Report - www.nanosoftconsulting.com/

Report Overview

Submitted URL
www.nanosoftconsulting.com/
IP
198.54.116.47
ASN
#22612 NAMECHEAP-NET
Submitted
2022-11-09 19:30:19
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
114

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-10T14:35:32Z	340 B	963 B	104.18.32.68
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	1.7 kB	1.5 kB	142.250.74.10
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
www.formilla.com	94844	2017-01-30T08:00:28Z	2023-03-09T10:17:29Z	3.5 kB	100 kB	172.67.68.113
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.4 kB	3.0 kB	93.184.220.29
www.nanosoftconsulting.com	unknown			814 B	1.7 kB	198.54.116.47
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	35.161.231.36
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	3.1 kB	6.3 kB	142.250.74.35
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	53 kB	34.120.237.76
nanosoftconsulting.com	unknown			43 kB	2.1 MB	198.54.116.47
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.8 kB	5.0 kB	54.230.245.110
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.7 kB	4.4 kB	23.36.77.32
engitech.s3.amazonaws.com	516528	2020-09-15T11:10:52Z	2023-03-08T18:37:30Z	6.6 kB	501 kB	52.217.105.36
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	4.6 kB	176 kB	216.58.207.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-09	medium	www.nanosoftconsulting.com/	Phishing
2022-11-09	medium	www.nanosoftconsulting.com/	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/css/classic-themes.min.css?ver=1	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.0	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/elementor/css/post-6.css?ver=1667147301	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/elementor/css/global.css?ver=1667147302	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1667298805	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/css/bootstrap.css?ver=4.0	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/css/slick.css?ver=6.1	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/css/slick-theme.css?ver=6.1	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/css/magnific-popup.css?ver=6.1	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2854.css?ver=1667147302	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2856.css?ver=1667147302	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/elementor/css/post-1334.css?ver=1667217697	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/fonts/Flaticon.woff2	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/themes/engitech/fonts/fa-solid-900.woff2	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/2022/10/obalonye-pcccc-300x300.jpeg	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/2022/10/img-9-nano-home-page-7.webp	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/progress.ca55d33bb06cee4e6f02.bundle.min.js	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/2022/10/what-is-cloud-computing.jpeg	Phishing
2022-11-09	medium	nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2849.css?ver=1667147302	Phishing
2022-11-09	medium	nanosoftconsulting.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (47)

	URL	Size	First Seen	Last Seen
	nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664	2.5 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:58 Last Seen2024-05-10 23:57:06 Times Seen6234 Hash 496baa8dab0a9861cd85d4e329f5aa77 5a036d58aecc5c5c471237d6dc719333cfe225e6 5df2942db2352e49e00bcf3393b875a71d0acee986e48fbdcc5879846f5c3689 Loading...

	www.formilla.com/remoteAssets/js/widgets/v4/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-05-10
Pretty URL www.formilla.com/remoteAssets/js/widgets/v4/jquery-3.6.0.min.js IP 172.67.68.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:32 Last Seen2024-05-10 17:56:37 Times Seen5191 Hash 0732e3eabbf8aa7ce7f69eedbd07dfdd 4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b Loading...

	www.formilla.com/remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js	42 kB	2023-03-08	2024-04-23
Pretty URL www.formilla.com/remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js IP 172.67.68.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:24:24 Last Seen2024-04-23 21:16:34 Times Seen59 Hash e08100dd35e1261850f00dbd08c8a482 30fd9e2d0bbced889b6bef43381c9253369522c0 d0cd79d6a96a2d56c4536ea0a912061271c036e9dd597aebc13ffc847687348a Loading...

	www.formilla.com/remoteAssets/js/widgets/v4/autosize.min.js	3.7 kB	2023-03-08	2024-04-23
Pretty URL www.formilla.com/remoteAssets/js/widgets/v4/autosize.min.js IP 172.67.68.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:24:24 Last Seen2024-04-23 21:16:31 Times Seen60 Hash 479fb204267bc559f4c4086e7f6d8c71 362bf89e8a9825b5fadd93cdb9d2c3ce2f51409f 5b9d39fcab5a04a7be528e2156d2cd7ae64ecce9c541c7133fbc11a0b6ff7d94 Loading...

	nanosoftconsulting.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-05-09
Pretty URL nanosoftconsulting.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-09 23:11:38 Times Seen9848 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910	5.0 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 512c448deb4f48640f1bbd1d62495f95 2adf1535dfc020e672931fc6d9b05449eb6420b7 d8766fd3d7bd496885f0f8820c46ef394c94e7e1375711ca09afe12cf860e508 Loading...

	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0	5.0 kB	2023-03-08	2024-04-27
Pretty URL nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:20 Last Seen2024-04-27 01:43:18 Times Seen356 Hash f24a41ebe5fbe2440caff2972b7c3341 a58d0685eb8defda0252ce1620c5fef93d297ea0 dca573f6831bcc39828ef0c435568a4ff0980edefdfbcf52e15ff8566befb529 Loading...

	nanosoftconsulting.com/	151 B	2023-03-11	2023-03-14
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-14 04:36:22 Times Seen1 Hash 1bf54ec0e5ea3b66fd669d4c7b4875a0 5f9f5c015b376ad3b85e89f9b1129f9e9080bac2 35b2051144886cb2da1d802988080eeffae8be3240e7471396056555116bf7a6 Loading...

	nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7	5.6 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 14bb78256a2a00ac9f5a378b7b51ec33 9f1e492d376ea0e3b374d231feb192b403179198 c053715bfee26abc5b0fec553d47bfdcd857a019296d7695f17aefa13ab6d130 Loading...

	nanosoftconsulting.com/	99 B	2023-03-07	2024-04-19
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:57:01 Last Seen2024-04-19 11:35:06 Times Seen56 Hash 30361d3e99dfa9191d19b6eb227915f7 8e4f341e5e3134b180696f86ef299a450c62aa80 3b556af732387435622bb6081f43cf92dbc68b38d904f1513e1f247bea60c164 Loading...

	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js	29 kB	2023-03-09	2024-04-19
Pretty URL nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:44:56 Last Seen2024-04-19 14:54:08 Times Seen28 Hash 8008fc5d0cc6a2ceade2aad9b07dfb85 984fdb37e978b8906241d56d59fa6d18cfef6637 136c2293c67e64de1cbeab42366271ac713ae89d994d2beacc6a1cd21ba4510b Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910	7.5 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:18 Times Seen1 Hash 940f7ecbdb7b6078c171e1d095cc582e 0199efe384ddb32bc5c5ea713372aa9c6e9a4f12 b6145d41f6aa317b5483272854eb47d70649bc9a53b0daca0ce7bb85f6545673 Loading...

	nanosoftconsulting.com/	1.7 kB	2023-03-11	2023-03-14
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-14 04:36:22 Times Seen1 Hash b03be94851dd63a1b37169cf7ad132ae 62daa84cf04391a5edbb27bb6706e473908879f3 d857df8bbc18ebf14aa4e9b5caca8d586168ebcfe43bfc47eaea2df39995f62e Loading...

	nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1	19 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 20:32:53 Times Seen38257 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	nanosoftconsulting.com/	2.2 kB	2023-03-11	2023-03-14
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-14 04:36:22 Times Seen1 Hash 298905c9e4df949d3f8dd3d6b50ba226 f1e2560cf7559ebc38bf1dd966295c4d336c0e60 3a76903a375446e8a4fbf1517808d9bd403c11f62a3fe598693abca05c773b5d Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910	12 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 6cc5635a5e7b6dd98448534c2371dc8c 5d1469014be8da796c76d54806bc6cb8b3a7c991 c5f6fd7fc53b5f5b65d1c8d8e50fa9a1233397fd4c41ecd53778a30cd2f27842 Loading...

	nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 20:32:53 Times Seen15578 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7	8.4 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 2f9f2f6521e48944b1b406396e062e52 92760aef823f67c5d5368f67e2028f0268d13602 b424f8af3329a9997df6c25c907f1ae11ebfc2fbed1936cbef78f81b4dc334fe Loading...

	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0	33 kB	2023-03-08	2024-04-27
Pretty URL nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:20 Last Seen2024-04-27 01:43:17 Times Seen368 Hash e7034cc4a25a7e6912a857bdcfe45899 5b30046f597c18765062572a00e7221cc490b5f8 ab3426e035a4ecbad44e1352a8f7433d0dba2f1a5b72382e2af9eb00a17a798c Loading...

	nanosoftconsulting.com/	2.2 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 09:53:36 Times Seen1 Hash 2a0fc74a46bcfc50b8d5f36c79dc65d7 aca14047f50edd4dbedf40b91ab671bd06b93027 2512deb9b4da7ed7b2887c60db530aa4ac142cf8517fc4b15bd8b7c7fae9fec0 Loading...

	nanosoftconsulting.com/	740 B	2023-03-11	2023-03-14
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-14 04:36:22 Times Seen1 Hash 218f0ab4ed6d3c27268785b74c1ea079 f3341c6b9d202b878e4d05839a1f1b22e42276ba b5c8df8c6a00adf1d3f20f111e2bba6a8315ead41b2709f28770bd7e9ea59f11 Loading...

	nanosoftconsulting.com/	2.2 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 12:04:11 Times Seen1 Hash 8f4c00d1a0bab128ed698da0cf2baccf fb2c4ef71fa18db5d97008c37509a94cde5977f1 e88958ce69b330b9911c8b4bd6cb4a7386bb21142269f4e7f4e442a0092c4669 Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5	5.1 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash e048b4f27ddbf4ff50c1fbd6d2453766 33d59331002fbd96fbb494c40ed1de5ee12aa614 58c23a7da4ee309b23f34b78e7d7f81fc08fc4f66424ba738616b3ddbec6344e Loading...

	nanosoftconsulting.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-05-10 18:21:16 Times Seen31136 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910	25 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash b243bafd2c4b1406e7a56fdd4f180914 d698054ffc01c95e8b3efdbed14d4d86dd95b1f9 9cba1c34303914d46e1626d0cfa9ac46c327a71ca74fe712577a0e809682bbed Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829	39 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 1a8614829a573a911682afc862239179 5ce5ac0b8d453a94fc0eab13dc9b9394bc98e92e 5bd655be311b1a6bd96b533067ef47a93e067cfb832a3972296862c975440c7f Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/slick.min.js?ver=20180910	47 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/slick.min.js?ver=20180910 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 7377cd16cff7c5b773fad733747d22bb ac3b0df007d7f3576d6dfc77e80d0717993b63e9 0c54b72f0b42e4d3dc89ccba1309b0be9bc70adee7585139b55faab84a6dce64 Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829	7.4 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 8f098b378482a5b0f9cf313217f593b0 9e3101e3c50f7acba3e709b503961950bce054ea c9e6846bc77ad9ce1fbbab3d235e6be076003767cd257fb9d987326081be70da Loading...

	nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13	31 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 32e17a10f2abf7442cd6af15005cba6b ccb912610fcd4d204c5fefe9deaab04401ef6e25 c3cc2e341bc416f2b9bb88a5edc0fc30acee4598d0a00d151b0513b329831b1e Loading...

	nanosoftconsulting.com/	5.3 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 8dbab1b969555f6acab9c218aee61979 08561972ec4d95b6e5b45e46e9cfa999571d9b54 451e8c695e4a110db2fe2e9e1d9fcff00684cc22c398bfe3dd06ae4d02113c11 Loading...

	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 23:59:17 Times Seen53795 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	nanosoftconsulting.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7	48 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:18 Times Seen1 Hash 472f96c4e8493af99e5966ec923a4d56 66ea00fa1fe8c944540e7b154adb9213676e4095 c2b1d3fa86c5213f2e5052d24d6290c749c257dc73a22c700193dad25dc3fbab Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910	4.5 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:18 Times Seen1 Hash 66f9cb7a1cdf8467f186b12369d2ee8d 876c06fac2efbb5ff2d7474bd2f1f6b9358ef16d 926a51c43c6f2bac69e47dec3456af8fd329691bfbb458363367349715e5e4ab Loading...

	nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5	4.9 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 23:57:06 Times Seen24472 Hash b33ab4d5dcf02436276a717e9d1b7c18 f47b9a9c41b3b11c9dffabca22945727c3ec6566 9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134 Loading...

	nanosoftconsulting.com/	68 B	2023-03-07	2024-05-11
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-11 00:17:04 Times Seen22846 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	www.formilla.com/scripts/feedback.js	300 kB	2023-03-10	2023-04-05
Pretty URL www.formilla.com/scripts/feedback.js IP 172.67.68.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:19:55 Last Seen2023-04-05 15:35:34 Times Seen6 Hash c23eceee72172799db33ef1ae540a215 eaf0e4a2f25fa0644f8a8169d0b44ab90dc8a650 2fa6f76d7ebe1e3b0b710949d6f60e809e3a7dfc48bd8ec32001817d4926f638 Loading...

	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0	2.6 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-05-10 23:12:46 Times Seen11364 Hash 020e87460ce58802842e34a3aac97d83 d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9 138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47 Loading...

	www.formilla.com/scripts/fileAttachments.js	22 kB	2023-03-08	2024-04-23
Pretty URL www.formilla.com/scripts/fileAttachments.js IP 172.67.68.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:24:24 Last Seen2024-04-23 21:16:34 Times Seen59 Hash 20afc3c17e8356ae8fa86ea6a51fa8d9 f07e69c7ce5335715b5f393a85e0b1fabd88dc05 d641d1974874cbde3b3a839eb215e641723f75c20aa359d6b3c37c8cd145fd14 Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/elementor.js?ver=20180910	41 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/elementor.js?ver=20180910 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 443d04c6c5d1aa61abc489905b985b3f 2d8c2d044ce2ccd581b1e82b9a891eea788223a6 b6511dad4909e680795e315d09d727d56388dbdaab5814125550ace79a9ea0a7 Loading...

	nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-10 21:46:47 Times Seen69211 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910	13 kB	2023-03-11	2023-03-11
Pretty URL nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 23:22:19 Times Seen1 Hash 5a215eaef5b7ac07a92ea5416c269a09 af199e63ab09180d0120e377c2c676f77fe22638 7e066f0e97c7bcbc9ec80b3ef887ac25c273ebc66058deba2e3812d60767fa74 Loading...

	nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0	40 kB	2023-03-08	2024-04-25
Pretty URL nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:20 Last Seen2024-04-25 13:07:05 Times Seen404 Hash 63da63aaa1485c280f3505da6724bccf 1c5110797988e86ffd37f66a79cec3dc023a66eb 4276020d6f31a5d3116fde82520418b99a39cf1fc04d578b8eecab57894126a1 Loading...

	nanosoftconsulting.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca	498 B	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-10 23:57:06 Times Seen11833 Hash b0b80b0256874e70acdc820b52bbf1aa 9aace9a7989736bf535d65f229d0c10e9acea41b 166c7c3bb5f76f977a9f2a5490589b3466374eb2b3f064802e56f08bad71fbf0 Loading...

	nanosoftconsulting.com/	352 B	2023-03-08	2024-04-19
Pretty URL nanosoftconsulting.com/ IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:30 Last Seen2024-04-19 11:35:05 Times Seen37 Hash 96033fc3bd472e854bd73b31b4e7e7b4 af08b68f186e91fca894cafbf9c25e16739592f8 7d0e2723d97a3a3ae34887e70de685383aac2f52ddd627e721cb2feb18d6e95e Loading...

	nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	11 kB	2023-03-07	2024-05-10
Pretty URL nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP 198.54.116.47 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-10 10:07:04 Times Seen5407 Hash 4eee50ac6f4f364ba3a284d0753ddae3 a8e7e824e6824ae0b370ff36e2c07ca07276fae0 b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe Loading...

	http:srcdoc	136 kB	2023-03-11	2023-03-11
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:53:36 Last Seen2023-03-11 09:53:36 Times Seen1 Hash 262f98f0d264f3d355a8acf6cb5323a8 3249fdf858bfd9ad1df360d82c17e552fa6884e9 a8ea4fb014cfb34841964c23e2ff2a3b5beb853c527871cec098af3ca25bfd71 Loading...

	unknown	0 B	2023-03-07	2024-05-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 00:37:48 Times Seen37532033 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (164)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18481
Expires: Thu, 10 Nov 2022 00:38:08 GMT
Date: Wed, 09 Nov 2022 19:30:07 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5014
Cache-Control: max-age=145471
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:07 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 11:54:38 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5014
Cache-Control: max-age=145471
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:07 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 11:54:38 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

www.nanosoftconsulting.com/

198.54.116.47

301 Moved Permanently

707 B

URL HTTP/1.1
www.nanosoftconsulting.com/
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Wed, 09 Nov 2022 19:30:07 GMT
server: LiteSpeed
location: https://www.nanosoftconsulting.com/
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dc90abd8b3ea8e75a68c144d74d75788
1ce29dca1ee9ca8931397de31ffb6cf7833baaf8
807000997bcf1b7a1fa35e43908cbfa54cd1704a5a0f53c09e1ae154638f10e0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "807000997BCF1B7A1FA35E43908CBFA54CD1704A5A0F53C09E1AE154638F10E0"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3343
Expires: Wed, 09 Nov 2022 20:25:50 GMT
Date: Wed, 09 Nov 2022 19:30:07 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: VTdAGyYXREbK4Sv5RtCf+qVEung2JpdSUyRrmRoSQ60O607BkxuEWDOmZlXoNg4Dhzj1vNDOa7Q=
x-amz-request-id: CH16CG7C58AV91PR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 09 Nov 2022 18:49:05 GMT
age: 2462
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 19:30:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
1253b2b0b4fcd9a8ccc427e695330c9e
5f72a4054b5a7587ccff04ed784fd7801e748b85
10eab713c835fff5493f890fccf1cd13170508628ac5b006b1222bd846bf29cc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 19:30:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 08 Nov 2022 11:54:17 GMT
Expires: Tue, 15 Nov 2022 11:54:16 GMT
Etag: "5f72a4054b5a7587ccff04ed784fd7801e748b85"
Cache-Control: max-age=490448,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7678f60d5f4db4ed-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c59d06092401e375df491b06ee8e6dbc
2e27b8ff7c08a5349e27969bc2a08e5e19d0c1da
23ee4ab633fcf67dc5d4d1931450e365cec8d436ef1f9ba5f46b6bab974724c4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1209
Cache-Control: max-age=136611
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:07 GMT
Etag: "636b6da9-1d7"
Expires: Fri, 11 Nov 2022 09:26:58 GMT
Last-Modified: Wed, 09 Nov 2022 09:06:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

www.nanosoftconsulting.com/

198.54.116.47

301 Moved Permanently

0 B

URL HTTP/2
www.nanosoftconsulting.com/
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://nanosoftconsulting.com/
content-length: 0
date: Wed, 09 Nov 2022 19:30:08 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.161.231.36

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.231.36:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ASODnELgRv4In6MgvgGvlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: A7yiAmDLsBFDNls3aJOt/OtqZok=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12192
Expires: Wed, 09 Nov 2022 22:53:21 GMT
Date: Wed, 09 Nov 2022 19:30:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12192
Expires: Wed, 09 Nov 2022 22:53:21 GMT
Date: Wed, 09 Nov 2022 19:30:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12192
Expires: Wed, 09 Nov 2022 22:53:21 GMT
Date: Wed, 09 Nov 2022 19:30:09 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cc2a9c89cbd9d2da1fd4a79a7d8b1d8
b2a4971855e26ff842f71d5dd4fff2596a83bd59
3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cc2a9c89cbd9d2da1fd4a79a7d8b1d8
b2a4971855e26ff842f71d5dd4fff2596a83bd59
3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9313 bytes)
Hash
29429581f8dc762c69c5916009f70080
9265cae98aa663a5498925b70079abdd8e7031fd
c3deee74c80905a1e92b84868b9987cb30ad7a210dca066b97c325cc2c83872e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9313
x-amzn-requestid: be3f6b0f-cf61-4bec-ad1a-87abdbc45d73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTTwF5AoAMFZAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc17-5ca45b5b1065a4ea492f2ac6;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:27 GMT
x-amz-cf-pop: SEA19-C3, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9lVY7YgQQ0FAP3ItgCSWePY0Msd4RIyBz4eNPc-K51BtnWUjOObv6g==
via: 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 21:43:31 GMT
etag: "9265cae98aa663a5498925b70079abdd8e7031fd"
content-type: image/jpeg
age: 78398
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4737 bytes)
Hash
39446652ee66d20bd73df20f1a29589c
349ea78f3ad0f2f7376ba22e417226b2e06806d7
655a00944a319ba167e99b43055044cb18bc48d53605ff0d1b6c8b1ba8ee8237

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8786d2a2-d21a-4bb6-916d-7fce27ea08f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4737
x-amzn-requestid: ad230e08-9f4e-46cf-9a86-f8e013a1c498
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bQBFkEhLIAMFq_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63697bbd-7e8b686a23a84c5d473c9ef5;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 21:42:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FoOPmZEjC6nhw801dgqENVL-9-aC0pyFAF-fMS57XzQyfxck2GGUvA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 21:49:16 GMT
age: 78053
etag: "349ea78f3ad0f2f7376ba22e417226b2e06806d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F609c6c88-4535-488a-8bf4-de0e93b9ae31.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10822 bytes)
Hash
86ec3f22045de1a100eccf27d91593ae
e26769d82108f89057b05096061f1276d34e223a
b863d19ab12945922b4d014c517f5ffe349cefe2bbe1c2f16661371f22378cbd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F609c6c88-4535-488a-8bf4-de0e93b9ae31.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 730ec36d-2d1d-4a0f-90c8-dd819811bdd1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bM39VEZkIAMF7lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636839ee-6e75e34c64d489ca25765e67;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 22:49:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: R2JUiJdMAsIbCHDmMMHyN0sKaVBZMDRh2WOfBPUWZpnMBVOcI40Y3w==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 11:14:53 GMT
age: 29716
etag: "e26769d82108f89057b05096061f1276d34e223a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff66bafec-6420-4aea-8b22-96b8fe0d292b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8154 bytes)
Hash
c69b19d2273c3ade32fd0797921c0459
8cafda5659f5b36c855a2bbcaeb03aa715ddeebd
d78b92e1175207b1179c85f9490f937e1647aeae3fe95cf8b3dc336db232945e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff66bafec-6420-4aea-8b22-96b8fe0d292b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8154
x-amzn-requestid: 1d9d6e13-69a4-473d-af4b-ef3d4382f3ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTU2EyZoAMF94w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc1e-0dec203434f42df01d9a1182;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5sq7XRYInS334VVDEtCJNlf_O9FTHn2G4u-WAIygFZ-SALN0flMwew==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 22:02:14 GMT
age: 77275
etag: "8cafda5659f5b36c855a2bbcaeb03aa715ddeebd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc585a69-ebe7-4753-b2fd-ad259cd42072.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.8 kB (2808 bytes)
Hash
547f07effeda1f7041b06fa3f10f90bf
d453f8017ebbbb8362f745a15c95acbddf55ac26
c4c4063cae55e4e2192ab2ac98543f4495a81879b8001fd2efb7989ca6eddba9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc585a69-ebe7-4753-b2fd-ad259cd42072.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2808
x-amzn-requestid: 7360c882-e191-456f-a3bd-a60b9521fa1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTTvFUXIAMFXHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc17-76c6b1c251a2bf7e56fd9ba2;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YjFB1BpcpATyMj0aZldTHb6xWSeTIzklGyc1WWT09DsrnYQ1bUiTkg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 18:54:44 GMT
age: 2125
etag: "d453f8017ebbbb8362f745a15c95acbddf55ac26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1

198.54.116.47

200 OK

12 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (47826)
Size
12 kB (11601 bytes)
Hash
3f7f7fa954242b63cf5127c14417c6e5
712c7c9ea049d297e3fb27d3c805be5c5867c4d4
e274dc85b6107cb6054dbee83ddb1e3dda3162ca8f93b16b2d692a451cf9511d

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11601
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/css/classic-themes.min.css?ver=1

198.54.116.47

200 OK

217 B

URL HTTP/2
nanosoftconsulting.com/wp-includes/css/classic-themes.min.css?ver=1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-length: 217
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13

198.54.116.47

200 OK

259 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
259 B (259 bytes)
Hash
49736e2d926fb2846e2df8fc0a1b69f8
0c415addd3603df8843209de4fc448ef5c443761
be091ce2d9948f24a59c9d1578557cd92e8180e2318dc0a21308ca180071f8d0

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 259
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

198.54.116.47

200 OK

3.6 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (19233)
Size
3.6 kB (3629 bytes)
Hash
af3bdf44d09914e8adb51fec560d8816
84bb225e096bab405868dd504e62133ba75cf1c1
4325dab21d3eb9efb8e285a0926be743f27e46446ccf5f9be65bb4b60c024152

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Mon, 01 Aug 2022 04:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3629
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10462 bytes)
Hash
4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C7GYpM3mXSf0hVyGO9Zzlxa3IHXHdyPlXsvr3i0GoQnaPZF6lO-OwA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 06:24:20 GMT
age: 47149
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cc2a9c89cbd9d2da1fd4a79a7d8b1d8
b2a4971855e26ff842f71d5dd4fff2596a83bd59
3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.0

198.54.116.47

200 OK

12 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65497)
Size
12 kB (12400 bytes)
Hash
33961f6f75efb984e93e022924499712
e7b1091fdee203fb8fe7136beeecafcb7229d720
07f308a7e1bc0988bf3e4d02917664da65a6afeb7d14e050e3623cdf6529e638

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12400
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/elementor/css/post-6.css?ver=1667147301

198.54.116.47

200 OK

305 B

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-6.css?ver=1667147301
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1099), with no line terminators
Size
305 B (305 bytes)
Hash
f9f4a316c381f91875e80b91786dc36d
fee0e5117a4be1c06c3415ea188ea061975d7bb4
9f68a480f0cf3e2c02142e5d8d0c0417f9a191db0676a80ac8963514f24586a7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-6.css?ver=1667147301 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 16:28:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 305
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/elementor/css/global.css?ver=1667147302

198.54.116.47

200 OK

1.3 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/elementor/css/global.css?ver=1667147302
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6697)
Size
1.3 kB (1274 bytes)
Hash
fc6edda31e164cee7091e25022bf94dd
689541cb538ad30d128ed13bfdded51fad82d3e8
704545d1d0d5ef3cc50b0cb5301da68ff6669f1cf1a734b05be20f8198a24530

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1667147302 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 16:28:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1274
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1667298805

198.54.116.47

200 OK

3.5 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1667298805
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (48195), with no line terminators
Size
3.5 kB (3488 bytes)
Hash
ca176df35c48c5a45635bb7bf91a6568
3bf2d7a6cbdc6b65c5e050fad0396ccb22ca9466
02509b5b14bbc4ee11193b58202fa60ac4b7121c862c3dd63b2e30d9996b7923

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2588.css?ver=1667298805 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Tue, 01 Nov 2022 10:33:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3488
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13

198.54.116.47

200 OK

7.4 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (1646)
Size
7.4 kB (7374 bytes)
Hash
806afc62d640eb03fccbd5fe46ed8666
31259bb9e403fbe379125ea0c562ac11d76dc4d7
f7ceb3661377e98e71ccebe4d91336ac77e4e62a84bff79a1e6f865f3d00c26f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7374
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5c7e9b5827be4a290a3efb33c0d5bc9a
16a926ddc38b05d86a1f0220f58cd359200d45d9
6ea1c58f480b745c9db48fc37ff2228e05db6888af1eb2e00eacef214a58e70a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156448
Date: Wed, 09 Nov 2022 19:30:09 GMT
Etag: "636bafcf-1d7"
Expires: Fri, 11 Nov 2022 14:57:37 GMT
Last-Modified: Wed, 09 Nov 2022 13:49:03 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: O4-XQ1ha5ranI6QkG95yVysWs0QJD0orGCIta0daC6eS9WqelOZwDQ==
Age: 4114

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5c7e9b5827be4a290a3efb33c0d5bc9a
16a926ddc38b05d86a1f0220f58cd359200d45d9
6ea1c58f480b745c9db48fc37ff2228e05db6888af1eb2e00eacef214a58e70a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156617
Date: Wed, 09 Nov 2022 19:30:09 GMT
Etag: "636bafcf-1d7"
Expires: Fri, 11 Nov 2022 15:00:26 GMT
Last-Modified: Wed, 09 Nov 2022 13:49:03 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ShdYC8coJyJO05UdhxxYN3JJSwtMz-ZHqC669TchzVCORqzpwLQx9A==
Age: 4283

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5c7e9b5827be4a290a3efb33c0d5bc9a
16a926ddc38b05d86a1f0220f58cd359200d45d9
6ea1c58f480b745c9db48fc37ff2228e05db6888af1eb2e00eacef214a58e70a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157515
Date: Wed, 09 Nov 2022 19:30:09 GMT
Etag: "636bafcf-1d7"
Expires: Fri, 11 Nov 2022 15:15:24 GMT
Last-Modified: Wed, 09 Nov 2022 13:49:03 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: v4yWQrdn-6oC6iydmg1aiTKXIZpUOOmszFsFSmezkwjKGRqj2Lb2EA==
Age: 5181

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5c7e9b5827be4a290a3efb33c0d5bc9a
16a926ddc38b05d86a1f0220f58cd359200d45d9
6ea1c58f480b745c9db48fc37ff2228e05db6888af1eb2e00eacef214a58e70a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155210
Date: Wed, 09 Nov 2022 19:30:09 GMT
Etag: "636bafcf-1d7"
Expires: Fri, 11 Nov 2022 14:36:59 GMT
Last-Modified: Wed, 09 Nov 2022 13:49:03 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xMIxUyHFePZv9tw7msbnZc6VMJOnkHqHaKruiA_KptGKJJk8SJ5nkA==
Age: 2876

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5c7e9b5827be4a290a3efb33c0d5bc9a
16a926ddc38b05d86a1f0220f58cd359200d45d9
6ea1c58f480b745c9db48fc37ff2228e05db6888af1eb2e00eacef214a58e70a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=152944
Date: Wed, 09 Nov 2022 19:30:09 GMT
Etag: "636bafcf-1d7"
Expires: Fri, 11 Nov 2022 13:59:13 GMT
Last-Modified: Wed, 09 Nov 2022 13:49:03 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -YwUfS9mb66HCMKITjL6eismQkKwTppN7k6oLaPOn16ec7jRMKw_IA==
Age: 610

engitech.s3.amazonaws.com/images/testi2.png

52.217.105.36

200 OK

3.8 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/testi2.png
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3831 bytes)
Hash
657ce8a6977b5bb4c216c699ede43c8a
72b7ec8555df950ec4c9bb1ef79432c23baaecf3
1c443889380cbb3fac213c72475db86a5267e764d305a2a6c85a535e981d3896

HTTP Headers

GET /images/testi2.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: Pzif9celKFIZ8ASYusGEtvxG0P3uiIx1lu/THTWRMec8jBJYFDSSfThf4PSlS+BiCMAvFH40q0Q=
x-amz-request-id: 172RE5B0ZN8SNGSZ
Date: Wed, 09 Nov 2022 19:30:10 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:23 GMT
ETag: "657ce8a6977b5bb4c216c699ede43c8a"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3831

engitech.s3.amazonaws.com/images/testi1.png

52.217.105.36

200 OK

4.4 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/testi1.png
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
PNG image data, 90 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4379 bytes)
Hash
4fc0a2074bc73e79eb4e8486191218e4
32d6529e9cf08a17fc2c468c71238f748ad537a1
3bac53891f3fd23db4c5a2b78fdf4d7f7e6c76a20d07202f65a61775b94cffbb

HTTP Headers

GET /images/testi1.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: +QbCiHgAtkIAsgw20spnqxpWs8gHCyX1ldmkd5eUgpew2Ac+g2I/yMs9AfvoZfutfNW7V55mVdg=
x-amz-request-id: 172VGTWA5KBPESFV
Date: Wed, 09 Nov 2022 19:30:10 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:23 GMT
ETag: "4fc0a2074bc73e79eb4e8486191218e4"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4379

nanosoftconsulting.com/wp-content/themes/engitech/css/bootstrap.css?ver=4.0

198.54.116.47

200 OK

2.3 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/css/bootstrap.css?ver=4.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11782), with CRLF line terminators
Size
2.3 kB (2342 bytes)
Hash
774666a507611c0b3aec63c5de5dd8e6
36e2c0b9f0720e51a54797e2d5a9cb76ad8ca526
01f1a8cbd031caab2da2ec38198802ff987dfb473be3d780ef68d3156c6f7947

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/css/bootstrap.css?ver=4.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2342
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1

198.54.116.47

200 OK

12 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (56940), with CRLF line terminators
Size
12 kB (11926 bytes)
Hash
b660bad0c3c7a990749c93395510d1b4
94710965e4c818e81722a509047751628acb6163
8d5912663b9529d89fd688547bd6f270aa96516820cc94daaa989d0889614f64

HTTP Headers

GET /wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11926
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1

198.54.116.47

200 OK

771 B

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF line terminators
Size
771 B (771 bytes)
Hash
256e996acf577e3a9b3dcba53946e971
57df24c0da737d5315eb8feb67b770ddd2895b30
171481a144a3b9afe5f51a68f28760cbbcdbf4736f311147bb57a2eb4d96eecb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/css/flaticon.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 771
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/css/slick.css?ver=6.1

198.54.116.47

200 OK

486 B

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/css/slick.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
486 B (486 bytes)
Hash
1184e5bfb40a6652367a2a0b1f1899b8
384804cae94a946573797cfd3f474b0d5328942d
70fb8a0b25ca9cd46d835506291b19e68273efc2447b08a108c4a86996b1a086

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/css/slick.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 486
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/css/slick-theme.css?ver=6.1

198.54.116.47

200 OK

590 B

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/css/slick-theme.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text
Size
590 B (590 bytes)
Hash
ea3f6d80696f37a1a5d2b27a80ff2d93
49e3f6996d030ec8e05fb44325e1cc98a0ab9d31
95c9e7a00c9bd14c4c9107ffe7e7a7cdb7a2a77a3d833de154b94fcbca9dbde6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/css/slick-theme.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 590
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

engitech.s3.amazonaws.com/images/image-box4.jpg

52.217.105.36

200 OK

56 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/image-box4.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Size
56 kB (55591 bytes)
Hash
b3fadc056c43ea9977e09f0b597e49b0
ee954392739b8be50dc211d8a7c50eed95902f3f
1a178d8f9d18d083e57a430e7e8441237ae3ed480e10b4c61b1c8bec1848c985

HTTP Headers

GET /images/image-box4.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: zT1+jObvSxdfStRBCFnNlHaAMwL1BdF2BcOH2K7MQV3tBeiJ/itR9iC8EXNpW0GlZNjf75+/BTk=
x-amz-request-id: 172WB145JRH0PEMK
Date: Wed, 09 Nov 2022 19:30:10 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:21 GMT
ETag: "b3fadc056c43ea9977e09f0b597e49b0"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 55591

engitech.s3.amazonaws.com/images/image-box1.jpg

52.217.105.36

200 OK

69 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/image-box1.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Size
69 kB (69358 bytes)
Hash
a54c3e56e64cf35831311094108c9126
8e42782564b11407c2fc1ec2ba02d7d6f394dda2
3a7b210fd49c5dd360dfb140c8568031a8fbbee5d92316bce525f2e4066f3797

HTTP Headers

GET /images/image-box1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: Hi1SEXOd0p8TJjMF+kzYmD0rKhYDRqYaGWUDk8K6FuY3tdKRjQQdVCyKgTGwAG7/nlyFRCA9Vro=
x-amz-request-id: 172ZZCBQEXKD9BC6
Date: Wed, 09 Nov 2022 19:30:10 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "a54c3e56e64cf35831311094108c9126"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 69358

engitech.s3.amazonaws.com/images/image-box2.jpg

52.217.105.36

200 OK

63 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/image-box2.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Size
63 kB (62567 bytes)
Hash
865d6b66b5ce163b233cf4f3abfb736c
2c8d5a1c07392bb84bf6cbad2a06e0abadca5cd9
43883abd419f4fb6bf7fff4c0519e62c393663c08ef291400f6d500e30fe8b8c

HTTP Headers

GET /images/image-box2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: MDFiueAF26wvYEFjUCI1rja4H8NbJ1rHHbHT2s00y7SI1lHDkb6TgF/JbCuQjOmuBzCS80oRlCM=
x-amz-request-id: 172VCZYBTGHJZ2KW
Date: Wed, 09 Nov 2022 19:30:10 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "865d6b66b5ce163b233cf4f3abfb736c"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 62567

engitech.s3.amazonaws.com/images/image-box3.jpg

52.217.105.36

200 OK

64 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/image-box3.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 730x730, components 3\012- data
Size
64 kB (64104 bytes)
Hash
b9f69435dbf3640b12e3416f48979686
5618ac0a78133ae0733c727e0efca4f47fd601b4
05845561cbde31f8207f635a25d0121be630c7b8f7891d6ff64122d8fc89d526

HTTP Headers

GET /images/image-box3.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: l9Vlv/thjaqlJGVP8Cu8RScFiHXd8GgLFae8SEd1Ql8U+QrryrfVi1b2gs1aWnUzqbEjQpJkf4I=
x-amz-request-id: 172SBT97QA4EHZMZ
Date: Wed, 09 Nov 2022 19:30:10 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:20 GMT
ETag: "b9f69435dbf3640b12e3416f48979686"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 64104

nanosoftconsulting.com/wp-content/themes/engitech/css/magnific-popup.css?ver=6.1

198.54.116.47

200 OK

1.7 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/css/magnific-popup.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (5877), with CRLF line terminators
Size
1.7 kB (1659 bytes)
Hash
e19ccff794c9acca6467b0f40661d9e5
860c2e23493ef3759827ca21c018782a023ae6bf
af58270d085d0897babc9acb4e26b76daee0d29ee4356cf76b7220e76843168c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/css/magnific-popup.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1659
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/style.css?ver=6.1

198.54.116.47

200 OK

29 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/style.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (389)
Size
29 kB (29123 bytes)
Hash
99586b4f1f89c4bfd11813e57498975b
1816847ed4015cc508189f46531a17a824072568
b8e321354de7459386f8a0158755a3f9afde629b553d2ed555e808bf7770d699

HTTP Headers

GET /wp-content/themes/engitech/style.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 29123
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1

198.54.116.47

200 OK

686 B

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF line terminators
Size
686 B (686 bytes)
Hash
f19795d0456614cdb8e8a82a25660486
84d1c9119c3a8dec3f81b474ede03efe08f7e7b0
4e02542032b67ec0924ff1f83debab5c1e72e7215a0cb6fd0e9115e43c38a025

HTTP Headers

GET /wp-content/themes/engitech/inc/backend/css/simple-likes-public.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 686
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/css/royal-preload.css?ver=6.1

198.54.116.47

200 OK

1.3 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/css/royal-preload.css?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1261 bytes)
Hash
4fe32fb6f692d047bfe2569c1effbf3a
16dfeaa691e654f0519a41292d5dc09a19ae5801
79026c71d386fa7e0f6298d90155aec42d53905d84c3a396d87c65173656377a

HTTP Headers

GET /wp-content/themes/engitech/css/royal-preload.css?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1261
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

198.54.116.47

200 OK

12 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (57726)
Size
12 kB (12133 bytes)
Hash
f463afd8661ddc733305df1f0cbdaff2
77262f0209e75e340eb7014aba9cd8d69966032f
c4b6541be58a0ca61549cd4562850315077880c459c019f01e835cf2d7b764de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12133
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

198.54.116.47

200 OK

284 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (489)
Size
284 B (284 bytes)
Hash
dc279c928e2924b07a4a7575f8070ee8
0196756cacdb61ef40483af7ea982b699b0933de
80b6d9e3f0304f4199350c6015fd96084646c2a0121332bcb5a46d3956b7df5c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 284
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

198.54.116.47

200 OK

30 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65447)
Size
30 kB (30324 bytes)
Hash
3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30324
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

198.54.116.47

200 OK

4.0 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3995 bytes)
Hash
7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5

198.54.116.47

200 OK

1.8 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF, LF line terminators
Size
1.8 kB (1768 bytes)
Hash
6d6bbbfe5602f6ddcc3c96260dc97534
4dcb5333a6e78ae51bae0338832991239c3f123b
c9f4d056a710d6868e82b3eebe2951151c7bd5089acbcc935b81e759efdd4af9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/inc/backend/js/simple-likes-public.js?ver=0.5 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1768
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css

198.54.116.47

200 OK

905 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11736)
Size
905 B (905 bytes)
Hash
8670fd6bb742c6b6b7670eb3c2b053c4
50540933b0b6333baaf8a1b0fa673860b04c98c4
b051431fd4bd43ae520e41bf014ff91071a9452e8fb118fc9d8e0499fe8ebfa9

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 905
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-Green-1.png

198.54.116.47

200 OK

11 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-Green-1.png
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 800 x 142, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10693 bytes)
Hash
f87cfc14ec48b68124d93be70b3b7496
083a06ae167b9148d713df2b93cfe43ac785b22b
50f3af1bda43a8210f7112e03dfa0febf1aa1b1cad89c7282482ea6c6980d39b

HTTP Headers

GET /wp-content/uploads/2020/09/Nano-Green-1.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: image/png
last-modified: Thu, 20 Oct 2022 10:51:47 GMT
accept-ranges: bytes
content-length: 10693
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css

198.54.116.47

200 OK

755 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (12953)
Size
755 B (755 bytes)
Hash
3366ace43d7469df10acfbdad9d8eb25
a0daba7418337b6439296daffa91de5aa8f4d085
715b2caa69ba67ec4bbfbfce1b15f41e65d8f9d15765fce1f36b34e09cf9fc8f

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 755
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2854.css?ver=1667147302

198.54.116.47

200 OK

1.4 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2854.css?ver=1667147302
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4852)
Size
1.4 kB (1440 bytes)
Hash
27f4076b8744aa9b78e74d0fb7c3445c
5dd8af7601ae01784a8f36155e880bd04703ff74
5467a90dca2516f3f42ec197d89a8cfad35658f4777e231025c493bde8dad8c0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2854.css?ver=1667147302 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 16:28:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1440
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2856.css?ver=1667147302

198.54.116.47

200 OK

564 B

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2856.css?ver=1667147302
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4597), with no line terminators
Size
564 B (564 bytes)
Hash
e1dbb723816e43414de85c1b618123d4
c1ee32dc516d8224b008916cb6c31ebc299c57bb
807f1fc3c7a0c49fd1af54fa8b5cb8751b9d075a6a52991d18dea42e368e6c89

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2856.css?ver=1667147302 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 16:28:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 564
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/elementor/css/post-1334.css?ver=1667217697

198.54.116.47

200 OK

746 B

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-1334.css?ver=1667217697
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (5822), with no line terminators
Size
746 B (746 bytes)
Hash
e3f3abcfeadc445e9d526ba40b526466
e7a0e76ceaa41da7f88e08af0b3db157da0a7e7e
45b00bf0666b922dc93b439c7906d959902050ad344ba2283fe57802ad38493f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-1334.css?ver=1667217697 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Mon, 31 Oct 2022 12:01:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 746
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7

198.54.116.47

200 OK

6.8 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (47365), with no line terminators
Size
6.8 kB (6824 bytes)
Hash
0ee79d22a2a5a4f3e7271619921d8278
a862397f0055d6c8248d8e994fc974c65c3f171d
cb343540a6ec474b28cb356f3dd3eb704e557a8cb6f20f8686d81152f94e1f99

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/gravityforms/assets/css/dist/basic.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6824
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7

198.54.116.47

200 OK

0 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-length: 0
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7

198.54.116.47

200 OK

327 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1757), with no line terminators
Size
327 B (327 bytes)
Hash
ffd5231deea8157c0937ec860a68fad0
a478a46cb41c05f976ae0288964f54654967aa51
61eb67f4e2bccca4bc7c99bf5980a1324451250170dcdf47b6661d78730e76f9

HTTP Headers

GET /wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 327
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7

198.54.116.47

200 OK

5.3 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (31244), with no line terminators
Size
5.3 kB (5349 bytes)
Hash
6a49304cd1223bdc9551ee8747d37393
cd75831a0cfd9f48889b9e4c8034cdd1ce612256
e54b7cfeb9e23e60ec5b2f4043aaa67e453dc9ddc2b84ac930068a10f79e04ed

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/gravityforms/assets/css/dist/theme.min.css?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5349
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0

198.54.116.47

200 OK

2.4 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (10019)
Size
2.4 kB (2442 bytes)
Hash
d2db71c82a8f672aea59a3e050cd8cd7
af626566f94b3164e4310288cfb142431e8349a6
bcd2c9c2ba22a48a8fabf9fbe5e947deb6404367e4be24f48326e302aead1180

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Tue, 13 Mar 2018 15:48:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2442
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

198.54.116.47

200 OK

286 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (483)
Size
286 B (286 bytes)
Hash
8828fa3c5bdcfa66615714a2b8c9d807
4f556d0b005ac7754af607418df445f8cf98e8b1
16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 286
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3

198.54.116.47

200 OK

283 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (491)
Size
283 B (283 bytes)
Hash
453a93dc816be89f942ebb253ff199fb
01563d6019803e3ff2a94c5397e7e771ee6f440d
36beebcd3778e04c8973faa581d07c7e7dc0bac2a77f637379e7d110383ab5d7

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 283
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910

198.54.116.47

200 OK

3.8 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (550), with CRLF, LF line terminators
Size
3.8 kB (3813 bytes)
Hash
bea8d67fb58b13a68800c22c252dec14
5a6ea8e4f87bd1c1ad17b6dde4deff343d02a87f
a55fd1baaf9dd6911e5a9dd349bb3a54c15854d5619fcc0d8eb4f6545f60a81b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/js/royal_preloader.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3813
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

198.54.116.47

200 OK

1.7 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (5477)
Size
1.7 kB (1733 bytes)
Hash
fa921f07ecc438baf227765de450e215
1fdd49d8bb681cb118ea8d67d4fc61b0ad46cc95
b2cc68637048b04952a2f33163f64571145dbe0817a14c68fe6f1661bd81091f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1733
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910

198.54.116.47

200 OK

8.6 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (20840)
Size
8.6 kB (8605 bytes)
Hash
4f4f7b55316c1cbdd546cb7dafde04a7
e3f6960bde17f8f89b550bbd8e674bf8c6c0f267
8f0c0b89f8e547e98e5915888ad9bca9ca18e7d408d31241b89d944bbbdf3c52

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/js/jquery.magnific-popup.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 8605
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829

198.54.116.47

200 OK

11 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (32003), with CRLF, LF line terminators
Size
11 kB (10806 bytes)
Hash
da0744c72f74982f4960af06f9487cf1
a5c05ef1222786ea4405dc9379b723f68690cc8a
3973763785cedff3ae375cbcf19bec99309b78c07888eab93e5518030f23fb03

HTTP Headers

GET /wp-content/themes/engitech/js/jquery.isotope.min.js?ver=20190829 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10806
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/slick.min.js?ver=20180910

198.54.116.47

200 OK

11 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/slick.min.js?ver=20180910
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (42862)
Size
11 kB (11449 bytes)
Hash
32261bbe6f99681cd77f90b6b4b13b1a
b8cbfe5ed03b80a245c8636bb80f655db2fec03d
1a68e8900e54a8b57e984fca99d185540626ea32b885193de5621d159e2da70a

HTTP Headers

GET /wp-content/themes/engitech/js/slick.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11449
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829

198.54.116.47

200 OK

2.7 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (3713)
Size
2.7 kB (2734 bytes)
Hash
8d80cb87453736a801b8272cea988128
1f8aec8a3fed8dba2bed99eaa337a90eaa3e8d47
60c39d9547b8fa9a6d6a4ac47a3bf03fe433075cac5449e6902dc4e25349446b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/js/easypiechart.min.js?ver=20190829 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2734
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910

198.54.116.47

200 OK

1.9 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1178)
Size
1.9 kB (1899 bytes)
Hash
49cb8de2c4446f9b03e82ee25e72769d
bbba6b84131675ca2ecdd67da5481ee46eab46d7
aed4b717c31366a2e7a78b0139586774f133f246b705661cbe0601cadd006969

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/js/jquery.countdown.min.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1899
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/elementor.js?ver=20180910

198.54.116.47

200 OK

5.7 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/elementor.js?ver=20180910
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF, LF line terminators
Size
5.7 kB (5681 bytes)
Hash
8b3c13a0a2d09205e5f33e7e95b94102
cff7664b6e4745dd524e5952781b188f7fdf963a
f9dfecf94c2c6358bec3d66f3de9e9f2fbbf7b34981cc55b2d30e30f61c1f4b5

HTTP Headers

GET /wp-content/themes/engitech/js/elementor.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5681
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910

198.54.116.47

200 OK

2.3 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/elementor-header.js?ver=20180910
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF, LF line terminators
Size
2.3 kB (2250 bytes)
Hash
875a1bfe36878f2ab7dcb49f666ad938
ed26253e20c1dcda381a4ca70fd1c7a0d64cf543
d712b6a3f5165041ab3ad18a7e38b300a5ccbb5949569fe91209709180a54beb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/js/elementor-header.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2250
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910

198.54.116.47

200 OK

3.3 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/scripts.js?ver=20180910
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (384), with CRLF, LF line terminators
Size
3.3 kB (3293 bytes)
Hash
221fa027ae2088062746426d97023ed1
18d26a30e0362b8d49300d92e347d408b9f0a9e5
aad73556c99b93ae506ce33c0d13ab1685288b8c7a060862514fa3461991ea35

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/js/scripts.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3293
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910

198.54.116.47

200 OK

1.6 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/js/header-mobile.js?ver=20180910
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF, LF line terminators
Size
1.6 kB (1588 bytes)
Hash
971e7b81fb3d31514a258acd497c4c0b
d9c65f88f1a3520b3799face47d149cb75450e25
52d05f02573badea9890e1e6ed0f06061321682be97fb8bb1f40a6f53ea6e2d5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/js/header-mobile.js?ver=20180910 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1588
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13

198.54.116.47

200 OK

4.9 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
4.9 kB (4920 bytes)
Hash
7569cb62361f827219d51ba3a5e4a5c8
2400e05cdcac6ea2d63b32393da41ff5521b7218
a792a1f251a6587aaabf8fc0f019b27c46cc4c212b960d4f4b8d3dc119c8dcac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 05:03:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4920
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

198.54.116.47

200 OK

2.4 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.4 kB (2354 bytes)
Hash
4e773d7cec56bacab6d2db420be6f262
c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2354
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

engitech.s3.amazonaws.com/images/bg-icon-box2.jpg

52.217.105.36

200 OK

31 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/bg-icon-box2.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Size
31 kB (30682 bytes)
Hash
38d50aa637619ce80fcc6137119f7253
d87ef26260014b4867834acd9927fdf61e1d6b8d
7dfe0c4277a1cbd835df71b6321e91125dcad445acaaf7f118b17a9b013fe9fc

HTTP Headers

GET /images/bg-icon-box2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: /y74FggTS8SBHRsm07Ni/KmNl8DglbuX02urq0fQwuz2/fGy/SNlLCc7jMtS0Q6Oubk2oAHah+U=
x-amz-request-id: BA10XF5PF176BC95
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "38d50aa637619ce80fcc6137119f7253"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 30682

engitech.s3.amazonaws.com/images/bg-icon-box3.jpg

52.217.105.36

200 OK

30 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/bg-icon-box3.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Size
30 kB (29654 bytes)
Hash
b08c65c15fcd7c2bc69abeccd146f2ac
620f28915f093c583c69c792411b2e8f33cf7890
de26ccc277101742184fcfca0d9d418a5ec8b369954c0316f18eff6ea5ac33d5

HTTP Headers

GET /images/bg-icon-box3.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: YO2/ra3hJ9Rm/q/mCWEnZ9viJWcc+WOZ23VkP0FisKVnQ1/Ivc4Vl1DXaFIiFiTUXZtEmknL0nE=
x-amz-request-id: BA18Z8SG31GRQ5SS
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "b08c65c15fcd7c2bc69abeccd146f2ac"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 29654

engitech.s3.amazonaws.com/images/bg-icon-box1.jpg

52.217.105.36

200 OK

31 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/bg-icon-box1.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Size
31 kB (31008 bytes)
Hash
2b33b9b5f84c5bd7e81e53ee1e2db6e8
845a1b538936da12031925c16e8e1a1138759cbf
2e5e3ace12750cb11134ab5be198549fc4d4ed0e63c3b72e11ad378e6481fe74

HTTP Headers

GET /images/bg-icon-box1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: Bxd47X9yQtLF6DQlhB6ue4uM1ABRPJ//zjVIvylTvfSOxFhiIA801wKiIlK22acRIiDPb9o1O8I=
x-amz-request-id: BA16WTMVKF0E9X9M
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:27 GMT
ETag: "2b33b9b5f84c5bd7e81e53ee1e2db6e8"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 31008

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

engitech.s3.amazonaws.com/images/bg-icon-box6.jpg

52.217.105.36

200 OK

40 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/bg-icon-box6.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Size
40 kB (40039 bytes)
Hash
c71fba8b5433c3bd12908e40c8867860
794c0609c456af6ff0742f29632b9a5fa6b19a04
38d63da6b69ad20025b1e2923655c1a8c1e6745ec072d391d489a7fe108bf408

HTTP Headers

GET /images/bg-icon-box6.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: IlHkVpdj49o1/JSRUhRKsICiSxX6tHUbtUKLddTlDxNLgfdgXiC52eImnagDC+CV1epF5NPCrIQ=
x-amz-request-id: BA10HB6SCXEV9KBQ
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:28 GMT
ETag: "c71fba8b5433c3bd12908e40c8867860"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 40039

nanosoftconsulting.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

198.54.116.47

200 OK

6.3 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Size
6.3 kB (6335 bytes)
Hash
fecbc00e8af71d8cfb678cd811c7cb2e
44e5dd77f62cb5c67271442b75cdff10d45f2f8d
d6f03fb4728d0c23251451df8d66b5107d3c87458dc624aacfbad437e99d01f1

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6335
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca

198.54.116.47

200 OK

281 B

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (463)
Size
281 B (281 bytes)
Hash
2bd32222de02ec6631cc34c5a5e0d23a
870c0f56cd4535a5546d974ff3eb2e3e66c97cfd
234dabb9c00a28b9055c7409fb1bc88581dfd807959239e281dbd7ef85df6551

HTTP Headers

GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 281
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5

198.54.116.47

200 OK

1.6 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4875)
Size
1.6 kB (1575 bytes)
Hash
06a8ac0e71976bc143cfa7861a31169d
def6031fe13259bf17752661832d815e37068bf2
e6f42d97e7299522bbb002364128fdf72cd22263ca72c5edc41dcd8f4672cd33

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1575
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae

198.54.116.47

200 OK

3.7 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
data
Size
3.7 kB (3717 bytes)
Hash
f7acc55c5b34188d3e66c5f2ecf3ba80
802270f7a221e406af63d622d364b119d912c15b
826c4e13764f5bf1bd0a17f2e693d943f8605df1024815f67f43694f4338b713

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3717
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664

198.54.116.47

200 OK

858 B

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (2472)
Size
858 B (858 bytes)
Hash
be2374eabf981621988021fc2425df91
96272e603964f155600a1e8aa3835fe2fe95756f
2db40c016bc0a8cb0361a98a69c29e9043a42467198035460dc4604035729eff

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 858
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7

198.54.116.47

200 OK

2.2 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1862)
Size
2.2 kB (2168 bytes)
Hash
ebc03d41ae141692b9ff84f36562a443
6893cc96955f2dbb69006c42d7750e553bc0a73f
3d250bfe4218d07b64ba32f891e838219ae546162b99be9f12aee13735bfc477

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2168
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7

198.54.116.47

200 OK

14 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (44351)
Size
14 kB (14146 bytes)
Hash
5833e40928086d41017bf2fc1aa7d8e7
0e58345bcf6c45ff7bc87ad3ad2b2c71e1f80972
80f993738d08a642efbadb38cbd0fef933355ec06232e16ff05ac05fa9462fe6

HTTP Headers

GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 14146
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7

198.54.116.47

200 OK

2.9 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4632)
Size
2.9 kB (2897 bytes)
Hash
9e7ae0903b1c56cab77a2aaaa76fcad1
852ddeac3a36a3e15fec5878b0c34ce4c97aa09d
d681a8b5639e3f393902f83cbc0cca04751455a6250463f42415134b3331b236

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.6.7 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 04:36:00 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2897
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

engitech.s3.amazonaws.com/images/bg-icon-box5.jpg

52.217.105.36

200 OK

29 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/bg-icon-box5.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x524, components 3\012- data
Size
29 kB (28916 bytes)
Hash
a589c95327e1906f6b5a8caa3928ecf9
3a23ed438d7a2c39b596bf7c82afbd62ccfe52f7
c483e3286b9d575e4bddab8f40257627baa4118046e5e0773521c299f14016e5

HTTP Headers

GET /images/bg-icon-box5.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: l8tLZcdn+cTQT7HWHiWq5Coy4Kcw0ZJIz/RodCwRvKBjxy9Q5jWCVl++cRGV1M4TUxNlQpLLSKQ=
x-amz-request-id: BA1CP5BR95FS2ARA
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:28 GMT
ETag: "a589c95327e1906f6b5a8caa3928ecf9"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 28916

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data
Size
17 kB (17324 bytes)
Hash
51ca5ce70497b58a8cc96b2b26ce2e19
7eb7e4f38f8ebe09b504f6dcc3226a8de63a9042
6fce8ebc3557b63496f8fafe1c182f2aa8669550f9398b4d9beebddd43306ed3

HTTP Headers

GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8aBc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 16:44:28 GMT
expires: Fri, 03 Nov 2023 16:44:28 GMT
cache-control: public, max-age=31536000
age: 528342
last-modified: Mon, 09 May 2022 18:31:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0

198.54.116.47

200 OK

2.0 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4918)
Size
2.0 kB (2044 bytes)
Hash
de5e833cc5e3e9a35efa603a30a0b167
b3a8ff39040414b053f27ba99da92d0d558e785d
d0d0131f2eee078b9167eca1905ea040f5f21d8079649d20ac3879dd2e15e7bc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2044
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0

198.54.116.47

200 OK

10 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (32907)
Size
10 kB (10425 bytes)
Hash
7d48f8a599732218829a1fdae2595066
b2da0aa5b18319e4cb35d4371029967c7480b266
6fca2d8b92865f0fb8d79e68ccdab1cb0ac8d0a7f0bedb0e3733045cdf43aac9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 10425
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

198.54.116.47

200 OK

2.9 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (12198), with no line terminators
Size
2.9 kB (2867 bytes)
Hash
869caa171b68cbec9fee5abbfb944ee8
f237e485e41f88b77384cfdb880f9d5a8f46eac8
25c2896e2790fb0e52f6b6ba1ce97bd87eb40463b4bb65ba16ad434c1d7a36dc

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2017 21:35:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2867
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.195

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 16:40:18 GMT
expires: Fri, 03 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 528592
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

198.54.116.47

200 OK

6.8 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
6.8 kB (6800 bytes)
Hash
3d0ff0f6731d9cef860af9a5a0e3ce62
13aed444304d782039e261475c8b4450b83e743e
e8d05db77732c71843ced6f386ea82eb32243ac36e7ca3e071cb7f53e2ffbce5

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6800
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2

216.58.207.195

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17688, version 1.0\012- data
Size
18 kB (17688 bytes)
Hash
241b1d6a680b6b0d1c70cc45d6aa4066
d10bc093bac070d725ff9379686201b19d9c70f9
9b73529b4e8246ea3f18a62d5166c59e9912d10b4ed05cf4880adb3688a26408

HTTP Headers

GET /s/nunitosans/v12/pe01MImSLYBIv1o4X1M8cce4G2JvY1MIUg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 08:55:35 GMT
expires: Wed, 08 Nov 2023 08:55:35 GMT
cache-control: public, max-age=31536000
age: 124475
last-modified: Mon, 09 May 2022 18:31:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0

198.54.116.47

200 OK

12 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (40474)
Size
12 kB (11702 bytes)
Hash
c0de3fd1d3a417e5c624288c9c9c3910
d5130dd50365fbfb40e8347f9458f11a1db88708
117344b111d8d6a544b30d23aa826a3d6bdfc88e271be5a8f0d03531b67b80d8

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11702
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17116, version 1.0\012- data
Size
17 kB (17116 bytes)
Hash
bcf3a3fb620dfbee774f84e2c8e71530
40a79d240acdd7e5a95e165515ac7c0958a37971
280aaa8929329764ac3213ca093c63505cfcc665347939c79905c426d33867c5

HTTP Headers

GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:55:31 GMT
expires: Tue, 07 Nov 2023 21:55:31 GMT
cache-control: public, max-age=31536000
age: 164079
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1

198.54.116.47

200 OK

4.6 kB

URL HTTP/2
nanosoftconsulting.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (15660)
Size
4.6 kB (4619 bytes)
Hash
0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:41:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2

216.58.207.195

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17684, version 1.0\012- data
Size
18 kB (17684 bytes)
Hash
67f5e167a73df331cd54701561965cd0
5c6e5ca963553c516240156bcdca131b2d0ac87e
6637ea3139ffb01e240829717a4f8c195d7be6b81780ed643000b49833d8d6d1

HTTP Headers

GET /s/nunitosans/v12/pe0oMImSLYBIv1o4X1M8cce4E9lKdg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17684
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 22:02:31 GMT
expires: Tue, 07 Nov 2023 22:02:31 GMT
cache-control: public, max-age=31536000
age: 163659
last-modified: Mon, 09 May 2022 18:32:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

engitech.s3.amazonaws.com/images/fun-fact2.jpg

52.217.105.36

200 OK

19 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/fun-fact2.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x480, components 3\012- data
Size
19 kB (19128 bytes)
Hash
062cf5f4346d26ab11662c36b1178fe4
ca0f27fba5372fcb7a08ba2713e6c72173db7492
0ccdc1dbbce5ec1ef949a0fe59dde858124fcde82c79057222fdef0e0c028138

HTTP Headers

GET /images/fun-fact2.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: qggapDYlCGZ34eqLieONfD4mce9zMVWN/bYcf9pABtIhNLDKmFCybBPcFOCthEtE58b4bwDXqWQ=
x-amz-request-id: BA1F05PSVCXSYJG6
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:30 GMT
ETag: "062cf5f4346d26ab11662c36b1178fe4"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 19128

engitech.s3.amazonaws.com/images/bg-art-5.png

52.217.105.36

200 OK

13 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/bg-art-5.png
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
PNG image data, 321 x 447, 8-bit colormap, non-interlaced\012- data
Size
13 kB (13300 bytes)
Hash
1f62f659c190de9c2eee49780f8b8605
4b368824176196700ef9c1864f8cd3f4e7fd91d2
33ae30de8b7cdcf64861f16e45682b22e96231fde6c4a873052c7c0c36429571

HTTP Headers

GET /images/bg-art-5.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: TsyhQUbkBbc0NJS6bUSfy61OpCmeNzqxHnJwZ5uKzv7EVOmfaVDFlsvwcoewI47uqSshAHGVRp0=
x-amz-request-id: BA103P6VTXMK5Y0Z
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:25 GMT
ETag: "1f62f659c190de9c2eee49780f8b8605"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 13300

engitech.s3.amazonaws.com/images/bg-art-6.png

52.217.105.36

200 OK

15 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/bg-art-6.png
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
PNG image data, 322 x 444, 8-bit colormap, non-interlaced\012- data
Size
15 kB (15150 bytes)
Hash
b4e5406cc3042bef75740e2d643a7ffd
eac18cce1e90516a37712cc8d5d84e3f07902c01
8ec58c7e8181efbb9dc293dfb3f5b2cc6893a82d7505fb74f09486011cc02115

HTTP Headers

GET /images/bg-art-6.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 1AgGS36EiVXKvhFOYNvXCTRxhF4NJQpPmuY25l3/J/tqUNdZsWSgKdiEjlAR1QEOXxxYHStKQr8=
x-amz-request-id: BA1CC5RQWVWFBY4D
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:26 GMT
ETag: "b4e5406cc3042bef75740e2d643a7ffd"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 15150

engitech.s3.amazonaws.com/images/fun-fact1.jpg

52.217.105.36

200 OK

28 kB

URL HTTP/1.1
engitech.s3.amazonaws.com/images/fun-fact1.jpg
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x480, components 3\012- data
Size
28 kB (27935 bytes)
Hash
6042674f5bc8aacc50b13f8b4cf6c8ca
18f29685463df2f47343298cd98f7ee8b2e2b107
85853a38508abccf8a741ae41f780d292ac5b6a96cece6ce74a0ccf1ed794405

HTTP Headers

GET /images/fun-fact1.jpg HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 9sS8kZEd+Bbl5+RDhspd1Sfp+jhHMj/cwkTW5B0+nkMUKmexGVsl+2fbsbxHwlj1S1KTdjhBZws=
x-amz-request-id: BA1FF2RC47SHEXZS
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Mon, 02 Mar 2020 04:31:30 GMT
ETag: "6042674f5bc8aacc50b13f8b4cf6c8ca"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 27935

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 18:53:49 GMT
expires: Thu, 09 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 2181
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17156, version 1.0\012- data
Size
17 kB (17156 bytes)
Hash
7e344afc10a492d516789f072fa6edfd
f38bd0b4e9d0577528f533b8ecd80801a0c6340f
c84423c305779f2aab07847a2e3870ac1ea4072e470d5eb149c01e0e0497eae3

HTTP Headers

GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 21:48:45 GMT
expires: Thu, 02 Nov 2023 21:48:45 GMT
cache-control: public, max-age=31536000
age: 596485
last-modified: Mon, 09 May 2022 18:33:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16920, version 1.0\012- data
Size
17 kB (16920 bytes)
Hash
875cd87a3bfd0a454005f2b07ba35328
2ee20c6c9d1549d8d38b538e00903a75f5e02307
976177894b0cca88ff93ab02c6da363f2d55cce5d940139db955b251fcdd19a6

HTTP Headers

GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8WAc5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:24:33 GMT
expires: Tue, 07 Nov 2023 21:24:33 GMT
cache-control: public, max-age=31536000
age: 165937
last-modified: Mon, 09 May 2022 18:31:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16980, version 1.0\012- data
Size
17 kB (16980 bytes)
Hash
8a97f720d330e75ccdbda9ae0e9f5e90
8e4fee916581ab48d385187705667cebc7500afe
97d5a594e7f76c7e50045b67667fd6b74b268515efe6425097be1b2647079787

HTTP Headers

GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 08:32:12 GMT
expires: Thu, 09 Nov 2023 08:32:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:33:54 GMT
content-type: font/woff2
age: 39478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2020/03/bg-map-dark.jpg

198.54.116.47

200 OK

23 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2020/03/bg-map-dark.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x755, components 3\012- data
Size
23 kB (22618 bytes)
Hash
56e55231d0caf6138726c4d4b2f4646b
ed96af3fac8a86ef1014c8e1f7104a59268a7886
0f0ffef753ca2037a92f3d98ccb16485de9d8032233e73d55903407370cff37e

HTTP Headers

GET /wp-content/uploads/2020/03/bg-map-dark.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2588.css?ver=1667298805
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:58 GMT
accept-ranges: bytes
content-length: 22618
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/themes/engitech/fonts/Flaticon.woff2

198.54.116.47

200 OK

12 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/fonts/Flaticon.woff2
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 11896, version 1.0\012- data
Size
12 kB (11896 bytes)
Hash
abe00f683e10e6978387f5cede633caf
1c4bb3ae0a74206f359b5a27dc37814d3317f440
ed0b55c2609cc4a6039c6fa571235f134ef2230e356491c488278c135fbc0dd6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/fonts/Flaticon.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/themes/engitech/css/flaticon.css?ver=6.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: font/woff2
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-length: 11896
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff

198.54.116.47

200 OK

14 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format, TrueType, length 14384, version 1.1\012- data
Size
14 kB (14384 bytes)
Hash
c7ab406db23cf2d880297f07a0ae35d3
53c9df3243c24df8728a0dd5be3c9c82ab7a38af
a9fdbefae33b742c5c1379fabbfa02d3491a9095ef762d8e23f135b66eefd7c9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/fonts/roboto/KFOmCnqEu92Fr1Mu4mxMKTU1Kg.woff HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: font/woff
last-modified: Fri, 14 Oct 2022 22:44:07 GMT
accept-ranges: bytes
content-length: 14384
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

nanosoftconsulting.com/wp-content/themes/engitech/fonts/fa-solid-900.woff2

198.54.116.47

200 OK

76 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/themes/engitech/fonts/fa-solid-900.woff2
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Size
76 kB (76084 bytes)
Hash
f6121be597a72928f54e7ab5b95512a1
b2c74520c3f506efbfefca867918e5ae28bd5222
787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/engitech/fonts/fa-solid-900.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/themes/engitech/css/font-awesome.min.css?ver=6.1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: font/woff2
last-modified: Fri, 14 Oct 2022 22:43:02 GMT
accept-ranges: bytes
content-length: 76084
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
f05060db8cca72f8a15047b770fedf12
b43d9644ac25bfa724dc3a593f7c5da3f9d7e66d
2521d56ff3a5cb1bd8584508a6ee6f05f565af9118ee2b3d99de9bf615b0ce58

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6112
Cache-Control: max-age=121363
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 19:30:10 GMT
Etag: "636b1ef5-117"
Expires: Fri, 11 Nov 2022 05:12:53 GMT
Last-Modified: Wed, 09 Nov 2022 03:31:01 GMT
Server: ECS (amb/6BB1)
X-Cache: HIT
Content-Length: 279

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

198.54.116.47

200 OK

77 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: font/woff2
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 76764
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

www.formilla.com/scripts/feedback.js

172.67.68.113

200 OK

54 kB

URL HTTP/2
www.formilla.com/scripts/feedback.js
IP
172.67.68.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
54 kB (54509 bytes)
Hash
134c48799befb9c20982342324aedbc2
6c5edda65dc68d4ef84cb6f8b41e3705f09b62c2
2d8eb1fc958f1cbb72bd5cdd40ed4d6a8b771fd7ac7393d6d2a6771244ed10a3

HTTP Headers

GET /scripts/feedback.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 19:30:11 GMT
content-type: application/javascript
cache-control: max-age=14400
last-modified: Fri, 30 Sep 2022 19:24:40 GMT
etag: W/"0c12492d5d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 184
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pcBWg1KrJH6pra6A1%2BznNS9Y5Gwn2Tk1Xo2fPcDBDI%2BuDaEOn92QCMLy1EQNuYN%2FeAsx9UYknJclgO6d%2B9uyEk7TxtMf81hqxBtfh1g2V%2FflnhnOLKEzyZXYyjJP7tOLwo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7678f622ced7b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2019/11/project6-720x720.jpg

198.54.116.47

200 OK

53 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2019/11/project6-720x720.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Size
53 kB (53093 bytes)
Hash
a706709f153e8130460cbf76038ada0d
507e581cccdf903bf75ef5be922e7db6ca03e0e1
97ad22fea6e04e0857c928a086ed64a2d4c1a116b1f55bb396c0b0d62e12a914

HTTP Headers

GET /wp-content/uploads/2019/11/project6-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:15 GMT
accept-ranges: bytes
content-length: 53093
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2019/11/project2-720x720.jpg

198.54.116.47

200 OK

37 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2019/11/project2-720x720.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Size
37 kB (36720 bytes)
Hash
7294facf393ce55ad988fc7e96276f30
7a7f7b92a7e8cc81a68a27124a37eb2be0294654
2048915466d456e1e6a01d7500fbbfe05a7dc210c4d758c7fe8ebc033cdab5b8

HTTP Headers

GET /wp-content/uploads/2019/11/project2-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:16 GMT
accept-ranges: bytes
content-length: 36720
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2019/11/project11-720x720.jpg

198.54.116.47

200 OK

67 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2019/11/project11-720x720.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Size
67 kB (67347 bytes)
Hash
4ad5d277855f83eb46de8e07a56c9794
0808d5cd5524ca3ca6bf5d386968ee6ce76601a6
475027fc64950c079951e66f7d5a20158d447181d26f89076c092636651a1a92

HTTP Headers

GET /wp-content/uploads/2019/11/project11-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:14 GMT
accept-ranges: bytes
content-length: 67347
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2019/11/project10-720x720.jpg

198.54.116.47

200 OK

86 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2019/11/project10-720x720.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Size
86 kB (85826 bytes)
Hash
bd214ee4374a7b7a35ab59562c3cd61f
e7b361ff8c51b73b3ca4acaf58253e43ae15e60f
15577e5059f266a6cf249615fcf509b55373c88d09f21b819ce22f82f83c2a59

HTTP Headers

GET /wp-content/uploads/2019/11/project10-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:52:14 GMT
accept-ranges: bytes
content-length: 85826
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2019/11/project4-720x720.jpg

198.54.116.47

200 OK

109 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2019/11/project4-720x720.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Size
109 kB (109093 bytes)
Hash
013d4c9f0bd97b27dbf128234c63a941
d13ebd651f193255fbdceeff118b9e3fceafa9d0
09c61bbd506577cd9b3eaf840636465515f2cc6c63b3d19ad4c33afd008d6589

HTTP Headers

GET /wp-content/uploads/2019/11/project4-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:51:47 GMT
accept-ranges: bytes
content-length: 109093
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

198.54.116.47

200 OK

78 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: font/woff2
last-modified: Thu, 17 Jun 2021 14:07:24 GMT
accept-ranges: bytes
content-length: 78196
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2020/03/image-banner-home5.png

198.54.116.47

200 OK

123 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2020/03/image-banner-home5.png
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 858 x 494, 8-bit colormap, non-interlaced\012- data
Size
123 kB (122780 bytes)
Hash
afc362f08896022c32e65b282f1f7718
62a2b11f79e941a490d98cad46ee6e9c80c69530
a5a50fd47ea0313383ca29c5c92e9b3a8f2ac94ca4c9f47edeacc9d134c82f87

HTTP Headers

GET /wp-content/uploads/2020/03/image-banner-home5.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: image/png
last-modified: Fri, 14 Oct 2022 22:49:58 GMT
accept-ranges: bytes
content-length: 122780
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2019/11/project1-720x720.jpg

198.54.116.47

200 OK

82 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2019/11/project1-720x720.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 720x720, components 3\012- data
Size
82 kB (82194 bytes)
Hash
1b6ff249c7b972879c2de0acc5798763
d76adac5fe7d7465747e4b731d623fc0ae434cef
8abada4aa48465946f7d96d8640e93e47f0f33db9cb7f807f13404336e0d18e5

HTTP Headers

GET /wp-content/uploads/2019/11/project1-720x720.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:10 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:51:49 GMT
accept-ranges: bytes
content-length: 82194
date: Wed, 09 Nov 2022 19:30:10 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js

198.54.116.47

200 OK

9.0 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (28962)
Size
9.0 kB (9020 bytes)
Hash
959301129d94dcf16a12123a941fef4f
ce1d0fd9027eb0a814a9a8b683c76c919431335b
eff175c40af26e5513bc4ab481db66d4e7799fc8ba9c1722e0bdf11e34422430

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/lightbox.2d166d71ba2a6a9e66fd.bundle.min.js HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9020
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0

198.54.116.47

200 OK

3.3 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (10544)
Size
3.3 kB (3268 bytes)
Hash
3821415a39954c48c7927e661467c6b8
dfe1116a0efc9898cb6caf094213880da83d6990
5f7f5b28f47c366a0bb70435dc3b2253278222c92429f013084f71fd7d29a32e

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: application/javascript
last-modified: Wed, 17 Nov 2021 13:27:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3268
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0

198.54.116.47

200 OK

1.0 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (2620), with no line terminators
Size
1.0 kB (1047 bytes)
Hash
906c4decdcd32482c1cf583b07925d30
30e726b9febb4b651544266df656a21251f0e8e3
53f86e9641d0e35772d6b54294cc6dd685fb9a376a1baad151da120fef609423

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: application/javascript
last-modified: Mon, 01 Aug 2022 04:11:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1047
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2022/10/obalonye-pcccc-300x300.jpeg

198.54.116.47

200 OK

16 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2022/10/obalonye-pcccc-300x300.jpeg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Size
16 kB (15550 bytes)
Hash
49238a72ad0c8e8fbeeb7d4352e00450
2b3ffd5539cfe86f8fd6a319d9a8a82f702725f0
b4c3e1c6b101a9b62d94f248e57cbc1637ef6a0715e52f39fd33243d538c4d37

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2022/10/obalonye-pcccc-300x300.jpeg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 23:39:44 GMT
accept-ranges: bytes
content-length: 15550
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2022/10/img-9-nano-home-page-7.webp

198.54.116.47

200 OK

121 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2022/10/img-9-nano-home-page-7.webp
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
121 kB (121350 bytes)
Hash
e196b70a4bb9e11291064c3311b918a5
d7c455738f075fb86519766abcc69007eafbdfb3
cd070e323cbb080be03f1d697d4692ef02ee5cfa66e80b51211326e59d307179

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2022/10/img-9-nano-home-page-7.webp HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/webp
last-modified: Sat, 22 Oct 2022 11:27:45 GMT
accept-ranges: bytes
content-length: 121350
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-soft-logo-2.png

198.54.116.47

200 OK

172 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2020/09/Nano-soft-logo-2.png
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 4014 x 807, 8-bit/color RGBA, non-interlaced\012- data
Size
172 kB (172152 bytes)
Hash
71b1d2a407138415e518e8ccf62c7686
c9619d9037f54472c758edeeab09078f640ce719
15c3bc1e52539c02d7016bf91f52243a6e37f23d5a584dfe1730caabb7191927

HTTP Headers

GET /wp-content/uploads/2020/09/Nano-soft-logo-2.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/png
last-modified: Fri, 21 Oct 2022 12:08:21 GMT
accept-ranges: bytes
content-length: 172152
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2022/10/petter-lagson-MSWD-PDMizQ-unsplash-1536x1024-1-601x520.jpg

198.54.116.47

200 OK

27 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2022/10/petter-lagson-MSWD-PDMizQ-unsplash-1536x1024-1-601x520.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 601x520, components 3\012- data
Size
27 kB (27352 bytes)
Hash
d94fcd9474fc21c44a0b6d6652ee5389
95f468e12c83d609eb9f54344ca34444380f4b79
c3c2425d3bf64b25800e3ba2c063ddeb400e1286de29bbdd096c69660a33684a

HTTP Headers

GET /wp-content/uploads/2022/10/petter-lagson-MSWD-PDMizQ-unsplash-1536x1024-1-601x520.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/jpeg
last-modified: Sat, 22 Oct 2022 04:50:51 GMT
accept-ranges: bytes
content-length: 27352
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2020/01/member2.jpg

198.54.116.47

200 OK

107 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2020/01/member2.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 720x986, components 3\012- data
Size
107 kB (107104 bytes)
Hash
810edc5f9ec9592822f96f79ff20ff48
671276d2c48aa9b4edb29220dc9c91f81e70d1c4
560f9e6a9c682d966c7b00f536ed558ee3ef6246f9a7477d45ce61767f789b1d

HTTP Headers

GET /wp-content/uploads/2020/01/member2.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:04 GMT
accept-ranges: bytes
content-length: 107104
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2022/10/Nano-Icon1.png

198.54.116.47

200 OK

33 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2022/10/Nano-Icon1.png
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 734 x 735, 8-bit/color RGBA, non-interlaced\012- data
Size
33 kB (33359 bytes)
Hash
afeb8722f467c93b722faaa12360174d
2e39982b5a327579a074f7193fa4c55fdc8984ac
f7c16fdad02d75ea4f749bf4c77061593e8245f63d06c29fc395620e8d8c8b54

HTTP Headers

GET /wp-content/uploads/2022/10/Nano-Icon1.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/png
last-modified: Fri, 14 Oct 2022 23:21:27 GMT
accept-ranges: bytes
content-length: 33359
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

198.54.116.47

200 OK

599 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1320)
Size
599 B (599 bytes)
Hash
98c12ae6f19c4a36caad11ce6ead80c8
b94437212ced13a59982141c0c33879bb2cba841
425d43ef788e93fbd1f6b46a992e555d03b258a8afe37ade9701666b7ffb8372

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 599
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2020/01/member3.jpg

198.54.116.47

200 OK

155 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2020/01/member3.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 720x986, components 3\012- data
Size
155 kB (155368 bytes)
Hash
14e00a03a5bdf82d080286da355e3a04
7f8b2d8d67531126d597d0a9db49f1ea3b5b1d6d
43df6fd475fc42d4e30ca48eef2a7c5d44c64649d305b1a79ac16e269430df7e

HTTP Headers

GET /wp-content/uploads/2020/01/member3.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:04 GMT
accept-ranges: bytes
content-length: 155368
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/progress.ca55d33bb06cee4e6f02.bundle.min.js

198.54.116.47

200 OK

342 B

URL HTTP/2
nanosoftconsulting.com/wp-content/plugins/elementor/assets/js/progress.ca55d33bb06cee4e6f02.bundle.min.js
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (615)
Size
342 B (342 bytes)
Hash
f98d39cd13166c7e0851ca0a1c4ab722
c2bb0fac57fefdc2f56276f8ac5cd7b7a815917c
08f84a12dc85b1fcc3906a1846e731020dd274486327241ce2b2bc4038282385

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/progress.ca55d33bb06cee4e6f02.bundle.min.js HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: application/javascript
last-modified: Sun, 30 Oct 2022 16:54:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 342
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2022/10/what-is-cloud-computing.jpeg

198.54.116.47

200 OK

201 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2022/10/what-is-cloud-computing.jpeg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=4765, bps=206, PhotometricIntepretation=RGB, description=Planet Smart City at Night, manufacturer=NIKON CORPORATION, model=NIKON D800, orientation=upper-left, width=7147], baseline, precision 8, 600x400, components 3\012- data
Size
201 kB (200938 bytes)
Hash
eb784cf759d16c0993da67aaa4b3f96b
8ff327ec976d8397e889f8fe7f67775f9ef20112
bad891f0f951ed8ec31cb3b340ea43f2b7554830a1f982b3422427ae97378a7d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2022/10/what-is-cloud-computing.jpeg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/jpeg
last-modified: Sat, 22 Oct 2022 04:52:08 GMT
accept-ranges: bytes
content-length: 200938
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2022/10/Nano-Icon1-300x300.png

198.54.116.47

200 OK

63 kB

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2022/10/Nano-Icon1-300x300.png
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
63 kB (62764 bytes)
Hash
5dda4728f0fb7125f7d6609cf56cf59e
a107488d62bac97a56f74677b6ae87b3c154a892
29ff947b4e9399721e21a793e9a3a4d511799f10521888cbab7fc574992c9bb1

HTTP Headers

GET /wp-content/uploads/2022/10/Nano-Icon1-300x300.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:12 GMT
content-type: image/png
last-modified: Fri, 14 Oct 2022 23:21:27 GMT
accept-ranges: bytes
content-length: 62764
date: Wed, 09 Nov 2022 19:30:12 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

www.formilla.com/remoteAssets/js/widgets/v4/autosize.min.js

172.67.68.113

200 OK

19 kB

URL HTTP/2
www.formilla.com/remoteAssets/js/widgets/v4/autosize.min.js
IP
172.67.68.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3627), with CRLF line terminators
Size
19 kB (18751 bytes)
Hash
bda886ae9cf3eb307cd12b586a4ef6be
bca70b9d287e32ed0729cc8589fd5602c4f69985
e440fa137653d540198b036aebdc21b369e6fa63ba152d186e98d72daf2c6641

HTTP Headers

GET /remoteAssets/js/widgets/v4/autosize.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 19:30:12 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Wed, 21 Feb 2018 12:57:02 GMT
etag: W/"063697713abd31:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 444247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kzpcrQIS0Tyt5beZKRzSXY6QC8RRgW5aGhcFbqpnNCg9lzhAdfNJ4u1za%2FqrFhoh7gQdw2MEfI0UOecaPErICgNyDUK4LpvPV2Z%2FHx%2F7kayAUInQuSvZzC1mdK4WB32LCu8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7678f629484db4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.formilla.com/remoteAssets/fonts/widgets/v4/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

172.67.68.113

200 OK

7.9 kB

URL HTTP/2
www.formilla.com/remoteAssets/fonts/widgets/v4/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
172.67.68.113:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /remoteAssets/fonts/widgets/v4/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://www.formilla.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 19:30:12 GMT
content-type: application/font-woff2
content-length: 7884
cache-control: max-age=14400
last-modified: Wed, 19 Oct 2022 22:22:36 GMT
etag: "de84714a9e4d81:0"
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gCxt6hXAwkRgh%2B5wuGU8gHIjbh4SL8jDyM8%2FIE6rdMAaK6lQHDC5inWsh1yZ8QsDD4TrydvFvtsv96UNH3UPLp3U6VN%2BE0CZpdJNYDNT1Da2asg30t13Q4guDzruD08PdVc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7678f62a69dfb505-OSL
X-Firefox-Spdy: h2

www.formilla.com/remoteAssets/css/widgets/v4/jquery.mCustomScrollbar.min.css

172.67.68.113

200 OK

13 kB

URL HTTP/2
www.formilla.com/remoteAssets/css/widgets/v4/jquery.mCustomScrollbar.min.css
IP
172.67.68.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (42839), with no line terminators
Size
13 kB (12643 bytes)
Hash
94b052440e648e47e011339df230db08
fc5e27d76f2d80d820ed52d7e9adfd86602fe2f2
531b87f375e12689df05256dc17199cfbb21794afbfeb04c318dab36f653af94

HTTP Headers

GET /remoteAssets/css/widgets/v4/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 19:30:12 GMT
content-type: text/css
cache-control: max-age=604800
last-modified: Wed, 21 Feb 2018 12:57:02 GMT
etag: W/"063697713abd31:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 481588
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iqLpaCSKoAkvL5fGi7W%2FEDLKMF7sW8PG07Sdj7o6dxiqAQqTdut%2FByLiR%2Ff0jkqC4DOgP3LaCp6xV9Vjx5o%2FFsQnbVM0MSnPLbPtUOR85kQ2%2BaDa8%2BbtiVjW%2BozfvA4i%2B0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7678f629483db4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CNunito+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 09 Nov 2022 19:30:09 GMT
date: Wed, 09 Nov 2022 19:30:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2849.css?ver=1667147302

198.54.116.47

200 OK

0 B

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/elementor/css/post-2849.css?ver=1667147302
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-2849.css?ver=1667147302 HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:09 GMT
content-type: text/css
last-modified: Sun, 30 Oct 2022 16:28:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1216
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

www.formilla.com/remoteAssets/js/widgets/v4/jquery-3.6.0.min.js

172.67.68.113

200 OK

0 B

URL HTTP/2
www.formilla.com/remoteAssets/js/widgets/v4/jquery-3.6.0.min.js
IP
172.67.68.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /remoteAssets/js/widgets/v4/jquery-3.6.0.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 19:30:12 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Fri, 18 Mar 2022 19:47:51 GMT
etag: W/"737195d13bd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 397727
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QlUl%2BcDNb0YbmaKcI5I9MxNcaGj75KUVJ0SmYjRNv%2BM65TXRR3M65aPFqk7HgbAqRFfda296WJ57gkHNknAm9iKjapYRp50X1vKNG6cfJYjXWeiORnTOTj%2F892OQiAAMYsU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7678f6294841b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.formilla.com/scripts/fileAttachments.js

172.67.68.113

200 OK

0 B

URL HTTP/2
www.formilla.com/scripts/fileAttachments.js
IP
172.67.68.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /scripts/fileAttachments.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 19:30:12 GMT
content-type: application/javascript
cache-control: max-age=14400
last-modified: Fri, 23 Apr 2021 12:02:50 GMT
etag: W/"0512953838d71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
cf-cache-status: HIT
age: 123
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U0KGZbeSR%2FRYWTMAUAsEkr6%2Fj0Qsqyv2zJsb6aY2LQLh3VGeDvqzqcqBAKEME4QKB0k8%2Bq4pIRAjP7uUWfizixRWVqA1xlwnOFxm%2BMC1WlCsVqGT2b59t%2Fry2jJgXELO6G0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7678f6294850b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

nanosoftconsulting.com/wp-content/uploads/2022/10/SucculentPi-Part-2-Title-Image-1536x787-1-601x520.png

198.54.116.47

200 OK

0 B

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2022/10/SucculentPi-Part-2-Title-Image-1536x787-1-601x520.png
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/10/SucculentPi-Part-2-Title-Image-1536x787-1-601x520.png HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/png
last-modified: Sat, 22 Oct 2022 04:48:42 GMT
accept-ranges: bytes
content-length: 181636
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

www.formilla.com/remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js

172.67.68.113

200 OK

0 B

URL HTTP/2
www.formilla.com/remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js
IP
172.67.68.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /remoteAssets/js/widgets/v4/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 19:30:12 GMT
content-type: application/javascript
cache-control: max-age=604800
last-modified: Fri, 18 Mar 2022 19:47:51 GMT
etag: W/"c9795d13bd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
access-control-allow-origin: *
cf-cache-status: HIT
age: 14247
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sV9VTbwsDv16xi7zdQqbVMUt7WOyuasdWg%2BLRqXR6MVGfpggeAspcvnLVkCJiLSHdstF0xXrtlnw66l1uIvBl7oQ8T8fEza3cqnTYDbExsAEyQekypuXUBj53neJpTOXXsM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7678f6294847b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.formilla.com/formilla-chat.asmx/LoadFormillaChatButton

172.67.68.113

200 OK

0 B

URL HTTP/2
www.formilla.com/formilla-chat.asmx/LoadFormillaChatButton
IP
172.67.68.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /formilla-chat.asmx/LoadFormillaChatButton HTTP/1.1
Host: www.formilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 977
Origin: https://nanosoftconsulting.com
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 19:30:11 GMT
content-type: application/json
cache-control: private, max-age=0
vary: Accept-Encoding
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
p3p: CP="ADMa DEVa HISa OUR IND DSP CAO COR"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l6NOSYZ3HlTGGQbsXbjiPm%2FgW8zjBwN1mYqHECGxoLzvciKlpv%2BoFMTCzobVUOipQRdB%2BvYjRcjrlaBd4EiaDIgVH1BxiMWcU00hDbvPalMd7YcjJP5hNSruNWfAYmcj63I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7678f624580bb505-OSL
content-encoding: br
X-Firefox-Spdy: h2

nanosoftconsulting.com/

198.54.116.47

200 OK

0 B

URL HTTP/2
nanosoftconsulting.com/
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://nanosoftconsulting.com/wp-json/>; rel="https://api.w.org/", <https://nanosoftconsulting.com/wp-json/wp/v2/pages/2588>; rel="alternate"; type="application/json", <https://nanosoftconsulting.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Wed, 09 Nov 2022 19:30:09 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CNunito+Sans%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 09 Nov 2022 19:30:09 GMT
date: Wed, 09 Nov 2022 19:30:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

engitech.s3.amazonaws.com/images/bg-banner-home5.png

52.217.105.36

200 OK

0 B

URL HTTP/1.1
engitech.s3.amazonaws.com/images/bg-banner-home5.png
IP
52.217.105.36:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/bg-banner-home5.png HTTP/1.1
Host: engitech.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nanosoftconsulting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: RrHd46tNUtFW5IzicLRJUpalHPQ4AUuehFyxg2v3U6/zPzEXmFLBwBsQGcl33W3lnCbExcbunoc=
x-amz-request-id: BA16K4K3KJXC9ZEV
Date: Wed, 09 Nov 2022 19:30:11 GMT
Last-Modified: Fri, 13 Mar 2020 08:59:41 GMT
ETag: "b00776637242995d70aa24e93bcc73a8"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 253907

nanosoftconsulting.com/wp-content/uploads/2020/01/member4.jpg

198.54.116.47

200 OK

0 B

URL HTTP/2
nanosoftconsulting.com/wp-content/uploads/2020/01/member4.jpg
IP
198.54.116.47:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2020/01/member4.jpg HTTP/1.1
Host: nanosoftconsulting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nanosoftconsulting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 16 Nov 2022 19:30:11 GMT
content-type: image/jpeg
last-modified: Fri, 14 Oct 2022 22:49:05 GMT
accept-ranges: bytes
content-length: 103656
date: Wed, 09 Nov 2022 19:30:11 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations