wip/kendo/js/jquery.min.js	93 kB	2023-03-07	2024-04-24
Pretty URL 85.37.40.164/wg_vasto_wip/kendo/js/jquery.min.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 22:16:28 Times Seen23324 Hash 397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/OpenLayers.js	983 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/OpenLayers.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 2d68c1adb3cb49ddc7c8b8c269a71537 008592c8aba9856cb3ccaa627dc1e79c79ebb6a0 5eaad635637148eed312ad73d33ff4a229b961a7847e129200805518cf0ec28a Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?	96 B	2023-03-09	2023-03-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php? IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-03-13 06:49:25 Times Seen1 Hash 8eb7d44eaf63f86f511c0f0d6e069c8e 7ad3bb5852a1114561fd5a6a5e01d3d057b43a25 4ab3cd15c8cf248f086fb6780aaf83c046c30e185e90caae8ba65cfb98f43208 Loading...

	85.37.40.164/wg_vasto_wip/index.php	7.4 kB	2023-03-09	2023-03-13
Pretty URL 85.37.40.164/wg_vasto_wip/index.php IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-03-13 06:49:25 Times Seen1 Hash 57ca02af375a34ec0c7ff938f80a4d7d 4215811209c52eb6b19259b5c5af953687d11978 2af12c49e81ea1807092ed5264d1802cfbc8b4e466cc4aeb1a5b7c986660e78a Loading...

	85.37.40.164/wg_vasto_wip/index.php	11 kB	2023-03-09	2023-03-13
Pretty URL 85.37.40.164/wg_vasto_wip/index.php IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-03-13 07:07:54 Times Seen1 Hash 815dca9a229680d5e0a03d22be9b0162 6370eeff50a062c93b9b72fefad410b1ed0d64f0 a72b69d217af4293e088135a77c9bec5b8f6fc5a138947bb126ed28fedb3c420 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23032.js	111 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23032.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 1146e60603d12d6b0cbfff825546b70c acced55e97e2983a59f69c1adf55281f9f4b8e03 997a3d76137750b182cbaa89f1d0006863b24d290a9447f81f0de42b35773246 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/util.js	170 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/util.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:11:43 Last Seen2023-03-12 14:26:19 Times Seen1 Hash 75a28a7654f3cb167466fc9f53f26857 f0608e6738a9929564fc924d3f7b8ca719410344 ca9a23567883cb5e3c7b2d81005271db6d3753e2186c625acbf88ad47e282041 Loading...

	85.37.40.164/wg_vasto_wip/index.php	3.5 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/wg_vasto_wip/index.php IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:57 Times Seen2 Hash 4b964bbe855c24a48308d7c72fd4676c 46038de52764ff0d96c619b9b87f732a32636921 f9b211cbc6fd5fa9c868a75520d34b8cf2be39afe14ccc4567d51e60b3cdae93 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 00:57:33 Times Seen37051615 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/main.js	4.7 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/main.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:33 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 63a44b769d52d2cd9a579de969bfa8ce ad80031d4d9cf84456d40d5ffc8e56a99b440746 c35cd82b17578a0bac7261d94a3800b00f4c03e58cbebf9f405b9e0592098c29 Loading...

	85.37.40.164/wg_vasto_wip/kendo/js/jszip.min.js	76 kB	2023-03-07	2023-08-13
Pretty URL 85.37.40.164/wg_vasto_wip/kendo/js/jszip.min.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:19 Last Seen2023-08-13 12:20:58 Times Seen14 Hash a778df39333432bb8c5ad0f81d02d296 e1065bd34d3bfa12e44537d1fc7419315f76d240 215fb2537b13d82daabd46e1ee59ffe4dce90abd0acb0ac5432e77071f422e9c Loading...

	85.37.40.164/wg_vasto_wip/index.php	191 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/wg_vasto_wip/index.php IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:57 Times Seen2 Hash 6f503618c35f7965b9e8fdab20f534ce 162de18ee6918d4076f339a8c9bec196cd9c6e2c 271ffdb8138692e6ac364e6066a29009bb93514087a9ebd5e96b50c6a0e1ef1f Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG26915.js	111 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG26915.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 6962ec3ec9caed93afff50de53fca455 daab69c62daf8a46da2f85f6dc5f0c2f82cd0290 4f267b7e26217506c50bdbfb8671df597fdf98f170a4ccdb1be1424a6b8853a9 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/3/common.js	255 kB	2023-03-08	2023-03-12
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/3/common.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:11:43 Last Seen2023-03-12 14:26:19 Times Seen1 Hash 87c978a83e6f6fd3a5b91c95334bcb8d 4c34d1820d01eeaf501a662fa7cefa777174e966 32999fee543995c67d5f35c2432cccc8a0df808c6e3aa5697e751e694e4a8cef Loading...

	85.37.40.164/wg_vasto_wip/index.php	194 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/wg_vasto_wip/index.php IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:57 Times Seen2 Hash c87d9e2ad0b3af3a7a33dc6064c72dc3 0de86f8e7b1ef664750e08d2055494bc8579b1c0 7fec73134f75e795a7a47505a9b28d6da5ea21385fd76231e1e56294ebdd5b67 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/geomoose.js	25 kB	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/geomoose.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 05afd8428bc9abecb168f8ac09d5bbe2 03d9f0b8e1b2edb6ddfbe0ebb334cd3b63ffb267 65148d814c0734cf297c31e53cb25f9ddeba258fd3e438e03e37e43e75d5032e Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3857.js	145 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3857.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:59 Times Seen3 Hash d48c090283cf903cbd140a35e7d8d299 0e809038675b60f0903a19a78595920562660095 a303ed163d097e3f7b1722270bed940fc5c1245586492aeaadda6a1b4dc0c7a8 Loading...

	85.37.40.164/wg_vasto_wip/index.php	3.3 kB	2023-03-09	2023-03-13
Pretty URL 85.37.40.164/wg_vasto_wip/index.php IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2023-03-13 06:49:25 Times Seen1 Hash 57d6775cb9a6580b05d922c6cd9cd72a 32e72569d59491f8295830b69ff73863310eb713 e4811c70063399ff4c22d213f4eea917fa2ef0a8c95f80592c385d14b31ffed2 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG32632.js	94 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG32632.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:59 Times Seen3 Hash 479e3bd1bef7c49eef3c38f6f55eba73 a9b2ad277ed14dac7c41d0a4afbbf9c020aae8fc a79ee0ee5b8a507b195c3d33983430d33043373d0b1e22f9027a0612b3969438 Loading...

	85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3004.js	174 B	2023-03-09	2023-08-13
Pretty URL 85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3004.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:59 Times Seen3 Hash d7bc8bf4b4920f559eb3ad3f0bbfa825 e5e06c5bb5200b54acd67e1427e4fa1a135cb3ef 9bf7805eebd5730600f38252fa3f1ed3d8586df965b698e0da1aed28ea93ee4e Loading...

	85.37.40.164/wg_vasto_wip/kendo/js/cultures/kendo.culture.it-IT.min.js	1.5 kB	2023-03-09	2024-01-05
Pretty URL 85.37.40.164/wg_vasto_wip/kendo/js/cultures/kendo.culture.it-IT.min.js IP 85.37.40.164 ASN #3269 Telecom Italia Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:38:34 Last Seen2024-01-05 12:52:10 Times Seen7 Hash 2a0abf72c00eff936ad91f00efb34038 2d306c7a10bd5aeba6ced3b38bbdc589241c3da8 f8205365a708202cb1349823c853654825019eb6d2860316c5b0e248ca7b4813 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 2cd15ed896f27cf4f0ba107a07a66d04	4.7 kB	2023-03-09	2023-08-13
Pretty Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:58 Times Seen2 Hash 2cd15ed896f27cf4f0ba107a07a66d04 c2f37c560ad83eab24bc0fc558361d8bc2881e4e 01d9bcc37f7e09804298e91d43569bd9402a63a1915648777f41064e24e04544 Loading...

	#2 Eval - 7146014d77420e28b4f3e3933dc46a3d	27 B	2023-03-09	2023-08-13
Pretty Observations First Seen2023-03-09 22:38:34 Last Seen2023-08-13 12:20:58 Times Seen2 Hash 7146014d77420e28b4f3e3933dc46a3d a55202e21b53b0a7ff29796f261b341ce550bea2 ca9057f1fee97d663bf7d4a556436d4749d6a7808401e3f500126e127cfe8476 Loading...

HTTP Transactions (92)

URL IP Response Size

85.37.40.164/wg_vasto_wip/index.php

85.37.40.164

200 OK

16 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/index.php
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (355)
Size
16 kB (15801 bytes)
Hash
0d8472f0ec74abf917ed184780887ae4
51d2cea5e8bfd9bc40625bef25a5e4f8c507806d
27f0f203fabd5283e919c0c4d65b72928b98aa51e461a0060566d942265fcb8b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/index.php HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:46 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Set-Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 15801
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2039a1dda99e075b82840608771d2326
e89713a35b312f3b87fbeaad98f03fddecbf77ce
aae78c754635e9833fa6c231d775bddc82add02f9ce3197a0b260a0806e708c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AAE78C754635E9833FA6C231D775BDDC82ADD02F9CE3197A0B260A0806E708C3"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9449
Expires: Tue, 20 Dec 2022 13:48:09 GMT
Date: Tue, 20 Dec 2022 11:10:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4cbb89840b57466fcbc0b31305c9dc47
c2c08a7a243a3f7972e8068c448488cac6d2519f
5f871ffd142470f132fed1c93f5f1a7fe6a5ecc3b4311d3d47555fce1d9a35f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F871FFD142470F132FED1C93F5F1A7FE6A5ECC3B4311D3D47555FCE1D9A35F1"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8630
Expires: Tue, 20 Dec 2022 13:34:30 GMT
Date: Tue, 20 Dec 2022 11:10:40 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 20 Dec 2022 10:45:44 GMT
content-type: application/json
age: 1496
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cf03270e3476f7482a2cc7ddc6a9e857
ab70d5ee87b01e0601f8e518bf36f97c8ceeba9a
43a4e796860a1481636dac103488cadc68c261d13cfe835d273efc368e569f97

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A4E796860A1481636DAC103488CADC68C261D13CFE835D273EFC368E569F97"
Last-Modified: Sun, 18 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9569
Expires: Tue, 20 Dec 2022 13:50:09 GMT
Date: Tue, 20 Dec 2022 11:10:40 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: emJ5wVecq4BgQVcfRXqKeJM2kwOF8O7cxsZqJtCxOFTOu2BVuyy6hMvax/BGtVTRSj9seRDy2x8=
x-amz-request-id: QK9MTYWQHA6Y9TH6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 20 Dec 2022 10:29:24 GMT
age: 2476
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 11:10:40 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

85.37.40.164/wg_vasto_wip/styles/examples-offline.css

85.37.40.164

200 OK

1.6 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/styles/examples-offline.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
1.6 kB (1625 bytes)
Hash
0313fa31c126d45d3a787268886b8bd4
703fafce87e55e59c200b72aec641009a391a36d
19a4f8e89382023746aa9a65b943768cc9e056e1f2103a34276710648a50d2fa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/styles/examples-offline.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:13:55 GMT
ETag: "142f-56df3e8e47e34-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 1625
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/wg_vasto_wip/kendo/styles/kendo.blueopal.min.css

85.37.40.164

200 OK

7.2 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/styles/kendo.blueopal.min.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (47644)
Size
7.2 kB (7176 bytes)
Hash
39e5c711a9ad611a930c29ad9147340d
89830808ab76bd58c607b8afbdcc7aaff9a9eef4
b627dc529b81ad78c5ee94329ce24037cb44ff798877819c9138b7beacd8a8d4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/styles/kendo.blueopal.min.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "bb69-56df3ea65bf34-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 7176
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/wg_vasto_wip/styles/stile_scoped.css

85.37.40.164

200 OK

2.3 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/styles/stile_scoped.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
HTML document, ASCII text
Size
2.3 kB (2329 bytes)
Hash
fe9fedff47bef19ca874b9db14ac4646
86079a6339f70dcbd1921d4d54ba88b06357d94a
23943d51d21ac600dc763d426698d55b4cc702a3ff24a7fc859bf0d78063f6ba

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/styles/stile_scoped.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:13:55 GMT
ETag: "2e95-56df3e8e43fb4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 2329
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/wg_vasto_wip/styles/legenda.css

85.37.40.164

200 OK

312 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/styles/legenda.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
312 B (312 bytes)
Hash
9ceda738073242fe53b797f1b029c0f8
0bb629e2e2dc5b639abc5132e26c270b8fb846bf
66b02f7c2aaf4d093646bd0c9f5d9518997831eeb05ea55abdfd588627601b1f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/styles/legenda.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:13:55 GMT
ETag: "24b-56df3e8e42074-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 312
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/wg_vasto_wip/kendo/styles/kendo.common.min.css

85.37.40.164

200 OK

32 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/styles/kendo.common.min.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (65203)
Size
32 kB (31931 bytes)
Hash
dc9bee9a7e5b192a510783ec58263e2d
139f9cc0b04b80bcd07b3eb908de9755939face1
50905748a16526e360ff5272434f6d3cde5439a6ffd67aac768d7ac7ceaa092a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/styles/kendo.common.min.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "34236-56df3ea647714-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 31931
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/wg_vasto_wip/kendo/js/messages/kendo.messages.it-IT.min.js

85.37.40.164

200 OK

2.9 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/js/messages/kendo.messages.it-IT.min.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
Unicode text, UTF-8 text, with very long lines (7963)
Size
2.9 kB (2862 bytes)
Hash
435dea648d7f4e18501246e9c2186533
4f39847adcbd9c47544691408f188b11c1bf7cf3
bf6f9801f981b86315aafb6cf970a5e4a6e916633a3dc5ef2b56ef0d3745089b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/js/messages/kendo.messages.it-IT.min.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "2097-56df3ea686eb4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 2862
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/wg_vasto_wip/kendo/js/jszip.min.js

85.37.40.164

200 OK

23 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/js/jszip.min.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
data
Size
23 kB (23376 bytes)
Hash
a41bbaa31db7a3d647e7ae7a2bbf0274
ae99f55a7b29d92816c4cf3856cc44615b12d815
b34bcad850ba6ed13c74e63d21efc292708348c580d2952a0f442aa3a54d42d7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/js/jszip.min.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "126e2-56df3ea689d94-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 23376
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/wg_vasto_wip/kendo/js/jquery.min.js

85.37.40.164

200 OK

33 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/js/jquery.min.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (32089)
Size
33 kB (32775 bytes)
Hash
fcf0a7201168a979dd4b222a54471e0f
9056c50ea859db10d2d959654d0f8dde367360ee
c40969745be3d2181fd5d40425f9080ac2c62e63d298c1de8bb4bbda5e4ea0f7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/js/jquery.min.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "169d5-56df3ea686eb4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 32775
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/wg_vasto_wip/kendo/js/cultures/kendo.culture.it-IT.min.js

85.37.40.164

200 OK

780 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/js/cultures/kendo.culture.it-IT.min.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
Unicode text, UTF-8 text, with very long lines (1201)
Size
780 B (780 bytes)
Hash
e2117b2179244cbbc1987b8ace972cc8
efc8254a81c38ff979b7b127b76bd8997cf374f8
a54bb469158c977fe22a02c77ef7f40ff5fea6fc5ff62d6558d529d60d4c774c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/js/cultures/kendo.culture.it-IT.min.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "605-56df3ea67a394-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 780
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 20 Dec 2022 10:33:24 GMT
age: 2236
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d0c2b6760f2b58f445446dd2276d5af4
aeedf417b1ebde86ce837ca02ba934abb938b1a4
8fe72d0ce839150559da5ddf46bf87d26b6b9cbe34d09641b29a53be24997c81

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3467
Cache-Control: max-age=168837
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 11:10:41 GMT
Etag: "63a17b2b-1d7"
Expires: Thu, 22 Dec 2022 10:04:38 GMT
Last-Modified: Tue, 20 Dec 2022 09:06:51 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

85.37.40.164/wg_vasto_wip/kendo/js/kendo.all.min.js

85.37.40.164

200 OK

623 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/js/kendo.all.min.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (32138)
Size
623 kB (623302 bytes)
Hash
c1d2a50c6714cae38d98a17553ec6925
90b410bf5f478c335c206461213885d1d6fe21b3
d6b925793ca4223faeab52e0ed76e250478e15d1d012ac02ca3fcd8bfaa4e74a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/js/kendo.all.min.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "1ffc43-56df3ea68cc74-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

85.37.40.164/wg_vasto_wip/QRcode/phpqrcode/linkQR.php?link=http://85.37.40.164/wg_vasto_wip/index.php

85.37.40.164

200 OK

454 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/QRcode/phpqrcode/linkQR.php?link=http://85.37.40.164/wg_vasto_wip/index.php
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 185 x 185, 1-bit colormap, non-interlaced\012- data
Size
454 B (454 bytes)
Hash
a78595f1c550b0a7c7335ceba4c9e700
21a499dd27b6c556bdea8f5286d246976f82ab8c
63ace4e61f836db7fe7cea39514a7734f184f67fe695b7e51654f572df4be8ad

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/QRcode/phpqrcode/linkQR.php?link=http://85.37.40.164/wg_vasto_wip/index.php HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Content-Length: 454
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/report.png

85.37.40.164

200 OK

649 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/report.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
649 B (649 bytes)
Hash
0deaad6ffb62dc35f74b2fd5daa74130
7147249312ccd368a7f4fb9b3a0661db9980c3d1
f9b5382fbb5fbf111464068a732d9a6e110201aa8300351536eee1545d27ce8f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/report.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:21 GMT
ETag: "289-56df3ea6d4114"
Accept-Ranges: bytes
Content-Length: 649
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/logoff.png

85.37.40.164

200 OK

3.4 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/logoff.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3356 bytes)
Hash
451f95470795739b7e69463752730b31
497d5ab62042c933ff4ed2a82d3f39b091533286
34ed64b2e5c1e032e417c06f4c1871c5c1b62d6bad1e0fd6ce4bd97ed5be24e0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/logoff.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:21 GMT
ETag: "d1c-56df3ea6c8594"
Accept-Ranges: bytes
Content-Length: 3356
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/chart_bar.png

85.37.40.164

200 OK

541 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/chart_bar.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
541 B (541 bytes)
Hash
8d60518c6d18af693cfeea9c066026c1
4e9576a56db3d142113b8905d7aa93e31c9f441b
29be9ef9bc6f6a08c7d514035e29c1b751d2f4b697bb6c8317361f9a08163c07

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/chart_bar.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "21d-56df3ea6c27d4"
Accept-Ranges: bytes
Content-Length: 541
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/zoom.png

85.37.40.164

200 OK

692 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/zoom.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
692 B (692 bytes)
Hash
b36200916d810e20a176a0e274acb0eb
b6fbb9dee348e78f49079cf2b821155bb026fec7
3bda017383ceb591c5e0519dbf50fcb6886156c12ca548560119b7d03b54e419

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/zoom.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "2b4-56df3ea6bca14"
Accept-Ranges: bytes
Content-Length: 692
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/page_white_database.png

85.37.40.164

200 OK

579 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/page_white_database.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
579 B (579 bytes)
Hash
03e2b564224bfb58ff20904bda244043
c7ce83f920d97c0da50a6173d48874a85240f10f
0af69a93256994d368ef42f7a6b51104ecf5a73aed16794f0a47b7be94ac1131

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/page_white_database.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:21 GMT
ETag: "243-56df3ea6c6654"
Accept-Ranges: bytes
Content-Length: 579
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/error.png

85.37.40.164

200 OK

666 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/error.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
666 B (666 bytes)
Hash
c847e1076da70df83ef5284622b82a74
3855754e8fc9331c67dd2d0789d9f2d6e7daae8b
011f4e33d86b448078a2bd56b7060770b2c079e86aad2b7298ab0db216758f34

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/error.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "29a-56df3ea6be954"
Accept-Ranges: bytes
Content-Length: 666
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/page_white_acrobat.png

85.37.40.164

200 OK

591 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/page_white_acrobat.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
591 B (591 bytes)
Hash
5ee15843554004d12736f0404f8d443a
0cd7923476a98f84137b91c68e7488398770de57
27420ea72e036ea1511bf0a0a4b263a02a2bf52ecd0e297c05ea1d50e7bb218a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/page_white_acrobat.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "24f-56df3ea6baad4"
Accept-Ranges: bytes
Content-Length: 591
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/geografico.png

85.37.40.164

200 OK

4.7 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/geografico.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4719 bytes)
Hash
62d1400c4e2b981924c8c553b9922c50
41c081e612faeda1b5956acb17fbac8f8f8cbc7e
9f61078a141b4fb06e43965801a7a1c3cb5cd41935079f8d39fd1b6f2055228a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/geografico.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:21 GMT
ETag: "126f-56df3ea6ca4d4"
Accept-Ranges: bytes
Content-Length: 4719
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/icons/tabellare.png

85.37.40.164

200 OK

3.6 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/tabellare.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
3.6 kB (3573 bytes)
Hash
52fa7f27667d96ae8b203242c4ff8e43
6573344dad1597fdd87f7f907956aed0597618a8
27130bf494ed6afc84c3af74b4ef325e3894b11e810af9084a73c7cbfb344814

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/tabellare.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:21 GMT
ETag: "df5-56df3ea6d6054"
Accept-Ranges: bytes
Content-Length: 3573
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/separator_mod.gif

85.37.40.164

200 OK

871 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/separator_mod.gif
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
GIF image data, version 89a, 13 x 13\012- data
Size
871 B (871 bytes)
Hash
0679010fa7aecaf46295dc47b215d564
11b1b29af604f913c6159c1fb0b1c8ef6bd87639
d5ccf8966a2c2ed420d09086844ebc11b5efc7c8d60fb5c73a53bb8b903c302d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/separator_mod.gif HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:47 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:21 GMT
ETag: "367-56df3ea6dcdb4"
Accept-Ranges: bytes
Content-Length: 871
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif

push.services.mozilla.com/

54.187.102.159

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.187.102.159:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QVtDIAKbe4vwpZMQrCQwbg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +8XapvqBGwSBMVJciHKTMDRPZBA=

85.37.40.164/wg_vasto_wip/styles/bg.png

85.37.40.164

200 OK

1.1 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/styles/bg.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 7 x 482, 8-bit/color RGB, non-interlaced\012- data
Size
1.1 kB (1130 bytes)
Hash
aef1ace4692fe4f6dbd3273a842d9894
752601d8a5795b263f8656739abaff3f8357c1a5
89dc20f4e20de9631f7c977cf41d6d2473acb7f01f7fd92a3429cbcd2601ffe2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/styles/bg.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/styles/examples-offline.css
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:13:55 GMT
ETag: "46a-56df3e8e47e34"
Accept-Ranges: bytes
Content-Length: 1130
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/t_classe.php

85.37.40.164

200 OK

2.3 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/t_classe.php
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (2300), with no line terminators
Size
2.3 kB (2300 bytes)
Hash
cec3be64817299cd3fddebe50ce46475
89d4f864fae14bd33f8b5738756f7dd557b2d82d
6806cf9ddd13e0519a4e45cfbb0ef7f0b278cde7b7a712e2603782838b2420ad

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/t_classe.php HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Content-Length: 2300
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/wg_vasto_wip/kendo/styles/BlueOpal/sprite.png

85.37.40.164

200 OK

23 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/styles/BlueOpal/sprite.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 340 x 336, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (23424 bytes)
Hash
9049686875b3c0e16c3c11e5c9a62a34
e5f36943c08ce1e33fc94f3f52eae5ab4d4e5e34
a7a4b43ddb3be607e17185a53f7650b1e52445a6038b413867c44922ce86ecc7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/styles/BlueOpal/sprite.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/kendo/styles/kendo.blueopal.min.css
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "5b80-56df3ea668a54"
Accept-Ranges: bytes
Content-Length: 23424
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/wg_vasto_wip/kendo/styles/BlueOpal/loading-image.gif

85.37.40.164

200 OK

6.0 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/kendo/styles/BlueOpal/loading-image.gif
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
GIF image data, version 89a, 48 x 48\012- data
Size
6.0 kB (5995 bytes)
Hash
15e584a7e2c8f8f79b765f2cadf1c718
966bb91e1f4beb57850ae78a899c93d42acfa2e7
b081a8254d8e9425c72de67f4839ee55018f4fd6f956142313ee062fbbd25556

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/kendo/styles/BlueOpal/loading-image.gif HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/kendo/styles/kendo.blueopal.min.css
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "176b-56df3ea668a54"
Accept-Ranges: bytes
Content-Length: 5995
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif

85.37.40.164/wg_vasto_wip/albericlassi.php?filter%5Blogic%5D=and&filter%5Bfilters%5D%5B0%5D%5Bfield%5D=classe&filter%5Bfilters%5D%5B0%5D%5Boperator%5D=number.eq&filter%5Bfilters%5D%5B0%5D%5Bvalue%5D=all

85.37.40.164

200 OK

25 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/albericlassi.php?filter%5Blogic%5D=and&filter%5Bfilters%5D%5B0%5D%5Bfield%5D=classe&filter%5Bfilters%5D%5B0%5D%5Boperator%5D=number.eq&filter%5Bfilters%5D%5B0%5D%5Bvalue%5D=all
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with no line terminators
Size
25 B (25 bytes)
Hash
6a13061a9d57af7aab082a7dd9fca6aa
0a2b2d986f89690393be4f3261f9d8c7af11ae1b
f359ab8fd535184ea2c6655954928da4e210beb67d31bb40c6b6d0e4f535ab24

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/albericlassi.php?filter%5Blogic%5D=and&filter%5Bfilters%5D%5B0%5D%5Bfield%5D=classe&filter%5Bfilters%5D%5B0%5D%5Boperator%5D=number.eq&filter%5Bfilters%5D%5B0%5D%5Bvalue%5D=all HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Content-Length: 25
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/wg_vasto_wip/styles/sottologin.jpg

85.37.40.164

404 Not Found

232 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/styles/sottologin.jpg
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
232 B (232 bytes)
Hash
748a259eaf0c60ff630534b5b7297f29
f73a26f87a3cbdc9edc051566d9e0894a12a85a2
ed81ff4ced7509daf42244976dffec200d202f456f414aa6b1188311bb7d37c2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/styles/sottologin.jpg HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/styles/stile_scoped.css
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 404 Not Found
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
Content-Length: 232
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

85.37.40.164/favicon.ico

85.37.40.164

404 Not Found

209 B

URL HTTP/1.1
85.37.40.164/favicon.ico
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
209 B (209 bytes)
Hash
18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 404 Not Found
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
Content-Length: 209
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

85.37.40.164/wg_vasto_wip/t_stradario.php

85.37.40.164

200 OK

30 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/t_stradario.php
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (30292), with no line terminators
Size
30 kB (30292 bytes)
Hash
1d2e95961e0944b19c874da39dc92d09
451a61420803aa45daa170fabed432f56ae22b30
8da62a9f7425f6e26413f84fc1e6017f66b68446d545a4b84999343fe96252df

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/t_stradario.php HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json

85.37.40.164/wg_vasto_wip/json_cerca_attivita_produttive.php?take=15&skip=0&page=1&pageSize=15&sort%5B0%5D%5Bfield%5D=civ_id&sort%5B0%5D%5Bdir%5D=asc&filter%5Blogic%5D=and&filter%5Bfilters%5D%5B0%5D%5Bfield%5D=atp_data_fine&filter%5Bfilters%5D%5B0%5D%5Boperator%5D=IS+NULL&filter%5Bfilters%5D%5B0%5D%5Bvalue%5D=IS+NULL

85.37.40.164

200 OK

4.0 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/json_cerca_attivita_produttive.php?take=15&skip=0&page=1&pageSize=15&sort%5B0%5D%5Bfield%5D=civ_id&sort%5B0%5D%5Bdir%5D=asc&filter%5Blogic%5D=and&filter%5Bfilters%5D%5B0%5D%5Bfield%5D=atp_data_fine&filter%5Bfilters%5D%5B0%5D%5Boperator%5D=IS+NULL&filter%5Bfilters%5D%5B0%5D%5Bvalue%5D=IS+NULL
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (4010), with no line terminators
Size
4.0 kB (4010 bytes)
Hash
0ea131372adb79a7a14546bf0ed02cb0
6413b90a04b73e076c39de40d69f035321d4af36
6beea3d62bc5a7e019e16959a5f4196a449217a5a59056eb9f9639f3be596d6e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/json_cerca_attivita_produttive.php?take=15&skip=0&page=1&pageSize=15&sort%5B0%5D%5Bfield%5D=civ_id&sort%5B0%5D%5Bdir%5D=asc&filter%5Blogic%5D=and&filter%5Bfilters%5D%5B0%5D%5Bfield%5D=atp_data_fine&filter%5Bfilters%5D%5B0%5D%5Boperator%5D=IS+NULL&filter%5Bfilters%5D%5B0%5D%5Bvalue%5D=IS+NULL HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Content-Length: 4010
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/wg_vasto_wip/json_arco_strada_search.php?take=20&skip=0&page=1&pageSize=20&sort%5B0%5D%5Bfield%5D=str_descr&sort%5B0%5D%5Bdir%5D=desc

85.37.40.164

200 OK

3.9 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/json_arco_strada_search.php?take=20&skip=0&page=1&pageSize=20&sort%5B0%5D%5Bfield%5D=str_descr&sort%5B0%5D%5Bdir%5D=desc
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (3850), with no line terminators
Size
3.9 kB (3850 bytes)
Hash
fc4ea8d1c270c83ed95c761d41f35e84
f0fdd4c11249e3ad18816f9e84eb01138754d6ce
663a365a96868216f2113831ffbebb6cbceaad9cfa4f00bb30618698e5afbe46

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/json_arco_strada_search.php?take=20&skip=0&page=1&pageSize=20&sort%5B0%5D%5Bfield%5D=str_descr&sort%5B0%5D%5Bdir%5D=desc HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Content-Length: 3850
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/wg_vasto_wip/json_stato_segnalazione.php?take=10&skip=0&page=1&pageSize=10

85.37.40.164

200 OK

436 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/json_stato_segnalazione.php?take=10&skip=0&page=1&pageSize=10
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (435)
Size
436 B (436 bytes)
Hash
c7523ceb9a2787a65d89de6259dbb8e6
6bd4c7d1cbbfaad5305549c25cc041c190b130fb
b9ef5fbe116e1fa0e45b6e7095c74a0d31ee31a1461ce3f6484a342e3202290e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/json_stato_segnalazione.php?take=10&skip=0&page=1&pageSize=10 HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Length: 436
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/wg_vasto_wip/json_comuni.php?take=10&skip=0&page=1&pageSize=10

85.37.40.164

200 OK

26 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/json_comuni.php?take=10&skip=0&page=1&pageSize=10
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text
Size
26 B (26 bytes)
Hash
6019d40ba2c25b0fdbbc0d872792eb6e
440b5afe218eb57a1a4d494c987b287814a658e6
590851ce7b8fed825c6c8e17a340b26e2a7774f05d5c413f3e3af49fb9d84ed3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/json_comuni.php?take=10&skip=0&page=1&pageSize=10 HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Length: 26
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/wg_vasto_wip/json_civici_search.php?take=20&skip=0&page=1&pageSize=20&sort%5B0%5D%5Bfield%5D=civ_codice&sort%5B0%5D%5Bdir%5D=desc

85.37.40.164

200 OK

16 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/json_civici_search.php?take=20&skip=0&page=1&pageSize=20&sort%5B0%5D%5Bfield%5D=civ_codice&sort%5B0%5D%5Bdir%5D=desc
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (15973), with no line terminators
Size
16 kB (15973 bytes)
Hash
40e2d2d901c7448554425f0a3c7a557b
4d1f4e48abfe56b5754275d31fd0fbc6a6681814
923374c860cec020be4e9666a5189396039f83c11a4b5d37e24947ce5b834947

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/json_civici_search.php?take=20&skip=0&page=1&pageSize=20&sort%5B0%5D%5Bfield%5D=civ_codice&sort%5B0%5D%5Bdir%5D=desc HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json

85.37.40.164/wg_vasto_wip/json_categoria_chiamante.php

85.37.40.164

200 OK

516 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/json_categoria_chiamante.php
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (515)
Size
516 B (516 bytes)
Hash
ecb9390386765c877656f8201c0d9a00
136fe8b7d651dbd9c62baf590b9c6369c951ea77
ca446a5680212432ff6ca8c3a1ab5e5a157782fbc38197a3aeebcb8e41eae277

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/json_categoria_chiamante.php HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Content-Length: 516
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/wg_vasto_wip/ambito.php?skip=0&page=1

85.37.40.164

200 OK

993 B

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/ambito.php?skip=0&page=1
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (993), with no line terminators
Size
993 B (993 bytes)
Hash
2fe1bf6aa5c27582252414ad435b03d4
bfdeb3108c2ec76d57ee164374c2b097cfd5eb27
87f6a4b1353c469051eb319ef2a197efb54c40389aea1290f880da1bf26447d2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/ambito.php?skip=0&page=1 HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Access-Control-Allow-Origin: *
Content-Length: 993
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/wg_vasto_wip/json_cerca_segnalazioni.php?com_id=E372

85.37.40.164

200 OK

1.9 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/json_cerca_segnalazioni.php?com_id=E372
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
JSON data\012- , ASCII text, with very long lines (1904), with no line terminators
Size
1.9 kB (1904 bytes)
Hash
6d767ddf490b564d58b3f193ded6ca44
9caab0d5c90c2b0aa399cbb269403defa0b4cdde
31ece29788cc5e174d899db7a67be4a7e926b2a20cabc71ff1ec84ff184ec45c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/json_cerca_segnalazioni.php?com_id=E372 HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Length: 1904
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/json

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?

85.37.40.164

200 OK

1.1 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1060 bytes)
Hash
a6f46b7bcdd561235f638f35fca464f6
c9c4471d471cf704be68cb6939dc36ee86a76290
7d4d09c43d275e5ded92e78e4acf72fea42b4c2dd26bb9250d7ecc97c968bc5e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/geomoose.php? HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:48 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 1060
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/commonKendo.css

85.37.40.164

200 OK

2.2 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/commonKendo.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
2.2 kB (2220 bytes)
Hash
8c8834ed99691b52c5ec2694a7020b75
876319bb5dec836c76e1fd0283f42e5680ee1605
3beb073fb9f49bfc873beac6095b6b276a419b7fcd31973627f48993f7597ec1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/css/commonKendo.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "1656-55f93bb082dd7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 2220
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/toolsKendo.css

85.37.40.164

200 OK

1.1 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/toolsKendo.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
1.1 kB (1105 bytes)
Hash
b54269545fbc6013a4e3ef5c89a491f7
b0f9a1925cd2f4c96b89a49718d7852e1d1d4b29
c4e308a9b3b2af32195a47c984e4b6d79adcb52a348b142d0dd814c5316336e7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/css/toolsKendo.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "868-55f93bb082dd7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 1105
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/catalogKendo.css

85.37.40.164

200 OK

1.0 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/catalogKendo.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
1.0 kB (1024 bytes)
Hash
a151c519240bfe110faf043483d21a98
cc28923228fc23c1444a72a1a6438d8441b3b069
257a33e1ba82c63dd938259a19d6dff344e1cf7825bced5af810687c903c1aae

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/css/catalogKendo.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "7f8-55f93bb081e37-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 1024
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/spriteKendo.css

85.37.40.164

200 OK

1.7 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/spriteKendo.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
1.7 kB (1650 bytes)
Hash
4d2bea0a05e682ee84862457ce6bf1e2
40eb0e1f4115a1fab7d9cfb50c09227eb139c323
91d6c46446c8138feff3d639d1d3a40cc87900fe3eae033677da2a0ccd9b4c93

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/css/spriteKendo.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "1fa8-55f93bb082dd7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 1650
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/user_catalogKendo.css

85.37.40.164

200 OK

139 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/user_catalogKendo.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
139 B (139 bytes)
Hash
0daed9eca1f3b19873e8a6837948cff8
b305ae433ce1f8ead0dd5fdaa0163b9997d4afc8
a3330ad3f553840834f3e07a76b0cb60097e74464bff706ed5ad3202af2b43ab

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/css/user_catalogKendo.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "aa-55f93bb081e37-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 139
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/user_toolsKendo.css

85.37.40.164

200 OK

681 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/css/user_toolsKendo.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
681 B (681 bytes)
Hash
30090ac17e3bffe36c1fd80015a7ddde
5a3ad6458576f1f68a80fff6401eec5a2773ec98
b9953296dfe4e6a650f0c53d91f84790610e6a254579135d096a271769740181

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/css/user_toolsKendo.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "b83-55f93bb082dd7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 681
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

maps.googleapis.com/maps/api/js?key=AIzaSyABZP-Qgx3nNBZDPPCKiVj4hdM386Xd1cY&sensor=false&v=3.6

142.250.74.138

200 OK

54 kB

URL HTTP/1.1
maps.googleapis.com/maps/api/js?key=AIzaSyABZP-Qgx3nNBZDPPCKiVj4hdM386Xd1cY&sensor=false&v=3.6
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2433)
Size
54 kB (53512 bytes)
Hash
c9eb4149f70e63ffa167150d376c5026
aeeb6265ccb8bd5163f783db88decb4a29383194
df5e74b3639af693fe500719b1407090ffd4aaee091fa8741f4b41f8b47e85d5

HTTP Headers

GET /maps/api/js?key=AIzaSyABZP-Qgx3nNBZDPPCKiVj4hdM386Xd1cY&sensor=false&v=3.6 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Date: Tue, 20 Dec 2022 11:10:42 GMT
Expires: Tue, 20 Dec 2022 11:40:42 GMT
Cache-Control: public, max-age=1800
Vary: Accept-Language
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
Content-Encoding: gzip
Server: mafe
Content-Length: 53512
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Server-Timing: gfet4t7; dur=23

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG26915.js

85.37.40.164

200 OK

126 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG26915.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
126 B (126 bytes)
Hash
14a08343d90739850e0c2e7516e97d3b
e63e85786c3b9f533e9f18a6ed1fa3e3a213bf9a
61dc84c0e46fa1fc313640df96728f3e53ab636d56ae1745d9af6fb0123bc947

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/projections/EPSG26915.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "6f-55f93bb001f57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 126
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/tundraKendo.css

85.37.40.164

200 OK

13 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/tundraKendo.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (1132)
Size
13 kB (12898 bytes)
Hash
5965ffe856b2f1d0af2043ae02b9b741
eb36bb29784a81cd0c54f0236765914a0b2cc535
14797ba1e3b7685d4857548851239f230285faae68b0b32c45010d2a43fc2892

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/tundraKendo.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "130a6-55f93bb086c57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 12898
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/skins/kendo/kendo.css

85.37.40.164

200 OK

1.6 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/skins/kendo/kendo.css
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
1.6 kB (1585 bytes)
Hash
511cd2aace8215dc8c50901c07e2c4c9
c669e92a03685f571b533ea3f0bd91b3ecc383f3
ed017e7960b013c3ae32664a0a2fcbbc1882f66c6502c96ac08995d4b205f07d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/skins/kendo/kendo.css HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "da5-55f93bb013897-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 1585
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/proj4js-compressed.js

85.37.40.164

200 OK

21 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/proj4js-compressed.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (5544)
Size
21 kB (20678 bytes)
Hash
69a229677101d3feaf92e7873007e4b5
c5649b1247b1c27cf2b4aa5955d64a365b971580
7f83c7175c58365ec689bc0e606b5404c1404d6f71474ae9191251ab0469ee2d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/proj4js-compressed.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "13309-55f93bb08aad7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 20678
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3857.js

85.37.40.164

200 OK

140 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3857.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
140 B (140 bytes)
Hash
ecfd7398e8ae5b4af121c811124950c3
53e91503a24a1b4bdfbe9bfe72e423871ac83dff
f17d2c9b05b5362a5ec897fc1afc697476abad04754d700335c03e86ad53286e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3857.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "91-55f93bb001f57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 140
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG4236.js

85.37.40.164

200 OK

109 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG4236.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with no line terminators
Size
109 B (109 bytes)
Hash
3d2109e3f400478e698a1e62dc53ec14
941859025014efa7126194d23c658e126e8bb2aa
53b08032798d88d9426c1fe00571aa56f33a1587eb0cd70597bf0e584a85fe9e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/projections/EPSG4236.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "61-55f93bb001f57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 109
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG32632.js

85.37.40.164

200 OK

103 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG32632.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with no line terminators
Size
103 B (103 bytes)
Hash
e542152da1ec7a49a19956cd6b63e9c8
2e1def2a8267dd39ef62ec6896be0dbcb660b468
02b76c04a5a0412541738d4d6fa88810b9540b2a44af94e4072de7f025f052d7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/projections/EPSG32632.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "5e-55f93bb001f57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 103
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23032.js

85.37.40.164

200 OK

122 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23032.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with no line terminators
Size
122 B (122 bytes)
Hash
dfdd10b2d86b7b559ea2ab16c55b7294
065f93ab94e3d3c698c45b35615e06b29585d7f4
dd972d06fbe1794b94747e41211eb1bda2bf151a4cb738c70848d52cae9044e2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23032.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "6f-55f93bb001f57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 122
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23033.js

85.37.40.164

200 OK

96 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23033.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with no line terminators
Size
96 B (96 bytes)
Hash
57986ea7fda0923434ed677eb6ed5c80
05febe5239186d654cdf33266c513bf5bf108830
98ce7153cdad4c6a7456a70e6a5580eb73622b2c19b58300f053647c9710254b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/projections/EPSG23033.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "50-55f93bb001f57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 96
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3045.js

85.37.40.164

200 OK

96 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3045.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with no line terminators
Size
96 B (96 bytes)
Hash
fc8b0adfc2463dbe171c1bcecf70e109
941eb7dd1e2aab2426af5ce740fc8802bf470085
663ead41360e1b1c865f495468472b9cf02222494a8789bb44ddb7623af58516

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3045.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "50-55f93bb001f57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 96
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3004.js

85.37.40.164

200 OK

166 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3004.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with no line terminators
Size
166 B (166 bytes)
Hash
4b38a08ef35186b59be154ace1526666
169a1aee9c182c6bac2518c70584112008a4f91a
8f7ce051639c6b45299c337e389af8469b81ac1b5565e6f3c5f5756423d391ad

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/projections/EPSG3004.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "ae-55f93bb001f57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 166
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2562
Expires: Tue, 20 Dec 2022 11:53:24 GMT
Date: Tue, 20 Dec 2022 11:10:42 GMT
Connection: keep-alive

dev.virtualearth.net/mapcontrol/mapcontrol.ashx?v=6.1

52.156.193.145

404 This version of the Bing Maps control is no longer valid. Please see https://social.technet.microsoft.com/wiki/contents/articles/34568.bing-maps-v6-3-to-v8-migration-guide.aspx for more info.

1.2 kB

URL HTTP/1.1
dev.virtualearth.net/mapcontrol/mapcontrol.ashx?v=6.1
IP
52.156.193.145:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1245 bytes)
Hash
5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f

HTTP Headers

GET /mapcontrol/mapcontrol.ashx?v=6.1 HTTP/1.1
Host: dev.virtualearth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/

HTTP/1.1 404 This version of the Bing Maps control is no longer valid.  Please see https://social.technet.microsoft.com/wiki/contents/articles/34568.bing-maps-v6-3-to-v8-migration-guide.aspx for more info.
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Tue, 20 Dec 2022 11:10:41 GMT
Content-Length: 1245

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2562
Expires: Tue, 20 Dec 2022 11:53:24 GMT
Date: Tue, 20 Dec 2022 11:10:42 GMT
Connection: keep-alive

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/geomoose.js

85.37.40.164

200 OK

7.7 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/geomoose.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
7.7 kB (7691 bytes)
Hash
f4bc8ef660b2b47d6ac8d41700db68dd
9a066fcfaa1f9dd4bfc1fdbad1b8659b690e888b
cd413be218c02015914c7c5323fe11046eae9337edbc39edb9362b67c401ccf5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/geomoose/geomoose.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "6258-55f93bb098597-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 7691
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5185 bytes)
Hash
bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KyEMrUTeuVTPJ3EIkrH1DLYqa4bHK7fe6dApTAFP4XY0G4airnflGA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:37:07 GMT
age: 48815
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32317940-ae19-4605-9c38-d5a5b6285d7c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8200 bytes)
Hash
f99b0b02f5f097b2c6ab2f1dc5a398b0
c7e06d6c394bb9b0ad768017af7479e909628263
36d003689047f2b21f29eedffd989acb3906b666ea0773ec889ac67b33bd11b4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32317940-ae19-4605-9c38-d5a5b6285d7c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8200
x-amzn-requestid: 59110600-74a3-4fec-9c5b-190a36d9af4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr2F_mIAMF0AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-7953e2774dafb8e67e9f64d8;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 8nf3qASeJrA0qII3rtWQcXtLM7IZBrK03mvKM9bjvMkHPxnT_jfXTQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:46:22 GMT
age: 48260
etag: "c7e06d6c394bb9b0ad768017af7479e909628263"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/main.js

85.37.40.164

200 OK

2.1 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/main.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
2.1 kB (2064 bytes)
Hash
b3ba333acbf9394bc3f132633cd4fdf2
73d67beb432cc63fd8a617a7606e1504bc14d60e
b43f24bbceeb9591518388e3b4596e35c3bd08ac584f4dbfc8233d26144584ec

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/geomoose/main.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "1273-55f93bb091837-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 2064
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2f35059-99cc-477d-9e68-c3a035d125df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9265 bytes)
Hash
bba7c67bdc57d1fe2870ebd4ee9fd5c9
127850560e258665ca8074757c1b66f680d2bd78
9edd765e65644edfe4221352225cb89ebe98fa451d9528b8b614d594a20e100d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2f35059-99cc-477d-9e68-c3a035d125df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9265
x-amzn-requestid: d84f905b-7faf-409a-b188-4b8cf06b9e4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da4KJGx9oAMFrQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a1070d-43152d9651bcb4a15ffe1cfa;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:51:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: uGYoskcC2ev3JFxsBZGglmBiCCWmjo5Xg2zqe5925zArdzRk5QtuTQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 c5c7edc18be1805f007e0576da02e554.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:24:18 GMT
age: 35184
etag: "127850560e258665ca8074757c1b66f680d2bd78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7876 bytes)
Hash
b5da803c751be159f0f5b3c2f65bd2b6
39139480cfc2ed0781b51745bfaabed4490aa0db
920ee464843101c638327866fbfcc9c7f00fc19b7cdbc8948fbe53d2b6fb4ed3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7876
x-amzn-requestid: 668c95f2-a1b1-4abd-9f4e-23d05c4998a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da270EFlIAMFR5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10518-56d6db4f4cff1b4e08b87046;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:43:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Hy6G0TSJc89Fyo8X3mLQ4nY4Y-2Xva9gqcLLAZH_T61Kk-6cMmhqQQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:08:39 GMT
age: 36123
etag: "39139480cfc2ed0781b51745bfaabed4490aa0db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8450 bytes)
Hash
c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: EFtrPmVeBdwlINxF0wQq0671EksYsi6nsyFd5E4SCSH4_bQyGaNQHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:48:36 GMT
age: 48126
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/config.js

85.37.40.164

200 OK

1.6 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose/config.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text
Size
1.6 kB (1585 bytes)
Hash
2ce386375f4b8d0b20c697126eb6d6c8
ea3db1fdeba43db392758d5824bbfd8136a64c0d
35fcf046f4f89a0fe7bc889f7928fc2c2d6ee641fa986b4b83a0b338ae2e1271

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/geomoose/config.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "e72-55f93bb098597-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 1585
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82b028aa-d0e3-4082-a385-1385bc5c6e06.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9216 bytes)
Hash
045f016fb66e6e0d1da1fb742d9b19a7
8f98bf2cedfccfce71464a733e2fd37482fd71c2
593cf38d1c2c315ff23fcda60e41141caa0266874f36a0c517554ca01ea51f12

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82b028aa-d0e3-4082-a385-1385bc5c6e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9216
x-amzn-requestid: 460a95bf-5724-4bea-b6c1-f6ce263da5e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabq8FXboAMFwCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d979-70340469247cdcf952a98c3e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:36:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 7yYJKslDn22-iL_OH_VIiZdrTMJ-9c-DyORpGZ4d2MZLDoX5PpekRw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:48:32 GMT
age: 48130
etag: "8f98bf2cedfccfce71464a733e2fd37482fd71c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/extensions/MeasureWithBearing.js

85.37.40.164

200 OK

4.6 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/extensions/MeasureWithBearing.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ISO-8859 text
Size
4.6 kB (4639 bytes)
Hash
4eeb64a6d8fa9068534005d04609cf6e
2369c6234c84e3cd94d20b64973a6ecc0c767a91
7f2369d27e549084025aef6e27239275e98f3dfc90f4913bc7d02170d2930c72

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/extensions/MeasureWithBearing.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "33c8-55f93bb016777-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 4639
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dojo/dojo.js

85.37.40.164

200 OK

129 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dojo/dojo.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (65173)
Size
129 kB (128899 bytes)
Hash
e070a020bb7fa2295bdc2e4cbcfe19e0
a0f128a416e8e31856eb9d830c6ce95f10edf183
8ce885670ed425afa883ddf7be0f6dadb655e35def05be676375fdd410f12652

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/dojo/dojo.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "706c2-55f93bb08e957-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

85.37.40.164/wg_vasto_wip/icons/stati/stato_segnalazione5.gif

85.37.40.164

200 OK

1.6 kB

URL HTTP/1.1
85.37.40.164/wg_vasto_wip/icons/stati/stato_segnalazione5.gif
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
GIF image data, version 89a, 60 x 20\012- data
Size
1.6 kB (1611 bytes)
Hash
729ff17652713c06ec7434d65e8345d0
43c3ca07262468892a528bc72d8fccb1b2f947d9
22ba8c53e2c50fdca2739900b4b951266b429bca07a1cd174437c9879f674bbe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wg_vasto_wip/icons/stati/stato_segnalazione5.gif HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/wg_vasto_wip/index.php
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Wed, 06 Jun 2018 07:14:20 GMT
ETag: "64b-56df3ea6bba74"
Accept-Ranges: bytes
Content-Length: 1611
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/gif

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/OpenLayers.js

85.37.40.164

200 OK

222 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/OpenLayers.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (4696), with CRLF line terminators
Size
222 kB (222065 bytes)
Hash
bc1d4b9220a5e2c0465f5863108fc995
a58e98e402a8d3c83264e0550ed5f3dd634bbc61
cacde77bd37459c84f00f717438897fa2e996f9aefea2afe92b920069cb1c5a1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/OpenLayers.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Thu, 13 Dec 2018 11:12:15 GMT
ETag: "f0177-57ce5631181c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dojo/nls/dojo_en-us.js

85.37.40.164

200 OK

1.6 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dojo/nls/dojo_en-us.js
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
ASCII text, with very long lines (4684)
Size
1.6 kB (1554 bytes)
Hash
c6e9c54c10039b8da2946810bcf668a7
602478851c8e5ecb6ad1ca4baba456e7bad480f5
2e0f77956d2e9a43630acadaaf54973e4dfcd0eede6d71541e0766061bc30c32

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/dojo/nls/dojo_en-us.js HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "124d-55f93bb08ca17-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Length: 1554
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: application/javascript

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.138

403 Forbidden

132 B

URL HTTP/1.1
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
132 B (132 bytes)
Hash
3c954b0fdf7d56714cf712d02e0bf056
5c5acb630475cc6198b7191ba1adf49d72dd82f9
effda9280db937a1b47807f746c2797cdd1d44ffc3af3e1eee40306d7a9fe632

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://85.37.40.164
Connection: keep-alive
Referer: http://85.37.40.164/

HTTP/1.1 403 Forbidden
Vary: Origin, X-Origin, Referer
Content-Type: application/json; charset=UTF-8
Content-Encoding: gzip
Date: Tue, 20 Dec 2022 11:10:43 GMT
Server: scaffolding on HTTPServer2
Cache-Control: private
Content-Length: 132
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: http://85.37.40.164
Access-Control-Expose-Headers: vary,vary,vary,content-encoding,date,server,content-length

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dojo/resources/blank.gif

85.37.40.164

200 OK

43 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dojo/resources/blank.gif
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/dojo/resources/blank.gif HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "2b-55f93bb08e957"
Accept-Ranges: bytes
Content-Length: 43
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/gif

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/skins/kendo/images/menubar.png

85.37.40.164

200 OK

218 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/skins/kendo/images/menubar.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 1 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
218 B (218 bytes)
Hash
879ca17aa9032addf0bc0a047fa8777f
a7054456ceb46c42e38fbf3445fc549478d1454b
2db4a1a2ac01f08c512dc0eb7fb96f15b4992d8e3810701b9ea322d005529a8b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/skins/kendo/images/menubar.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/skins/kendo/kendo.css
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:25 GMT
ETag: "da-55f93bb013897"
Accept-Ranges: bytes
Content-Length: 218
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/spriteRoundedIconsSmall.png

85.37.40.164

200 OK

2.2 kB

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/spriteRoundedIconsSmall.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 75 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2195 bytes)
Hash
34785f8aee61264ada759ee494e659a2
7ce55637ec5a5ea4d46852080ffdc448e3ce60e5
4adbf354a594f36489f804419c721d0ca859f569a078b7abb430316bf592bf12

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/spriteRoundedIconsSmall.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/tundraKendo.css
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "893-55f93bb088b97"
Accept-Ranges: bytes
Content-Length: 2195
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/tabEnabled.png

85.37.40.164

200 OK

142 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/tabEnabled.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 1 x 40, 8-bit/color RGB, non-interlaced\012- data
Size
142 B (142 bytes)
Hash
2a08e236be6b2a5ff0166f01947bd6d9
719a2ea80e24730e889e7556fb5407c9f1ff2591
85e06e6d1f3a74f5b69b00065d2a64f351c9f575ae11c04c97e54524182d495d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/tabEnabled.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/tundraKendo.css
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "8e-55f93bb087bf7"
Accept-Ranges: bytes
Content-Length: 142
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/highlight.png

85.37.40.164

200 OK

330 B

URL HTTP/1.1
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/highlight.png
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type
PNG image data, 20 x 540, 8-bit/color RGBA, non-interlaced\012- data
Size
330 B (330 bytes)
Hash
e5390d41a9cf95ce8389f78112e7e4e4
598ddbc4184125d864ffa08c696101e4e1c971fc
ded620a730e088c790bfc3d3643dd5b05929b993f95fe65e30b4f5b531cbaeb3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/images/highlight.png HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/build/dijit/themes/tundra/tundraKendo.css
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
Last-Modified: Tue, 05 Dec 2017 08:36:26 GMT
ETag: "14a-55f93bb086c57"
Accept-Ranges: bytes
Content-Length: 330
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/php/getmapbook.php

85.37.40.164

500 Internal Server Error

0 B

URL HTTP/1.0
85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/php/getmapbook.php
IP
85.37.40.164:0
ASN
#3269 Telecom Italia

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /geomoose/vasto/geomoose_wip/htdocs/php/getmapbook.php HTTP/1.1
Host: 85.37.40.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://85.37.40.164/geomoose/vasto/geomoose_wip/htdocs/geomoose.php?
Cookie: PHPSESSID=kbt5g3kf6pf7dbv3inbbqkcnf3

HTTP/1.0 500 Internal Server Error
Date: Tue, 20 Dec 2022 11:17:49 GMT
Server: Apache
X-Powered-By: PHP/5.5.9-1ubuntu4.22
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Length: 0
Connection: close
Content-Type: text/html

maps.googleapis.com/maps-api-v3/api/js/51/3/common.js

142.250.74.138

200 OK

70 kB

URL HTTP/1.1
maps.googleapis.com/maps-api-v3/api/js/51/3/common.js
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (581)
Size
70 kB (69755 bytes)
Hash
500613903511cef46ed7c6d0087551e4
7ade32548b69b8d4db8c99814a5e0b8d72401776
2e9ce4d7f86f70c13f8ad510bcf6f5a567bdaf0cd54dd284deed0813629fc228

HTTP Headers

GET /maps-api-v3/api/js/51/3/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="maps-api-js"
Report-To: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
Content-Length: 69755
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 14 Dec 2022 20:23:12 GMT
Expires: Thu, 14 Dec 2023 20:23:12 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 05 Dec 2022 18:55:30 GMT
Content-Type: text/javascript
Age: 485255

maps.googleapis.com/maps-api-v3/api/js/51/3/util.js

142.250.74.138

200 OK

63 kB

URL HTTP/1.1
maps.googleapis.com/maps-api-v3/api/js/51/3/util.js
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (590)
Size
63 kB (62746 bytes)
Hash
4b7e722b8ffa9e4075c1d43d5505b750
aef076332252ba392cd8c28a9f13e60c833f9502
6778e93a5bb1899b8bf146ff913b9583cb5748d33edf192451544723ddf99b58

HTTP Headers

GET /maps-api-v3/api/js/51/3/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://85.37.40.164/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="maps-api-js"
Report-To: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
Content-Length: 62746
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 14 Dec 2022 20:23:12 GMT
Expires: Thu, 14 Dec 2023 20:23:12 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 05 Dec 2022 18:55:30 GMT
Content-Type: text/javascript
Age: 485255

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations