parafarmaciapiave.it/
301 Moved Permanently 162 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 25 Sep 2022 14:46:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://parafarmaciapiave.it/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3949
Expires: Sun, 25 Sep 2022 15:52:17 GMT
Date: Sun, 25 Sep 2022 14:46:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 14:14:59 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JKWAk6VGCJTFPk-Q82gNKeqRCGMuYajqHW8C1Z6f0n1wup9ZuGrCUg==
Age: 1889
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: e84SrvQ2YYFKXmRA6gQyqSmwypFIJUJyNKju45BvhRmuoFohW6RmVw==
age: 36674
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b247434e063bee22275d65a5858db84c
50f7962c0c1b5eb1115598344b2e1050f5da035e
0ebf3913014df1b047afc9ee7f3aaa176bf12b934b5c65fae5cc6f636a4a3020
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0EBF3913014DF1B047AFC9EE7F3AAA176BF12B934B5C65FAE5CC6F636A4A3020"
Last-Modified: Fri, 23 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Sun, 25 Sep 2022 20:45:46 GMT
Date: Sun, 25 Sep 2022 14:46:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 14:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 14:07:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SZIiGLiio6ZyDJFa5Dn2rTg-0j4OoBQoGKygDv6ft67Yt5VWb_3Qsg==
Age: 2531
ocsp.digicert.com/
200 OK 471 B IP
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5174
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:46:28 GMT
Last-Modified: Sun, 25 Sep 2022 13:20:14 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GYmv7OaweTHYlOT1s6CUlg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yZfc7WDg3qNPuhxWHuMQV3VZGTg=
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/minify-font-icons/font-nasa-icons/nasa-font.woff
200 OK 20 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/minify-font-icons/font-nasa-icons/nasa-font.woff
IP
File type Web Open Font Format, CFF, length 19476, version 1.0\012- data
Hash 4cb7dcef57d57d4157d2f9cd41030327
cb9fb8dc4957a793db6fe09785fef6e2abd01c40
8e62ce4145871cec5df0e8acdef46361b153a9f954743d12f57e784c9c8d2eb4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elessi-theme/assets/minify-font-icons/font-nasa-icons/nasa-font.woff HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/font-woff
content-length: 19476
last-modified: Wed, 19 Jan 2022 15:40:00 GMT
etag: "61e830d0-4c14"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.iubenda.com/cons/iubenda_cons.js
200 OK 131 B URL HTTP/2 cdn.iubenda.com/cons/iubenda_cons.js
IP
File type ASCII text, with no line terminators
Hash e22344b34696f001235d3c31a7c1611c
06231800decffe4f20c66c9f55f0f349d14d00f3
090c8fe95baf28728554038db371143ba21031fecec5688042e3e516c8c75d6e
GET /cons/iubenda_cons.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: br
content-type: application/javascript
etag: "632d5990-83"
last-modified: Fri, 23 Sep 2022 07:00:32 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
content-length: 131
cache-control: public, must-revalidate, proxy-revalidate, max-age=10800
expires: Sun, 25 Sep 2022 17:46:30 GMT
date: Sun, 25 Sep 2022 14:46:30 GMT
X-Firefox-Spdy: h2
cdn.iubenda.com/cs/iubenda_cs.js
200 OK 429 B URL HTTP/2 cdn.iubenda.com/cs/iubenda_cs.js
IP
File type ASCII text, with very long lines (596)
Hash 9df441f6446e7170a5bb2eac9e011def
0acdca0a52d3e5323061cad90402d87ddbfa0dea
5deab750ad5b3d4daeef027eac06a2aab0477e59e114d55e22d14e792ca4651e
GET /cs/iubenda_cs.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
etag: "632d5991-1ad"
last-modified: Fri, 23 Sep 2022 07:00:33 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
content-length: 429
cache-control: public, must-revalidate, proxy-revalidate, max-age=10800
expires: Sun, 25 Sep 2022 17:46:30 GMT
date: Sun, 25 Sep 2022 14:46:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.iubenda.com/cs/ccpa/stub.js
200 OK 1.5 kB URL HTTP/2 cdn.iubenda.com/cs/ccpa/stub.js
IP
File type ASCII text, with very long lines (4106), with no line terminators
Hash 91b6124cb2a3ad299202f19c85f860e8
193cc7f0c63d238adaa60e9a9f13834151a070e6
31a447a17b035b7ed13a5a0f706276fc6200f3032b264e0bc9e79a8a64fa3ef1
GET /cs/ccpa/stub.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: br
content-type: application/javascript
etag: "632d5991-5f7"
last-modified: Fri, 23 Sep 2022 07:00:33 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
content-length: 1527
cache-control: public, must-revalidate, proxy-revalidate, max-age=86400
expires: Mon, 26 Sep 2022 14:46:30 GMT
date: Sun, 25 Sep 2022 14:46:30 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:46:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/minify-font-icons/font-awesome-4.7.0/fontawesome-webfont.woff2
200 OK 77 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/minify-font-icons/font-awesome-4.7.0/fontawesome-webfont.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elessi-theme/assets/minify-font-icons/font-awesome-4.7.0/fontawesome-webfont.woff2 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: font/woff2
content-length: 77160
last-modified: Wed, 19 Jan 2022 15:40:00 GMT
etag: "61e830d0-12d68"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/minify-font-icons/font-pe-icon-7-stroke/Pe-icon-7-stroke.woff
200 OK 59 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/minify-font-icons/font-pe-icon-7-stroke/Pe-icon-7-stroke.woff
IP
File type Web Open Font Format, TrueType, length 58556, version 1.0\012- data
Hash b38ef310874bdd008ac14ef3db939032
7e544bb11b7655998db6f324c612f7ffbf0ab66e
6fb4217048f333e23e0fd0ba2ab05e05fd7500f86a5a80a7cf04a2f94b257bec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elessi-theme/assets/minify-font-icons/font-pe-icon-7-stroke/Pe-icon-7-stroke.woff HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/font-woff
content-length: 58556
last-modified: Wed, 19 Jan 2022 15:40:00 GMT
etag: "61e830d0-e4bc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.iubenda.com/cons/iubenda_cons/core-8fdcb29dc2a89f2172df78c5f7cb048f.js
200 OK 6.2 kB URL HTTP/2 cdn.iubenda.com/cons/iubenda_cons/core-8fdcb29dc2a89f2172df78c5f7cb048f.js
IP
File type ASCII text, with very long lines (21526), with no line terminators
Hash 30303ef23fdd6b80ed3d8e9807127ca0
3f1599dc1ad99c3d6e2703cbf5b619105afa3a57
b136e0045e98f0df1ef3de7b55da751f071fcd5e5718c1b7fbbcb2ca1f2a030d
GET /cons/iubenda_cons/core-8fdcb29dc2a89f2172df78c5f7cb048f.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: br
content-type: application/javascript
etag: "632d5990-185c"
last-modified: Fri, 23 Sep 2022 07:00:32 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
content-length: 6236
cache-control: public, must-revalidate, proxy-revalidate, max-age=31536000
expires: Mon, 25 Sep 2023 14:46:30 GMT
date: Sun, 25 Sep 2022 14:46:30 GMT
X-Firefox-Spdy: h2
cdn.iubenda.com/cookie_solution/iubenda_cs/1.41.0/core-it.js
200 OK 72 kB URL HTTP/2 cdn.iubenda.com/cookie_solution/iubenda_cs/1.41.0/core-it.js
IP
File type Unicode text, UTF-8 text, with very long lines (65288), with no line terminators
Hash 39a97eab5e63baae636d7ccf80d806b5
6d506ee7a1045a0791be184265f3b20632fa041a
95bb9c9b291cb4e9823f60240cafb7f563b003e72e5c3be3d350e1614ed9255c
GET /cookie_solution/iubenda_cs/1.41.0/core-it.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
etag: "632d5991-1196c"
last-modified: Fri, 23 Sep 2022 07:00:33 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
content-length: 72044
cache-control: public, must-revalidate, proxy-revalidate, max-age=31536000
expires: Mon, 25 Sep 2023 14:46:30 GMT
date: Sun, 25 Sep 2022 14:46:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:46:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.parafarmaciapiave.it/wp-content/uploads/2022/09/parafarmacia-piave-sinalunga-shiatu-e-gravidanza-380x380.jpg
200 OK 34 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/09/parafarmacia-piave-sinalunga-shiatu-e-gravidanza-380x380.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 380x380, components 3\012- data
Hash 05babbfc1945f1876d9c3fbe8bb2d152
0712e8c0b81b9f96fe77b207ac3d28e0b00218de
ebbb189e7bc228d3c5b7c40bb30d167f66f420da82baae7864ee51fcfbfe7174
GET /wp-content/uploads/2022/09/parafarmacia-piave-sinalunga-shiatu-e-gravidanza-380x380.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 34249
last-modified: Wed, 21 Sep 2022 13:27:28 GMT
etag: "632b1140-85c9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/IMO.jpg
200 OK 6.3 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/IMO.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x200, components 3\012- data
Hash 21cd083eaa97b2bef345108ccaa4b129
75dc1c923e03d553d5bedae9613ac01fd10f5cb1
aebc6d88f16232f054c78c20fc592968974f8656597010df0930bac2fcbb2772
GET /wp-content/uploads/2022/04/IMO.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 6336
last-modified: Tue, 05 Apr 2022 07:57:14 GMT
etag: "624bf65a-18c0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/03/o.1847.jpg
200 OK 10 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/03/o.1847.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 300x200, components 3\012- data
Hash 193cc58ff29cdc4905312164474c7680
9a12ab9f987bf29a2263422957277dc8b2a550f5
c3fe18f7e190f95a71a13611445c8693aef5023bbe32339c0e97e933949d4938
GET /wp-content/uploads/2022/03/o.1847.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 10215
last-modified: Mon, 07 Mar 2022 14:56:55 GMT
etag: "62261d37-27e7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/garda-1.jpg
200 OK 10 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/garda-1.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x200, components 3\012- data
Hash af74a3839414d817950a7787b15936ee
b1b5f71c9fa9753943f97390cb4641eec5a55517
357c8fc0941cdbdda269f1400ee4652e75ab294875683fa26722e366e9c73e88
GET /wp-content/uploads/2022/04/garda-1.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 10399
last-modified: Tue, 05 Apr 2022 09:13:40 GMT
etag: "624c0844-289f"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2021/04/PARAFARMACIA-PIAVE_top-2000px.jpg
200 OK 65 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2021/04/PARAFARMACIA-PIAVE_top-2000px.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 2000x701, components 3\012- data
Hash 15fc72c296315aea125447862e4734b9
e84041d4f722b254b59a868a87710f3a3435cb81
6b573ab95c1cfe4ad7acfb18c6c35348804f206bd61489e54cfef6ca0616bc58
GET /wp-content/uploads/2021/04/PARAFARMACIA-PIAVE_top-2000px.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 65186
last-modified: Wed, 07 Apr 2021 18:11:18 GMT
etag: "606df5c6-fea2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/09/bionike-1.png
200 OK 35 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/09/bionike-1.png
IP
File type PNG image data, 300 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 18f03d387c3775d3aff5fa0465fb1775
de69aba953b236c70750d0981877021d91db4c25
848e2d73d6bc366773afaa2cae5ef8ac5335b35ab9c1205b333144021b603d31
GET /wp-content/uploads/2022/09/bionike-1.png HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/png
content-length: 35367
last-modified: Wed, 21 Sep 2022 07:46:37 GMT
etag: "632ac15d-8a27"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/dermotivante.jpg
200 OK 8.2 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/dermotivante.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x200, components 3\012- data
Hash 46d9c5a6ddc58449692aab9c6a3f187d
587132e052c717038951617300a05a7a079bcf0c
e95a8d43e3d14de4ef8a9a37193b6810eb8af7051bac81cb5a8be11cf5e945da
GET /wp-content/uploads/2022/04/dermotivante.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 8232
last-modified: Tue, 05 Apr 2022 07:59:17 GMT
etag: "624bf6d5-2028"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/oti-1.jpg
200 OK 4.0 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/oti-1.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x200, components 3\012- data
Hash 95dbb8b093d53d18fce460c82816f925
6bad310ba4b5009cc1e4e1078749d5dba78da3da
553b253a802768180b6acd61a71bd10321f1896c9820b6c8ec4d8bda724b7acf
GET /wp-content/uploads/2022/04/oti-1.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 3959
last-modified: Tue, 05 Apr 2022 09:12:34 GMT
etag: "624c0802-f77"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/name.jpg
200 OK 8.3 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/name.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x200, components 3\012- data
Hash dbe69a02dcb3c28985667fd9f8263d56
88aa74aa6542ea54d34348a4d998812376d38ee3
a7efa18b5db2244aba5551fa5d72e2c95f48f5e0928918a694c5e58a5b92bbf6
GET /wp-content/uploads/2022/04/name.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 8259
last-modified: Tue, 05 Apr 2022 09:13:12 GMT
etag: "624c0828-2043"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/03/Logo-Rilastil@2x.png
200 OK 18 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/03/Logo-Rilastil@2x.png
IP
File type PNG image data, 400 x 244, 8-bit/color RGBA, non-interlaced\012- data
Hash b7ef1714582a1a0b59279eb15e8d0042
a9296bd36aec9666a0124724ebcb5459049d4c2e
dc5d542b2e3b195ecc064778edda79802a29d45bee1186f13f3b246e37c00fcc
GET /wp-content/uploads/2022/03/Logo-Rilastil@2x.png HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/png
content-length: 18464
last-modified: Mon, 07 Mar 2022 14:58:18 GMT
etag: "62261d8a-4820"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/paarma.jpg
200 OK 8.4 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/paarma.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x200, components 3\012- data
Hash c1e4d9371c6dfa81b809f2f5dba0412b
66311e7f2f2025ccf4f1342c105b91672186f590
64d6dcd8cc0d3033a4afa372638df9997717a2a2329c3a40b2b28184dd1eeaab
GET /wp-content/uploads/2022/04/paarma.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 8367
last-modified: Tue, 05 Apr 2022 09:17:32 GMT
etag: "624c092c-20af"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/09/logo-playpixel-mini.png
200 OK 4.9 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/09/logo-playpixel-mini.png
IP
File type PNG image data, 120 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash 6cbaa643185d32e16cdaa8c3786e3d54
ddb212a1c3f2bc8c32804319379e1600866fff93
b7d75a991c77faaaa5af70012d62cc7df6e98b00046b5f4b8bc209911fc97ec9
GET /wp-content/uploads/2022/09/logo-playpixel-mini.png HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/png
content-length: 4858
last-modified: Wed, 21 Sep 2022 07:56:35 GMT
etag: "632ac3b3-12fa"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 14:46:30 GMT
Connection: keep-alive
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/js/min/wow.min.js
200 OK 3.0 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/js/min/wow.min.js
IP
File type ASCII text, with very long lines (8070), with no line terminators
Hash 6588ede3bac8553d0b80f95e2263f4dd
1384f1e9cdc6ac1670bd7299707bc54b83ef2452
25da5d23353c58a680edac301e6f1d4f1a54bafd98d024e17d960cbc0b287780
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elessi-theme/assets/js/min/wow.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Wed, 19 Jan 2022 15:40:00 GMT
etag: W/"61e830d0-1f86"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 14:46:30 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 14:46:30 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 16 kB IP
ASN #20940 Akamai International B.V.
Hash 573b5ce2d8a9838236b8a543c5c84307
4cb52430faca701fef9b90730f2515cb8d80d611
457212430288a93848b84ce75518be8bfbbbb98a0969cf360fb0591a06c0207d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 14:46:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d59e1bbd58ff8c5fe5faecb58149601
ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd
c16a2adaeaabbe45801ab5d12ceaeab587b525b4959933f53a9c8dcdb12aec68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: 3092c81c-f703-403a-b718-e18f035f9464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJQFUWIAMF7Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-565f665c7e34294079703141;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hc0cpj1kMbAQqcM0ooSgEdS8nPP0m4FJD1bHdY7jN2OENNsJF_gluA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 08:16:33 GMT
age: 23397
etag: "ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d35df1f57d0736995615b0d8f50b8a3
8324b383c89771a2b1155ec6d069bf5a47338acd
9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4723
x-amzn-requestid: 4be5e73a-e648-40a4-8566-cb3417e5843b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EKHYcoAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7880-4682134275162910149d09ec;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 67JgCuzx90IROr0JQJq0jbsntmkbD0dReobbS4G1V6pPD22qOosLrg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:15:14 GMT
age: 59476
etag: "8324b383c89771a2b1155ec6d069bf5a47338acd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:19 GMT
age: 61751
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714af732a9aa1db2b13ffb62810fd532
358e74de395352a9529ff1c17856daf8900888c5
1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LryqVGSkKbiNOwcqXMULY9FXbOuZBBenjgGPDME3NZLZOdp5divXmw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:02:29 GMT
age: 60241
etag: "358e74de395352a9529ff1c17856daf8900888c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2bbb3856eeac20d0ee556c96144bf6c
76ac1f33cd006227162e12e7142e754562bec0c0
1e3f6551d401346b6d809d8feb9b36a9e0006f99f518d1130aa9bd630bfb6801
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12538
x-amzn-requestid: 2ae96766-6999-44ec-8084-a19d26b3e118
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOHYFIAMFXYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-060b96fa5fc99e79711bde3f;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TlQNsvSWJ0ObkFHQsOUWTW0qt0YKzF2M_Jz81kBMqj-ElofZk0X48Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 18:09:04 GMT
age: 74246
etag: "76ac1f33cd006227162e12e7142e754562bec0c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7bd3afd3069904500c28e9bb16587e8
a881666627e1077859ed1941cee576caf600d798
78a7b0a2127c583aba569abace503cff376cde67d5faa9a346c1494d91e8f3cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5172
x-amzn-requestid: d366d3e0-71d7-404c-a93b-3267852824ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_T5F5PoAMFqWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f78e5-52362b5f0dc1ee8951eebc07;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ean91lOEJLzLQFKy3gBuqD_G-BVw3SMuED20W6ixdkKYvVcMatdGJA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:39:23 GMT
age: 61627
etag: "a881666627e1077859ed1941cee576caf600d798"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/jquery.slick.min.js
200 OK 10 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/jquery.slick.min.js
IP
File type ASCII text, with very long lines (32845), with CRLF line terminators
Hash 2b79fb10b05d4ebb3b955511710ea8fd
e122be49a182e55260b5f3f86f1159d4280ab2bb
f60bf0803cf5f455f123550be67274ff40ca34d07301539ec366d292489c174d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nasa-core/assets/js/min/jquery.slick.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:10:57 GMT
etag: W/"6225cc21-a747"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-integratori-namedsport-2.jpg
200 OK 39 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-integratori-namedsport-2.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Hash 66960eeb348f4fb3527cf7b4829d592b
936ca764b00f53e2db46b1837c0a435983c97a01
b244679b24bf6f2f927fe25d52e258156e6f217df0b2600f7dc7117065b5c78a
GET /wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-integratori-namedsport-2.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 38576
last-modified: Mon, 07 Mar 2022 15:19:40 GMT
etag: "6226228c-96b0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-cosmetici.jpg
200 OK 34 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-cosmetici.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Hash d5fb5c8941edf1c394f5ea10e02afc75
e7ae913e02008eec9dae94f360af78c3303b2e0d
8c299b741da2e89e2f4f9c90bd1cbad5f6d3bff9fee04277d81bf7bc7627a276
GET /wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-cosmetici.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 33605
last-modified: Mon, 07 Mar 2022 11:10:54 GMT
etag: "6225e83e-8345"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/minify-font-icons/fonts.min.css?ver=6.0.2
200 OK 9.5 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/minify-font-icons/fonts.min.css?ver=6.0.2
IP
File type ASCII text, with very long lines (30120), with CRLF line terminators
Hash a052d7592caf6b91fd06a69e017faccd
0bad876261a7a874853bb4b36cff08b0633dfb86
c81b2466fde5847f3b8d3fe8da0f843da581458d1593e061fd4dbbd5a7b567b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elessi-theme/assets/minify-font-icons/fonts.min.css?ver=6.0.2 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Wed, 19 Jan 2022 15:40:00 GMT
etag: W/"61e830d0-b10e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-cura-della-pelle-e-del-corpo.jpg
200 OK 36 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-cura-della-pelle-e-del-corpo.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Yeko Photo Studio], baseline, precision 8, 1000x667, components 3\012- data
Hash 5c64cfa492e1afc997134b6e09169359
df3a3dd154b56505f45d9628bac7250accab3dec
9bde6b0e8c508aecad73f44bb9beac56f77ba2a7303a9ad5fd16abc24ca3dcc5
GET /wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-cura-della-pelle-e-del-corpo.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 35728
last-modified: Mon, 07 Mar 2022 15:21:29 GMT
etag: "622622f9-8b90"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/naturopathy.jpg
200 OK 112 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/naturopathy.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Size 112 kB (112517 bytes)
Hash bc842af5844ca177afbaca81e4a9ef1a
4d55cd7b7bea1767ee4c0670a97b15a76614384c
53e0c85eb058cc71c58c8aced451b8777052fe7e1d01de79b699710a943b334a
GET /wp-content/uploads/2022/04/naturopathy.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 112517
last-modified: Tue, 05 Apr 2022 08:27:37 GMT
etag: "624bfd79-1b785"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/flower-therapy.jpg
200 OK 57 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/flower-therapy.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Hash 5c8fd6ab38df9b21f54e00266a235523
e633aef9b8513b648525b83ade01115a715d8605
cbdf8b398c3710366f49489b6f4d7a0a1f60ace8777a9f900c0f5c0a113f676d
GET /wp-content/uploads/2022/04/flower-therapy.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 56569
last-modified: Tue, 05 Apr 2022 08:27:53 GMT
etag: "624bfd89-dcf9"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.17
200 OK 48 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.17
IP
File type ASCII text, with very long lines (45108), with CRLF line terminators
Hash 9d0580e8b375eeb9deb340ead0694451
000d648233d3efcf00999f1e90b7eae4eafbb3d2
f0bf42f8c512a4c62c51d55c595d39506ddf56ab3b2d1cdca1e8240445d0a2bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.17 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:11:05 GMT
etag: W/"6225cc29-1f725"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/09/Shiatsu-1-scaled.jpg
200 OK 287 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/09/Shiatsu-1-scaled.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, description=Young woman receiving a back massage in a spa center. Female patient is receiving treatment by professional therapist., manufacturer=NIKON CORPORATION, model=NIKON D810, orientation=upper-left, xresolution=164, yresolution=172, resolutionunit=2, software=Adobe Photoshop Lightroom 6.12 (Windows), datetime=2017:09:18 13:32:22], baseline, precision 8, 2560x1709, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 0-0, spot sensor temperature 4489864774406922829824.000000, unit celsius, color scheme 0, calibration: offset 184683593728.000000, slope 4543734697069022895869534404608.000000\012- data
Size 287 kB (287319 bytes)
Hash 1322ce5b4437ba1031a227a3531ce0fc
ba1a152ce9276d0f84b60d20667278f5f3de8c1a
68ade2e3cb6c9cff9c81179d0e6866d6ee8095690b186a116c07140d60d9580d
GET /wp-content/uploads/2022/09/Shiatsu-1-scaled.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 287319
last-modified: Wed, 21 Sep 2022 08:55:06 GMT
etag: "632ad16a-46257"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/04/omeo.jpg
200 OK 111 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/04/omeo.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Size 111 kB (111389 bytes)
Hash 9df1418f0bd77db321346f9f27026e6c
e432cebc227f890d2ca462e41363c7bb2768230b
9e64e9f6c410eb51b8e5bd5f7385def5ba277ccf0d7162b0cf4b9a38f9c6f6fc
GET /wp-content/uploads/2022/04/omeo.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 111389
last-modified: Tue, 05 Apr 2022 08:27:20 GMT
etag: "624bfd68-1b31d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/nasa.script.min.js
200 OK 80 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/nasa.script.min.js
IP
File type ASCII text, with very long lines (23455), with no line terminators
Hash 1e5dfc1e31f0bae38f495cb6cd0eb5a3
ae204fc4510b509bff8bd8e180282c5de45a1f92
b36dda52bb91ee937a62fc129643b647d0791e1f5a56532c0710162f541c7ce5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nasa-core/assets/js/min/nasa.script.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:10:57 GMT
etag: W/"6225cc21-5b9f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:46:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
200 OK 14 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data
Hash e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: font/woff2
content-length: 13564
last-modified: Mon, 07 Mar 2022 09:11:07 GMT
etag: "6225cc2b-34fc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/nasa-banners.min.js
200 OK 17 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/nasa-banners.min.js
IP
File type ASCII text, with very long lines (1006), with no line terminators
Hash 55d0ac87001ce54a6773ec48c0dba058
cea200c86e6e737b3609761694db4594445867f0
8a7a68529842837f9a33076a9c0697d4acf2e259a5a4113d17277c24cea2a733
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nasa-core/assets/js/min/nasa-banners.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 07 Mar 2022 09:10:57 GMT
etag: W/"3ee-5d99d3e0aa00c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/style.css?ver=6.0.2
200 OK 52 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/style.css?ver=6.0.2
IP
File type assembler source, ASCII text, with very long lines (600), with CRLF line terminators
Hash dafe6f045671c8a684a5176e743b0541
9d8caae2b93126e2a6396cbe233db9a5d2c296da
6b97524c8c6a9a52e09c051b0672dd42693f22a1a6f55fe131aeffc62a4c8f29
GET /wp-content/themes/elessi-theme/style.css?ver=6.0.2 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Fri, 04 Mar 2022 13:07:46 GMT
etag: W/"62220f22-665ef"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/js/min/functions.min.js
200 OK 23 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/js/min/functions.min.js
IP
File type ASCII text, with very long lines (31102), with no line terminators
Hash 7e2b1fe3c11a1914ffb322e46418e277
a0cdf902b060a6400f7a5a8a0d3628da9ff1033b
dc1fa90bddef432873eea28b6f740418e3ef00db609327c55b3f56665efd8514
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elessi-theme/assets/js/min/functions.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Tue, 01 Mar 2022 09:57:40 GMT
etag: W/"621dee14-797e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/js/min/main.min.js
200 OK 28 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/js/min/main.min.js
IP
File type ASCII text, with very long lines (32325)
Hash b170e4d30879452f432cca0655eb2aab
44578bb2aa55003e7bf48e6606923d10cadb8bd0
89b3a22919d597a1dcbc030cdd1b66c875540baecfb81f7ee9170843b4a6c0ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elessi-theme/assets/js/min/main.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Tue, 01 Mar 2022 08:59:32 GMT
etag: W/"621de074-d74a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-automedicazione-1536x878.jpg
200 OK 119 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-automedicazione-1536x878.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Freepik.com], baseline, precision 8, 1536x878, components 3\012- data
Size 119 kB (119039 bytes)
Hash 6143044bf5dc01b48146df1d30ab60a0
610bbc971ceb4b71120fa8fc3fa50ba6e4e5d48a
6cf1cf24560458fec17cf995a6a67987938fdb312763c930687f4e3e3e54c5cf
GET /wp-content/uploads/2022/03/parafarmacia-piave-sinalunga-automedicazione-1536x878.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 119039
last-modified: Mon, 07 Mar 2022 17:03:47 GMT
etag: "62263af3-1d0ff"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.iubenda.com/cookie-solution/confs/js/73938326.js
200 OK 144 B URL HTTP/2 www.iubenda.com/cookie-solution/confs/js/73938326.js
IP
Hash 1d8466109aabec8e1358bed618fe1c13
ca72998916ad83695bdaac2db7f4edfaa01015be
f96dcbca3eb6e6fa9dda80275c09d383b921e12f2c8930fe22ad1297fc53cb7a
GET /cookie-solution/confs/js/73938326.js HTTP/1.1
Host: www.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 23 Sep 2022 17:32:08 GMT
etag: "632ded98-9a"
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-credentials: true
accept-ranges: bytes
strict-transport-security: max-age=63072000
content-encoding: gzip
content-length: 144
cache-control: max-age=86400
expires: Mon, 26 Sep 2022 14:46:30 GMT
date: Sun, 25 Sep 2022 14:46:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
200 OK 472 B URL HTTP/2 fonts.gstatic.com/s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2
IP
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.parafarmaciapiave.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 14:45:15 GMT
expires: Mon, 25 Sep 2023 14:45:15 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:31:19 GMT
content-type: font/woff2
age: 75
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2021/04/cropped-papaveri-desktop-parafarmacia-piave-sinalunga-1-32x32.jpg
200 OK 981 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2021/04/cropped-papaveri-desktop-parafarmacia-piave-sinalunga-1-32x32.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=Canon, model=Canon EOS 5D], baseline, precision 8, 32x32, components 3\012- data
Hash c1134cdcb2779c1b6d289e640939ca46
6b5d5e7335482e4de84a8bad504529e27d0e36fa
0f857c96ac47be9e0cecd9a05450c715987caa95ac82d29c09e07516935cb856
GET /wp-content/uploads/2021/04/cropped-papaveri-desktop-parafarmacia-piave-sinalunga-1-32x32.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 981
x-accel-version: 0.01
last-modified: Wed, 21 Sep 2022 13:07:42 GMT
etag: "3d5-5e92fa146acd4"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2021/04/cropped-papaveri-desktop-parafarmacia-piave-sinalunga-1-192x192.jpg
200 OK 8.9 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2021/04/cropped-papaveri-desktop-parafarmacia-piave-sinalunga-1-192x192.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=Canon, model=Canon EOS 5D], baseline, precision 8, 192x192, components 3\012- data
Hash 371984fd3e4dbdfca54ddf30c5ee508a
ee24479e9ce2c32ccb83b5e243f55937934280ec
b532d541ab72fd668fb73a4072d358a64066ee992c273f4678221ac7a8bf5aae
GET /wp-content/uploads/2021/04/cropped-papaveri-desktop-parafarmacia-piave-sinalunga-1-192x192.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 8868
last-modified: Wed, 21 Sep 2022 13:07:42 GMT
etag: "632b0c9e-22a4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/flexslider/fonts/flexslider-icon.woff
200 OK 1.3 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/flexslider/fonts/flexslider-icon.woff
IP
File type Web Open Font Format, TrueType, length 1268, version 1.0\012- data
Hash f8b92f66539473eea649c8514eb836a0
9876bce2a7b39125bd7a406c445e46e704d7b37e
333fe8266952f16c8b686f3edd78293da28e6eaef314dca86bc4eeaa23f290e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/flexslider/fonts/flexslider-icon.woff HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/flexslider/flexslider.min.css?ver=6.8.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:31 GMT
content-type: application/font-woff
content-length: 1268
last-modified: Mon, 07 Mar 2022 09:11:07 GMT
etag: "6225cc2b-4f4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5fa219a0ba3ca3d34efcccb61043ec5e
a46ff792e214d227939485d3237dc9f65a70845a
22f045829f721a1933444896f0607edf9404b3afd6e44b0c45277fe2761b321a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 14:46:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 11:41:07 GMT
Expires: Sat, 01 Oct 2022 11:41:06 GMT
Etag: "a46ff792e214d227939485d3237dc9f65a70845a"
Cache-Control: max-age=506674,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75048cbdec45fac4-OSL
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/css/style-large.css
200 OK 18 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/css/style-large.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash bbc359f718d2f84f23bbf79e7d3695c4
7774714ef9e08a9701409fe29db4c9bd230049a3
76620c43d9c7f85e747e5b918d3f8404a7913bcfeaf03b6de3240807aa5a9365
GET /wp-content/themes/elessi-theme/assets/css/style-large.css HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Thu, 03 Mar 2022 19:57:02 GMT
etag: W/"62211d8e-21590"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
hits-i.iubenda.com/write?db=hits1
204 No Content 1.1 kB URL HTTP/2 hits-i.iubenda.com/write?db=hits1
IP
ASN #14061 DIGITALOCEAN-ASN
Hash 0ed6d9ffc82cd74ae1839039c0ee03a7
a6d5bc8538f241f2130677827a910375b60f8d7c
0457df75491838d12f26c736a1b5981390597ef6f1833399eb94df4d001c9a9c
OPTIONS /write?db=hits1 HTTP/1.1
Host: hits-i.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization
Referer: https://www.parafarmaciapiave.it/
Origin: https://www.parafarmaciapiave.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sun, 25 Sep 2022 14:46:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: *, authorization
access-control-max-age: 1728000
access-control-allow-credentials: true
content-length: 0
content-type: text/plain charset=UTF-8
X-Firefox-Spdy: h2
hits-i.iubenda.com/write?db=hits1
204 No Content 0 B URL HTTP/2 hits-i.iubenda.com/write?db=hits1
IP
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /write?db=hits1 HTTP/1.1
Host: hits-i.iubenda.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Basic aGl0czFfdTpoaXRzMV91cHdk
Content-Type: text/plain;charset=UTF-8
Content-Length: 39
Origin: https://www.parafarmaciapiave.it
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 25 Sep 2022 14:46:31 GMT
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Length, Content-Type, X-CSRF-Token, X-HTTP-Method-Override
access-control-allow-methods: DELETE, GET, OPTIONS, POST, PUT
access-control-allow-origin: https://www.parafarmaciapiave.it
access-control-expose-headers: Date, X-InfluxDB-Version, X-InfluxDB-Build
request-id: d8374e9e-3ce0-11ed-852a-0242ac110002
x-influxdb-build: OSS
x-influxdb-version: 1.8.2
x-request-id: d8374e9e-3ce0-11ed-852a-0242ac110002
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 96 kB IP
Hash e68d28f0c27cea76f899a224d537c88d
2a430e58840bf1a5e938001611ce28d7c8a42c67
f364fa0bd54a1f98c1dec752ca76e97ed9c6679ed58a3e338a2511d55aab323d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4008
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:46:32 GMT
Last-Modified: Sun, 25 Sep 2022 13:39:44 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 9ee74edcc3b8796cf6c2dc34189003e4
4b556dc92e17f3f9f16b26835d39ef12155230a9
c451c59ad588e1d4bc35ecd99529c7f9216a95305ba9a951e20ab61eda6db4ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4008
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:46:32 GMT
Last-Modified: Sun, 25 Sep 2022 13:39:44 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 9ee74edcc3b8796cf6c2dc34189003e4
4b556dc92e17f3f9f16b26835d39ef12155230a9
c451c59ad588e1d4bc35ecd99529c7f9216a95305ba9a951e20ab61eda6db4ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4008
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:46:32 GMT
Last-Modified: Sun, 25 Sep 2022 13:39:44 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 9ee74edcc3b8796cf6c2dc34189003e4
4b556dc92e17f3f9f16b26835d39ef12155230a9
c451c59ad588e1d4bc35ecd99529c7f9216a95305ba9a951e20ab61eda6db4ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2572
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:46:32 GMT
Last-Modified: Sun, 25 Sep 2022 14:03:40 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
storage.elfsight.com/api/v2/data/7afea060e310f2a7a824bd3bedcf7278
200 OK 63 kB URL HTTP/2 storage.elfsight.com/api/v2/data/7afea060e310f2a7a824bd3bedcf7278
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 2bed7518a4cce3b14dbf5c5b149c4c1e
2c61cb42df0d34451535ebc1a0c1a41798db0ce0
ef0c2a4cd461b21a9112b29223e61df5282c518b596ac8c0dc66c44510e6c284
GET /api/v2/data/7afea060e310f2a7a824bd3bedcf7278 HTTP/1.1
Host: storage.elfsight.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.parafarmaciapiave.it
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: application/json
cf-ray: 75048cbe7c3fb51e-OSL
access-control-allow-origin: https://www.parafarmaciapiave.it
cache-control: no-cache, private
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: 1
access-control-allow-headers: Authorization,Content-Type,Set-Cookie,x-csrf-token
access-control-allow-methods: GET,POST
cf-apo-via: origin,host
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1qqwOJ7rQCaplYJiz0mFUIL2KvHvUmHoO3tlEyXBChL86EEp%2FyhAKiQdHSTulnQx5dsHWMzvQsuHlRy5gIddOnf0Tdqpsw%2BdMNDMxC5HixTOlgTauBYf4gPJGri%2B%2BrcKcxidNobB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F278035343_1051274469131320_6617506311965874199_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D104%26_nc_ohc%3DryfUOlbNoh8AX_d8UM2%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT-bvYQw3DhGC1isk1XL3RFfvjNl7L6oUnEbOT5PbkZ6yA%26oe%3D633495AC%26_nc_sid%3D86f79a
200 OK 15 kB URL HTTP/2 scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F278035343_1051274469131320_6617506311965874199_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D104%26_nc_ohc%3DryfUOlbNoh8AX_d8UM2%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT-bvYQw3DhGC1isk1XL3RFfvjNl7L6oUnEbOT5PbkZ6yA%26oe%3D633495AC%26_nc_sid%3D86f79a
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Hash 542f7f2e7b947be487b617615e9f657d
08ee7a40123e8ae6d00b49bab59cf22bb81ac0f8
108624bc91e5dcc1c0e97c12e58bdad8d28fe7ea3f66586086b45d3efd16c62c
GET /?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F278035343_1051274469131320_6617506311965874199_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D104%26_nc_ohc%3DryfUOlbNoh8AX_d8UM2%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT-bvYQw3DhGC1isk1XL3RFfvjNl7L6oUnEbOT5PbkZ6yA%26oe%3D633495AC%26_nc_sid%3D86f79a HTTP/1.1
Host: scp2.elfsightcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: image/jpeg
content-length: 14928
cache-control: public, max-age=2629800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GW5lZ8U6HUkUkZW0%2FNu%2B%2BZhuIVWQCubXvVPPTfUXrfFCgnAlkKrPf3zImQ8zLts8AC0f%2BTgcpTvoff9bafQECTuqRO1w0xRHoug%2FaEgrSkE8L8gNR2uWAfLCStt4co%2FUVJcIOOCm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75048cc5ccc7fab4-OSL
X-Firefox-Spdy: h2
scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F295373258_576884354039571_5254544026202535389_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D103%26_nc_ohc%3DGVUTag5OhzAAX89R06Z%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9FWvhdoaMPz1k2MOTU4Sgsy2SrxbpY4gX5n2AqNORQuA%26oe%3D63349006%26_nc_sid%3D86f79a
200 OK 21 kB URL HTTP/2 scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F295373258_576884354039571_5254544026202535389_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D103%26_nc_ohc%3DGVUTag5OhzAAX89R06Z%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9FWvhdoaMPz1k2MOTU4Sgsy2SrxbpY4gX5n2AqNORQuA%26oe%3D63349006%26_nc_sid%3D86f79a
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Hash ef063857b37a16b639c0f93288443bf2
4511ab68bbecbd014082ac5f3e484d407640ba2f
004a2ce8d9e68e7a51ba79e967683e00087a7356fdb005048d3e47d9fa6f9fbc
GET /?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F295373258_576884354039571_5254544026202535389_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D103%26_nc_ohc%3DGVUTag5OhzAAX89R06Z%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9FWvhdoaMPz1k2MOTU4Sgsy2SrxbpY4gX5n2AqNORQuA%26oe%3D63349006%26_nc_sid%3D86f79a HTTP/1.1
Host: scp2.elfsightcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: image/jpeg
content-length: 21297
cache-control: public, max-age=2629800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pfb5z5J%2BxjjwP%2FOoJNardk%2BucbWxke%2F%2FMgAC8aiK%2B8OaHKzLnvhLqGnZZrfwdWVbDRwJSnh4NjrtbyTMfj37JrJwUdRnL8n36BMRwDe6oeflj2eBDdpaWOJdo6wUhBgN1h%2B9RCLk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75048cc5ecd7fab4-OSL
X-Firefox-Spdy: h2
apps.elfsight.com/p/platform.js
301 Moved Permanently 17 kB URL HTTP/2 apps.elfsight.com/p/platform.js
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Hash da072b4e78531e797bfc40d1b1d57f77
5289384b33ec40102be725952a26807cf4e606de
861f15b01c182f450834170e6a73082b059595378c324c15fcd17326b62e1f83
GET /p/platform.js HTTP/1.1
Host: apps.elfsight.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 25 Sep 2022 14:46:30 GMT
location: https://static.elfsight.com/platform/platform.js
cache-control: max-age=3600
expires: Sun, 25 Sep 2022 15:46:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nEE50CN9BaOk2HzeZgPTI0MwmcKMiNadTfuCPPm7xluhHNiXgzHJSoqae9zt4HEUn86Vm%2FrwmPDeHg1IxuPvVk6r2LmvXNepfUPnle%2B9%2FVhxlYZHgeGawEDbpGIoMQmOMKfF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 75048cb7e8251c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F305462543_1428150184364213_907013397962122066_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D105%26_nc_ohc%3DtXAXmKYTy0QAX83Xyng%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9_oRZnTW8SrBjIGGWabvH9FESWjeNfO95-4oCVkYUBqw%26oe%3D63342AFC%26_nc_sid%3D86f79a
200 OK 23 kB URL HTTP/2 scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F305462543_1428150184364213_907013397962122066_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D105%26_nc_ohc%3DtXAXmKYTy0QAX83Xyng%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9_oRZnTW8SrBjIGGWabvH9FESWjeNfO95-4oCVkYUBqw%26oe%3D63342AFC%26_nc_sid%3D86f79a
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Hash 9ae733472817b4dd6f2e555ced8b5544
6385f434b2fec95cd836a9408d00fce503552ba6
c1027e20b35a3900d1b132bff3f95bd9e7972b192bc91bb76218235e22e999b1
GET /?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F305462543_1428150184364213_907013397962122066_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D105%26_nc_ohc%3DtXAXmKYTy0QAX83Xyng%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9_oRZnTW8SrBjIGGWabvH9FESWjeNfO95-4oCVkYUBqw%26oe%3D63342AFC%26_nc_sid%3D86f79a HTTP/1.1
Host: scp2.elfsightcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: image/jpeg
content-length: 23256
cache-control: public, max-age=2629800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YPVkBHjhDkommke%2FPEXP9Cr6YYJk%2BIwpqhqtPLs4ralYgDf9T7slGT%2BAoWTuMWqZ1CIhJ%2FxLUjm1EvJc5bflachLspEqdilNWcX70xMuP9%2BOFoAksOyarx6ia8BYWFs05S4BAQWT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75048cc5ccc2fab4-OSL
X-Firefox-Spdy: h2
scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F281195354_725619768634022_3807658608102337072_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D102%26_nc_ohc%3DVxDdS0flGbkAX-p-fVM%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT933TG6H0_-X2gdFDQQ2suwAC3-L680K_5_eSIeSGrEGw%26oe%3D63342D04%26_nc_sid%3D86f79a
200 OK 19 kB URL HTTP/2 scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F281195354_725619768634022_3807658608102337072_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D102%26_nc_ohc%3DVxDdS0flGbkAX-p-fVM%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT933TG6H0_-X2gdFDQQ2suwAC3-L680K_5_eSIeSGrEGw%26oe%3D63342D04%26_nc_sid%3D86f79a
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Hash 81fdc90ed8974d0c38183a6ce9ddff45
d05a70f798385e93e0e4f172c2d552bb224b8ecf
afa497ba2e25b05f89c66f507e87ed854228fa16b52c89766ed9514bd11d6b38
GET /?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F281195354_725619768634022_3807658608102337072_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D102%26_nc_ohc%3DVxDdS0flGbkAX-p-fVM%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT933TG6H0_-X2gdFDQQ2suwAC3-L680K_5_eSIeSGrEGw%26oe%3D63342D04%26_nc_sid%3D86f79a HTTP/1.1
Host: scp2.elfsightcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: image/jpeg
content-length: 19045
cache-control: public, max-age=2629800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OgbQftqHrAz2yxlyoQPUTsDXx57uSAHkUNuwgzHdlGcxaTHknhlV0BUjvenyzGQNlnXN4a0QxvnpAIemycGfICX0AW%2BVBGyDqdgcKxFHKv3%2FG422Ok3qJ54iOBzsTeJU7kYWDuj7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75048cc5ccc5fab4-OSL
X-Firefox-Spdy: h2
scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F296208210_789203742076899_4027282748017637957_n.jpg%3Fstp%3Ddst-jpg_e15_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D103%26_nc_ohc%3D5CRUIwSKB2gAX_WTIyz%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9SMGdMX7i9B5XytuV3-MZq_8j9G__IdqaA7b1wLLIchg%26oe%3D633505D4%26_nc_sid%3D86f79a
200 OK 14 kB URL HTTP/2 scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F296208210_789203742076899_4027282748017637957_n.jpg%3Fstp%3Ddst-jpg_e15_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D103%26_nc_ohc%3D5CRUIwSKB2gAX_WTIyz%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9SMGdMX7i9B5XytuV3-MZq_8j9G__IdqaA7b1wLLIchg%26oe%3D633505D4%26_nc_sid%3D86f79a
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Hash 67d95f6ba3d423e49a4fb9439f334111
cda01c40627f8e3f2763821bcbcc1822ee101ed4
2a07c7a123955d620c8646fe4c9aced19c6654bf06ff8178d5f109d10c64b1e0
GET /?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F296208210_789203742076899_4027282748017637957_n.jpg%3Fstp%3Ddst-jpg_e15_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D103%26_nc_ohc%3D5CRUIwSKB2gAX_WTIyz%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9SMGdMX7i9B5XytuV3-MZq_8j9G__IdqaA7b1wLLIchg%26oe%3D633505D4%26_nc_sid%3D86f79a HTTP/1.1
Host: scp2.elfsightcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: image/jpeg
content-length: 14501
cache-control: public, max-age=2629800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g4m1p5oubjb47l7%2FvxghxsrkT%2BgGh25eDWiFeaeC0mISZVpfRDCLz4Wxe5umN%2FX%2Bo4ukGrjQ0bV71hg0keQcnFwHAyO%2BOmJSz%2FKNwbTIT8SsBNT4jy6PhM4A1GHNYvoXoai5%2BHjl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75048cc5ecd8fab4-OSL
X-Firefox-Spdy: h2
scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F285062202_495894362333699_1678845506772570611_n.webp%3Fstp%3Dc0.135.1080.1080a_dst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D111%26_nc_ohc%3DFp7vH3gzcxAAX_83jtV%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT_ortCpn-LjFR9uglLmt3MrPa9LyOKsjOv_VJN6--2uZg%26oe%3D63356B1F%26_nc_sid%3D86f79a
200 OK 29 kB URL HTTP/2 scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F285062202_495894362333699_1678845506772570611_n.webp%3Fstp%3Dc0.135.1080.1080a_dst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D111%26_nc_ohc%3DFp7vH3gzcxAAX_83jtV%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT_ortCpn-LjFR9uglLmt3MrPa9LyOKsjOv_VJN6--2uZg%26oe%3D63356B1F%26_nc_sid%3D86f79a
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Hash 4e697284f11ca580849cf92143dadf8d
857f5af089754e365d9c592dde787130fe3c979e
666e71ae5e50d4f52fa678acca0e2f97aa446ce463042363fd5700b72e576561
GET /?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F285062202_495894362333699_1678845506772570611_n.webp%3Fstp%3Dc0.135.1080.1080a_dst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D111%26_nc_ohc%3DFp7vH3gzcxAAX_83jtV%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT_ortCpn-LjFR9uglLmt3MrPa9LyOKsjOv_VJN6--2uZg%26oe%3D63356B1F%26_nc_sid%3D86f79a HTTP/1.1
Host: scp2.elfsightcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: image/jpeg
content-length: 29342
cache-control: public, max-age=2629800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sc5SWQbyesGzOsQCwVW%2FjjZuSS%2BJORAZ8qhF5ojSzQ1V5U3uzLfCARru7w9ebuS9IAaTup8QPyVYzI3PDnLwhFT3es8Fvj%2BgkyUFMOwRq%2FLNfFmodDMbqE1zlgSKd%2BwaL5hNF2ee"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75048cc5ccc3fab4-OSL
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/css/animate.min.css
200 OK 23 kB URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/css/animate.min.css
IP
File type ASCII text, with very long lines (31528), with no line terminators
Hash f6388577b9d479f0fb406ae7f4836b50
cb5c300f317377231122f70b82b7d889264dc277
79ebff5132eadee055fdc7359800e91093c45561583e8b2cf4f94f7a9f48c389
GET /wp-content/themes/elessi-theme/assets/css/animate.min.css HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Wed, 19 Jan 2022 15:40:00 GMT
etag: W/"61e830d0-7b28"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F282226610_1074749626755394_582703638185800757_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D110%26_nc_ohc%3DTbfBD2q-eZQAX9WOTqk%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9SwjK4A05zm1Mqks21BVPdBkeuWsZbkT6sudV5InLUNg%26oe%3D6335B27C%26_nc_sid%3D86f79a
200 OK 12 kB URL HTTP/2 scp2.elfsightcdn.com/?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F282226610_1074749626755394_582703638185800757_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D110%26_nc_ohc%3DTbfBD2q-eZQAX9WOTqk%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9SwjK4A05zm1Mqks21BVPdBkeuWsZbkT6sudV5InLUNg%26oe%3D6335B27C%26_nc_sid%3D86f79a
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Hash 74b84528747a94496ac2265049841b8a
42fa8d0c780927c61c273dfafde654b3d292d1d5
e9fa4abae1701fbb84a0a4e5f4222b945c623bcca00b9564091899be61614294
GET /?url=https%3A%2F%2Finstagram.fhre2-2.fna.fbcdn.net%2Fv%2Ft51.2885-15%2F282226610_1074749626755394_582703638185800757_n.webp%3Fstp%3Ddst-jpg_e35_s320x320%26_nc_ht%3Dinstagram.fhre2-2.fna.fbcdn.net%26_nc_cat%3D110%26_nc_ohc%3DTbfBD2q-eZQAX9WOTqk%26edm%3DAPU89FABAAAA%26ccb%3D7-5%26oh%3D00_AT9SwjK4A05zm1Mqks21BVPdBkeuWsZbkT6sudV5InLUNg%26oe%3D6335B27C%26_nc_sid%3D86f79a HTTP/1.1
Host: scp2.elfsightcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: image/jpeg
content-length: 12409
cache-control: public, max-age=2629800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vvXl6OOD7alSGWKmtI3FmBollIIgzJw9O1IdgoQtZVIJOPuYKuOdlLfpkF6u8RNoOkEC%2BCsJ8ZDGUytkk72RwDeBW1pmMlWoIlGwnAb1BT4utK7mvIbkIrPXAhSEYtMGg%2BM6q7pX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75048cc5ccc4fab4-OSL
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.17
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.17
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.17 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 09:11:03 GMT
etag: W/"6225cc27-e6f5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/countdown.min.js
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/countdown.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nasa-core/assets/js/min/countdown.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:10:57 GMT
etag: W/"6225cc21-4046"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/nasa.functions.min.js
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/nasa.functions.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nasa-core/assets/js/min/nasa.functions.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:10:57 GMT
etag: W/"6225cc21-449c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/jquery.cookie.min.js
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/jquery.cookie.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nasa-core/assets/js/min/jquery.cookie.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:10:57 GMT
etag: W/"6225cc21-4f0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 04:48:44 GMT
etag: W/"62ce4eac-15b64"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/css/nasa-sc.css
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/css/nasa-sc.css
IP
GET /wp-content/plugins/nasa-core/assets/css/nasa-sc.css HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 09:10:57 GMT
etag: W/"6225cc21-7361"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 03:13:07 GMT
etag: W/"628d9ec3-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:11:07 GMT
etag: W/"6225cc2b-4e9c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
IP
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 09:11:07 GMT
etag: W/"6225cc2b-76891"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/nasa-dynamic/dynamic.css?ver=1663765947
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/nasa-dynamic/dynamic.css?ver=1663765947
IP
GET /wp-content/uploads/nasa-dynamic/dynamic.css?ver=1663765947 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Wed, 21 Sep 2022 13:12:27 GMT
etag: W/"632b0dbb-6691"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Wed, 21 Jul 2021 03:44:04 GMT
etag: W/"60f79804-15db1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/iubenda-cookie-law-solution/assets/js/frontend.js?ver=3.2.3
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/iubenda-cookie-law-solution/assets/js/frontend.js?ver=3.2.3
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/iubenda-cookie-law-solution/assets/js/frontend.js?ver=3.2.3 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 14:13:35 GMT
etag: W/"632b1c0f-1854"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 03:13:07 GMT
etag: W/"628d9ec3-4ac6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/2600.svg
200 OK 0 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/2600.svg
IP
GET /images/core/emoji/14.0.0/svg/2600.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:32 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:50:59 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/v4-shims.min.css?ver=6.8.0 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 09:11:07 GMT
etag: W/"6225cc2b-865f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:10:59 GMT
etag: W/"6225cc23-25f8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/js/min/js-large.min.js
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/themes/elessi-theme/assets/js/min/js-large.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/elessi-theme/assets/js/min/js-large.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Wed, 19 Jan 2022 15:40:00 GMT
etag: W/"61e830d0-2af3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
parafarmaciapiave.it/
301 Moved Permanently 0 B IP
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 25 Sep 2022 14:46:29 GMT
content-type: text/html; charset=UTF-8
x-frame-options: sameorigin
x-xss-protection: 1
x-content-type-options: nosniff
strict-transport-security: max-age=2592000
referrer-policy: origin-when-cross-origin
permissions-policy: accelerometer=(self), autoplay=(self), camera=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self)
x-redirect-by: WordPress
location: https://www.parafarmaciapiave.it/
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.17
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.17
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.17 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:11:05 GMT
etag: W/"6225cc29-5e84e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito+Sans%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&display=swap&ver=6.0.2
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&display=swap&ver=6.0.2
IP
GET /css?family=Nunito+Sans%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&display=swap&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.parafarmaciapiave.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 14:46:30 GMT
date: Sun, 25 Sep 2022 14:46:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/uploads/2022/09/parafarmacia-piave-sinalunga-farmaci-da-banco.jpg
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/uploads/2022/09/parafarmacia-piave-sinalunga-farmaci-da-banco.jpg
IP
GET /wp-content/uploads/2022/09/parafarmacia-piave-sinalunga-farmaci-da-banco.jpg HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: image/jpeg
content-length: 49596
last-modified: Tue, 20 Sep 2022 13:03:42 GMT
etag: "6329ba2e-c1bc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0
IP
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/all.min.css?ver=6.8.0 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 09:11:07 GMT
etag: W/"6225cc2b-dc69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/flexslider/flexslider.min.css?ver=6.8.0
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/flexslider/flexslider.min.css?ver=6.8.0
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/flexslider/flexslider.min.css?ver=6.8.0 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/css
last-modified: Mon, 07 Mar 2022 09:11:07 GMT
etag: W/"6225cc2b-1144"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 03:13:07 GMT
etag: W/"628d9ec3-194b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/flexslider/jquery.flexslider.min.js?ver=6.8.0
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/js_composer/assets/lib/flexslider/jquery.flexslider.min.js?ver=6.8.0
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/flexslider/jquery.flexslider.min.js?ver=6.8.0 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:11:07 GMT
etag: W/"6225cc2b-779e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/
IP
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: text/html; charset=UTF-8
x-frame-options: sameorigin
x-xss-protection: 1
x-content-type-options: nosniff
strict-transport-security: max-age=2592000
referrer-policy: origin-when-cross-origin
permissions-policy: accelerometer=(self), autoplay=(self), camera=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self)
link: <https://www.parafarmaciapiave.it/wp-json/>; rel="https://api.w.org/", <https://www.parafarmaciapiave.it/wp-json/wp/v2/pages/10>; rel="alternate"; type="application/json", <https://www.parafarmaciapiave.it/>; rel=shortlink
x-powered-by: PHP/7.4.30, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/jquery.magnific-popup.min.js
200 OK 0 B URL HTTP/2 www.parafarmaciapiave.it/wp-content/plugins/nasa-core/assets/js/min/jquery.magnific-popup.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/nasa-core/assets/js/min/jquery.magnific-popup.min.js HTTP/1.1
Host: www.parafarmaciapiave.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.parafarmaciapiave.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:46:30 GMT
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 09:10:57 GMT
etag: W/"6225cc21-528d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
46.37.14.198
172.64.155.188
93.184.220.29
104.66.117.233
23.36.77.32
138.197.183.232
0.0.0.0