pievemarsina.com/
46.37.14.198301 Moved Permanently 162 B IP 46.37.14.198:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 25 Sep 2022 14:20:37 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://pievemarsina.com/
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 14:14:59 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9IhQ2S06l_dhyr7d5aHNurtEpoRPif5ZwQjrKVm7W-N8yyhmrxkDng==
Age: 338
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10597
Expires: Sun, 25 Sep 2022 17:17:14 GMT
Date: Sun, 25 Sep 2022 14:20:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8136
Expires: Sun, 25 Sep 2022 16:36:13 GMT
Date: Sun, 25 Sep 2022 14:20:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: m89ltgwJsuIbwWt15gmN4KOeM7jQNOSPH8h6+9frzKKPCDrucBvkXklgcxuFWEEW/8RREngSOK0=
x-amz-request-id: T3PB8JE26Q7SGVER
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 25 Sep 2022 13:45:48 GMT
age: 2089
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ccb1b3d997d80e64e4c342adc277b789
71da6f0f9d6179d948e411c1c80e47269dd88cde
ea2ef19aea030f42ef2b78d1043b31522ddaefa9ed2deac479692ca83f308555
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA2EF19AEA030F42EF2B78D1043B31522DDAEFA9ED2DEAC479692CA83F308555"
Last-Modified: Fri, 23 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1660
Expires: Sun, 25 Sep 2022 14:48:17 GMT
Date: Sun, 25 Sep 2022 14:20:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 14:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 14:07:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tHSrSIl66WZ9TvbEjU78Zok_N2JcYEpisyiz0ti-JGMFXFdbY0teqg==
Age: 981
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4509
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:38 GMT
Last-Modified: Sun, 25 Sep 2022 13:05:29 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.46.140101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.46.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MsGc+H4IVEdW4J5YXtt/Dw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jpdL9FKH8uMNEYQpfmLe2m0ZmEc=
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221664110634869%22
143.204.55.36200 OK 4.7 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221664110634869%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (22383), with no line terminators
Hash 6962c539b1e22e8a78504a5287869da2
d1bfa20eee7e156380d816ab5aa7e8db09bff31f
f9d7761cd54399b0f51e29b0d4823e1aa7b1b9eedce5b945dcef5aa4f360ff69
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221664110634869%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Sun, 25 Sep 2022 12:57:14 GMT
X-Content-Type-Options: nosniff
Content-Encoding: br
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 14:02:17 GMT
Expires: Sun, 25 Sep 2022 15:02:17 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ReSuaGdQxVkkxNlKnV8ck8IpQ06S2atv43x2Q8IjZBown_SeYwCpPQ==
Age: 1101
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 650b6e71248092b05b7f35e8703da4fb
a675c71ea7c50c6a3576eb9626630b0445016d32
122a0ec921f9b9a6b845d4f75df0a4d950f2ce3c34a79cecc67d80962255c1ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4254
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:39 GMT
Last-Modified: Sun, 25 Sep 2022 13:09:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
www.pievemarsina.com/wp-content/plugins/qtranslate-x/flags/gb.png
46.37.14.198200 OK 398 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/qtranslate-x/flags/gb.png
IP 46.37.14.198:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash c37d7808c8c177a0074f40217bc3bb02
19d5ebaaca76dcfdeb4566466fadafdb75579bba
78cba0d68a87a8db2d5fd6b38d222ab74c4af7a11fe8c716dee390ec0582aecd
GET /wp-content/plugins/qtranslate-x/flags/gb.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: image/png
content-length: 398
x-accel-version: 0.01
last-modified: Fri, 22 Jan 2016 10:33:04 GMT
etag: "18e-529e9be841800"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/uploads/2022/04/Borgo-Argenina-4.png
46.37.14.198200 OK 9.1 kB URL HTTP/2 www.pievemarsina.com/wp-content/uploads/2022/04/Borgo-Argenina-4.png
IP 46.37.14.198:0
File type PNG image data, 241 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash bf2c954a22075ede6046d74e5f345952
6173215ba8c26c87989afd0277f56e7418e8d186
b8974b68328b461ccdd8f6209d51ce70f6c94ff4b5e006a62a9afddfdc7a7b96
GET /wp-content/uploads/2022/04/Borgo-Argenina-4.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: image/png
content-length: 9065
last-modified: Sat, 30 Apr 2022 16:38:57 GMT
etag: "626d6621-2369"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/uploads/2016/03/nido-immagine-570x399.jpg
46.37.14.198200 OK 70 kB URL HTTP/2 www.pievemarsina.com/wp-content/uploads/2016/03/nido-immagine-570x399.jpg
IP 46.37.14.198:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 570x399, components 3\012- data
Hash 17664316bb18037c6b3d76de3cfff411
a8ed379519a72499e9e476f7820698a7b352f674
6af7b982c941b59a7eb88a0e462972ee31ac612b975772d212469b6adbe4774e
GET /wp-content/uploads/2016/03/nido-immagine-570x399.jpg HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: image/jpeg
content-length: 69701
last-modified: Tue, 24 May 2016 09:22:38 GMT
etag: "57441d5e-11045"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/uploads/2015/04/sawdays-accreditation-badge-transparent-1-150x150.png
46.37.14.198200 OK 16 kB URL HTTP/2 www.pievemarsina.com/wp-content/uploads/2015/04/sawdays-accreditation-badge-transparent-1-150x150.png
IP 46.37.14.198:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 62020cb6d9734f13c9f89eaa9acc2661
24364c9e8a5c749c38304935777f0698c2c65bc5
755aa614b422d8e0b24544cca27d1f75c0e8429cd509f35ec2d488eaf1d695cf
GET /wp-content/uploads/2015/04/sawdays-accreditation-badge-transparent-1-150x150.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: image/png
content-length: 15496
last-modified: Wed, 20 Dec 2017 17:45:42 GMT
etag: "5a3aa1c6-3c88"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/qtranslate-x/flags/it.png
46.37.14.198200 OK 147 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/qtranslate-x/flags/it.png
IP 46.37.14.198:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 470bc4f5356dc68809c93502d3b278df
f2ee53a7bf1019192f20f72ba7f73a5a163b5f0f
5319dae27a83a503b2917f911d2b32d8adebba5a26c24b90c4c15aee9da62c82
GET /wp-content/plugins/qtranslate-x/flags/it.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: image/png
content-length: 147
x-accel-version: 0.01
last-modified: Fri, 22 Jan 2016 10:33:04 GMT
etag: "93-529e9be841800"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/speed-contact-bar/public/assets/images/phone_dark.svg
46.37.14.198200 OK 809 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/speed-contact-bar/public/assets/images/phone_dark.svg
IP 46.37.14.198:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ba137739d95e142f3ccb127ee3271dae
ca326507651e63682bc2830ef0560da11163b78e
826de340c207008f8ad41d8ceb5bf44c8daa75fc031e69a7db873e37da9fe38c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/speed-contact-bar/public/assets/images/phone_dark.svg HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: image/svg+xml
content-length: 809
x-accel-version: 0.01
last-modified: Thu, 29 Sep 2016 12:42:50 GMT
etag: "329-53da4d0c42680"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/speed-contact-bar/public/assets/images/email_dark.svg
46.37.14.198200 OK 541 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/speed-contact-bar/public/assets/images/email_dark.svg
IP 46.37.14.198:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7ad94e8716faeb4071c6548beb3102a2
2f46b97bb1c8bdb28bac248b71a0f8af45336f8a
859542baf8451cc2ad1d7c7a8701d7844d66f7374152ad11c2ee72c1941d5236
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/speed-contact-bar/public/assets/images/email_dark.svg HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: image/svg+xml
content-length: 541
x-accel-version: 0.01
last-modified: Thu, 29 Sep 2016 12:42:50 GMT
etag: "21d-53da4d0c42680"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 650b6e71248092b05b7f35e8703da4fb
a675c71ea7c50c6a3576eb9626630b0445016d32
122a0ec921f9b9a6b845d4f75df0a4d950f2ce3c34a79cecc67d80962255c1ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4254
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:39 GMT
Last-Modified: Sun, 25 Sep 2022 13:09:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-111488516-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-111488516-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 2d4dafe91992867ac6fe675b20e384b9
8f63843101e19128642efc1674a28fdd865f7cfc
023f05941c8a12ff810f76016320e238006b1c3193105ff0626b6c8f3137373b
GET /gtag/js?id=UA-111488516-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 14:20:39 GMT
expires: Sun, 25 Sep 2022 14:20:39 GMT
cache-control: private, max-age=900
last-modified: Sun, 25 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42257
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api-libs.bedzzle.com/js/api.js?load=widget.be&onload=initBedzzle&theme=006
34.111.139.143200 OK 578 B URL HTTP/2 api-libs.bedzzle.com/js/api.js?load=widget.be&onload=initBedzzle&theme=006
IP 34.111.139.143:0
File type ASCII text, with very long lines (1028), with no line terminators
Hash c9d1faebf555b9b5ca6eadad4ff81a09
a30a2ccae395a998c0e22cbd9816ce214115dfe7
e9bc024acf1652cf3937da75c328262d5099edc017ab2957f34e35910f6d81d5
GET /js/api.js?load=widget.be&onload=initBedzzle&theme=006 HTTP/1.1
Host: api-libs.bedzzle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:20:40 GMT
server: Apache
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
vary: Accept-Encoding
content-encoding: gzip
content-length: 578
content-type: text/html; charset=UTF-8
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
46.37.14.198200 OK 9.9 kB URL HTTP/2 www.pievemarsina.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 46.37.14.198:0
File type ASCII text, with very long lines (15660)
Hash 9ece951b6ab5e7ed9c5d302f290c441b
caa692ba7bc277ba6bd68076a9a7226a4ee8ca7c
c3f1dc271b4a8ca082ec265f029026e4aef8fa47319cf49c69442f06b0a57d61
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Mon, 19 Sep 2022 12:31:10 GMT
etag: W/"6328610e-48b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/script.js?ver=6.0.2
46.37.14.198200 OK 8.9 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/script.js?ver=6.0.2
IP 46.37.14.198:0
File type ASCII text, with very long lines (359), with CRLF line terminators
Hash 80d0dab26a7cf4dd9ff8fe12e8ccb81f
b8dc852ac7671ceda1a375fd9c1cf79d0029619d
be7a267c215acc0456d374daf8bbfc995566cb4c1d6a7d3b36e1e3b5683556dd
GET /wp-content/themes/rays/js/script.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Wed, 06 Feb 2019 08:10:58 GMT
etag: W/"5c5a9692-10c26"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/jquery.magnific-popup.min.js?ver=4.2
46.37.14.198200 OK 7.9 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/jquery.magnific-popup.min.js?ver=4.2
IP 46.37.14.198:0
File type ASCII text, with very long lines (20965)
Hash 880f7f2e6775ab5998593e82e16fdc50
19f9623e6e19f7055fd9ba1d0cd91ffda4f32bc8
19a0e5e2842e0d52bcb9e364fe42d94b28bdf2213bd1103fa444ff784e5808c6
GET /wp-content/plugins/easy-facebook-likebox/public/assets/popup/jquery.magnific-popup.min.js?ver=4.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Tue, 29 Mar 2016 14:39:42 GMT
etag: W/"56fa93ae-5266"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8105
Expires: Sun, 25 Sep 2022 16:35:49 GMT
Date: Sun, 25 Sep 2022 14:20:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8105
Expires: Sun, 25 Sep 2022 16:35:49 GMT
Date: Sun, 25 Sep 2022 14:20:44 GMT
Connection: keep-alive
www.pievemarsina.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms-api.min.js?ver=4.1.12
46.37.14.198200 OK 4.6 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/mailchimp-for-wp/assets/js/forms-api.min.js?ver=4.1.12
IP 46.37.14.198:0
File type ASCII text, with very long lines (11848)
Hash 0c12a917adfed3978ae09d054fe09605
fa269f78b8acf36b3ad298c30106da47b696ba59
5cc542ae2ba50decf5bbfed654e58d555474dfe7d34eddc1f580ca2be0f4bafb
GET /wp-content/plugins/mailchimp-for-wp/assets/js/forms-api.min.js?ver=4.1.12 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Wed, 20 Dec 2017 17:18:04 GMT
etag: W/"5a3a9b4c-2e73"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/style.css?ver=1.0
46.37.14.198404 Not Found 10 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/style.css?ver=1.0
IP 46.37.14.198:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash b009cbfc5ab3d18ad094a4419ea3c98b
7d9e4b222d85c37a36419b1bd58416a229c99109
e9963759216f34d72a7f4cd4d19d28b562270e588aa7451ecdc27cbd19a3906e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-appointments/app/assets/front-end/css/style.css?ver=1.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 25 Sep 2022 14:20:40 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.pievemarsina.com/en/wp-json/>; rel="https://api.w.org/"
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:39 GMT; Max-Age=31536000; path=/
content-encoding: br
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 65a32932d18baff111d18533cd3e0316
a5edf934359f70c285be9e584a3af8d4a1758b7e
50d76f48163128fe3fa888f523a8c65fd8db28f042281b8cb2f5502f0b719ae5
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 14:20:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 29 Sep 2022 13:54:55 GMT
ETag: "a5edf934359f70c285be9e584a3af8d4a1758b7e"
Last-Modified: Sun, 25 Sep 2022 13:54:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750466fc0f95b515-OSL
www.pievemarsina.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.9.2
46.37.14.198200 OK 6.2 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.9.2
IP 46.37.14.198:0
File type ASCII text, with very long lines (21798)
Hash 4cd67b1d732f3ed6107ca4925c777506
7cbcad243ca50f82488440e388b108e6079a1b8f
3d7657cdf2cd4200e1cdda4b2072871fa21f66c02f89f4f1929b12370ad5783d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.9.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Tue, 19 Jan 2016 13:12:40 GMT
etag: W/"569e3648-55c8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/simple-cookie-notification-bar/assets/js/script.js?ver=1.5
46.37.14.198200 OK 6.9 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/simple-cookie-notification-bar/assets/js/script.js?ver=1.5
IP 46.37.14.198:0
Hash 8ab148f1dbe4310ce01fdcb4f035e69a
f6521ec18d8497fa2798d4fd6d030a030991baf4
a650d2d7b3a973a4de37e85e37bd6a6f9f7eedc92bf4f4a5a9d5dfffc8debca9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/simple-cookie-notification-bar/assets/js/script.js?ver=1.5 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Wed, 02 Mar 2016 09:26:10 GMT
etag: W/"56d6b1b2-6af"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d59e1bbd58ff8c5fe5faecb58149601
ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd
c16a2adaeaabbe45801ab5d12ceaeab587b525b4959933f53a9c8dcdb12aec68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: 3092c81c-f703-403a-b718-e18f035f9464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJQFUWIAMF7Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-565f665c7e34294079703141;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hc0cpj1kMbAQqcM0ooSgEdS8nPP0m4FJD1bHdY7jN2OENNsJF_gluA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 07:22:33 GMT
age: 25091
etag: "ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/uploads/2016/09/phone-call.png
46.37.14.198301 Moved Permanently 162 B URL HTTP/1.1 www.pievemarsina.com/wp-content/uploads/2016/09/phone-call.png
IP 46.37.14.198:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2016/09/phone-call.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 25 Sep 2022 14:20:44 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.pievemarsina.com/wp-content/uploads/2016/09/phone-call.png
www.pievemarsina.com/wp-content/uploads/2016/09/calendar.png
46.37.14.198301 Moved Permanently 162 B URL HTTP/1.1 www.pievemarsina.com/wp-content/uploads/2016/09/calendar.png
IP 46.37.14.198:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/uploads/2016/09/calendar.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 25 Sep 2022 14:20:44 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.pievemarsina.com/wp-content/uploads/2016/09/calendar.png
www.pievemarsina.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
46.37.14.198200 OK 43 kB URL HTTP/2 www.pievemarsina.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 46.37.14.198:0
File type ASCII text, with very long lines (65447)
Hash 4d01dc8ccebad7cfc7d5e8f3731726a6
409566ebd27087fa480edc757d5f79738baab2d0
047e01585138e1bb7d30a1944fd48edfd977138d5b32b23ccc133338e01b007b
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Mon, 19 Sep 2022 12:31:09 GMT
etag: W/"6328610d-15db1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
apps.elfsight.com/p/platform.js
104.26.6.107301 Moved Permanently 13 kB URL HTTP/2 apps.elfsight.com/p/platform.js
IP 104.26.6.107:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /p/platform.js HTTP/1.1
Host: apps.elfsight.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 25 Sep 2022 14:20:39 GMT
location: https://static.elfsight.com/platform/platform.js
cache-control: max-age=3600
expires: Sun, 25 Sep 2022 15:20:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7R4a%2FrVQQZUFWeLx%2BNermz4SpcalH0z%2F5o68LNwTJWY3gs9vBXeSEsGJCp3qGQ%2F22r3kc8mLDqaxwKNLzOqCR1rTUQzJkRSd4tJiXT1uqHU0w%2FpVaEvkZuhnKR7qPDoAAPkE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 750466db59b8b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d35df1f57d0736995615b0d8f50b8a3
8324b383c89771a2b1155ec6d069bf5a47338acd
9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4723
x-amzn-requestid: 4be5e73a-e648-40a4-8566-cb3417e5843b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EKHYcoAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7880-4682134275162910149d09ec;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NdyoW-aALNbALUNnUAWgJafG47WQBKHxeOEQhLHWS1ie8YlUH9z9uA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:58:11 GMT
age: 58953
etag: "8324b383c89771a2b1155ec6d069bf5a47338acd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/mailchimp-for-wp/assets/css/form-themes.min.css?ver=4.1.12
46.37.14.198200 OK 6.5 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/mailchimp-for-wp/assets/css/form-themes.min.css?ver=4.1.12
IP 46.37.14.198:0
File type ASCII text, with very long lines (9529), with no line terminators
Hash fb03b518753e32de8e2dbecd635a3921
05ed2e565a3765f369c06e27890169e432ec9240
da5235c16a12dae7b93730ce68e0ae1542c6778656648326f778315c65a6d7cc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/mailchimp-for-wp/assets/css/form-themes.min.css?ver=4.1.12 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Wed, 20 Dec 2017 17:18:04 GMT
etag: W/"5a3a9b4c-2539"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pievemarsina.com/wp-content/plugins/the-preloader/images/preloader.gif
46.37.14.198301 Moved Permanently 162 B URL HTTP/1.1 www.pievemarsina.com/wp-content/plugins/the-preloader/images/preloader.gif
IP 46.37.14.198:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/plugins/the-preloader/images/preloader.gif HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 25 Sep 2022 14:20:44 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.pievemarsina.com/wp-content/plugins/the-preloader/images/preloader.gif
www.pievemarsina.com/wp-content/themes/rays/css/flags.css?ver=6.0.2
46.37.14.198200 OK 1.4 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/flags.css?ver=6.0.2
IP 46.37.14.198:0
File type ASCII text, with CRLF line terminators
Hash f45feded20ef10a932eb9bbe45b7fceb
9a02cfd00860e356ee696e08021263a455e2aad6
7865f84079bc56d9f594d877615e0f548d8cf88b63fd08491705cce47944a97f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/css/flags.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:06 GMT
etag: W/"56a1f6da-39c5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/css/bootstrap.min.css?ver=6.0.2
46.37.14.198200 OK 18 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/bootstrap.min.css?ver=6.0.2
IP 46.37.14.198:0
File type ASCII text, with very long lines (65371)
Hash 511dac85ff635e54e2bb901ca149e86a
9c2479cf258e48605e3a3240ec29107bab8addc1
db88cfe5bba684c512130a2481d784ea255aa0d2b9d9bc062d328acebc707982
GET /wp-content/themes/rays/css/bootstrap.min.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:06 GMT
etag: W/"56a1f6da-1bb5a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/font-awesome.min.css?ver=1.0
46.37.14.198404 Not Found 10 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/font-awesome.min.css?ver=1.0
IP 46.37.14.198:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 727af351a1e0b50d6519cf317fdb3c99
276363f1f7485ad2b3e8a79dc4398e14afe3c720
3bb6be1a67b94dc63add498b93e8508c7c33c7b0e346af79e7c44073dc72c04c
GET /wp-content/plugins/wp-appointments/app/assets/front-end/css/font-awesome.min.css?ver=1.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 25 Sep 2022 14:20:40 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.pievemarsina.com/en/wp-json/>; rel="https://api.w.org/"
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:39 GMT; Max-Age=31536000; path=/
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pievemarsina.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 326797
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 18260, version 1.0\012- data
Hash 6dea752293556883fdae057d588b0bb1
e4d090e03bb920f5ddf7b09937428b2a0a2a9ee0
1ff84f1e03eb15dedc4668f0817372b734934076bc936e12c5c0bd3944dab0c0
GET /s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pievemarsina.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18260
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 17:03:17 GMT
expires: Fri, 22 Sep 2023 17:03:17 GMT
cache-control: public, max-age=31536000
age: 249448
last-modified: Mon, 11 Jul 2022 21:03:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/jquery.plugin.min.js?ver=6.0.2
46.37.14.198200 OK 22 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/jquery.plugin.min.js?ver=6.0.2
IP 46.37.14.198:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3291), with CRLF line terminators
Hash f09f50328929fc9d18ee45efef24cbca
7802d0e4e9acd78d01658580a4a7255626011e30
b3f17c3e6c9e7797e65950050e64cbdcc686846cd1717828d58a205d2294bd55
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/js/jquery.plugin.min.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-dbc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/uploads/2015/04/appartament-home.jpg
46.37.14.198200 OK 207 kB URL HTTP/2 www.pievemarsina.com/wp-content/uploads/2015/04/appartament-home.jpg
IP 46.37.14.198:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x687, components 3\012- data
Size 207 kB (207022 bytes)
Hash 25600851dee2ff8e1864511e3add6a1c
77f796b0632a0226f8fe98c0af63472cc96cb4d3
d81c0f72f415fff2dc5908a33dfd61626ad71d2950fdd7525eb3d850415a96e8
GET /wp-content/uploads/2015/04/appartament-home.jpg HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:44 GMT
content-type: image/jpeg
content-length: 207022
last-modified: Tue, 23 Feb 2016 17:25:14 GMT
etag: "56cc95fa-328ae"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A400%2C100%2C200%2C300%2C500%2C600%2C700%2C800%2C900%7CArimo%3A400%2C400italic%2C700%2C700italic%7CRoboto%3A400%2C100%2C100italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=6.0.2
142.250.74.10200 OK 5.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A400%2C100%2C200%2C300%2C500%2C600%2C700%2C800%2C900%7CArimo%3A400%2C400italic%2C700%2C700italic%7CRoboto%3A400%2C100%2C100italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=6.0.2
IP 142.250.74.10:0
Hash 3a654f9b8782c531ad79830ee6643c4f
4c82ee68a46d77bfd3620e0908f5a71ac490b083
df6660e3ad7a2537c6440378fb3b62caafa3384b03506ed936b863aaf0c99df2
GET /css?family=Raleway%3A400%2C100%2C200%2C300%2C500%2C600%2C700%2C800%2C900%7CArimo%3A400%2C400italic%2C700%2C700italic%7CRoboto%3A400%2C100%2C100italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 14:20:39 GMT
date: Sun, 25 Sep 2022 14:20:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pievemarsina.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:52:00 GMT
expires: Thu, 21 Sep 2023 14:52:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 343725
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff?v=4.2.0
46.37.14.198200 OK 66 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff?v=4.2.0
IP 46.37.14.198:0
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash d95d6f5d5ab7cfefd09651800b69bd54
7d65e0227d0d7cdc1718119cd2a7dce0638f151c
199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/font-awesome/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.pievemarsina.com/wp-content/plugins/js_composer/assets/lib/bower/font-awesome/css/font-awesome.min.css?ver=4.9.2
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:44 GMT
content-type: application/font-woff
content-length: 65452
last-modified: Tue, 19 Jan 2016 13:12:40 GMT
etag: "569e3648-ffac"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/layerslider/css/layerslider.css?ver=6.0.2
46.37.14.198200 OK 4.7 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/layerslider/css/layerslider.css?ver=6.0.2
IP 46.37.14.198:0
Hash c6baa7497e44b58752c66a2591bb451f
835e22e44924faae2f3285e1c8c834922f63424e
6cd34088e6e2c42e8302d27e619b10709c55c67052a06e029332430a5a600a55
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/layerslider/css/layerslider.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-4235"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15764, version 1.0\012- data
Hash 603b8950590bf833546eee7cbc79944a
ebbde06eb829868c5f689afe2d48377608be1e7b
0f303f31706d39866cced9dcc17b61fb8423674278d7f6051d66b3a79ffbca18
GET /s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pievemarsina.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:40:20 GMT
expires: Thu, 21 Sep 2023 19:40:20 GMT
cache-control: public, max-age=31536000
age: 326425
last-modified: Wed, 11 May 2022 19:24:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/fonts/rays-icons.ttf?h9bph3
46.37.14.198200 OK 3.0 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/fonts/rays-icons.ttf?h9bph3
IP 46.37.14.198:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, rays-icons \012- data
Hash 2d1aca525e22af4bbce873a55d2a0365
c21eaaa76df2e988896c7bbd58b687994088f4c7
ded619ce78c60f397e1d98981ea63b52cce2e32edd9967dcef668bbfb6ccfeb1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/fonts/rays-icons.ttf?h9bph3 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/wp-content/themes/rays/style.css?ver=6.0.2
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:44 GMT
content-type: application/font-sfnt
content-length: 2980
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: "56a1f6d8-ba4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/bootstrap-datepicker.min.css?ver=1.0
46.37.14.198404 Not Found 57 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/bootstrap-datepicker.min.css?ver=1.0
IP 46.37.14.198:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 629aeb9ac6afa6e5130c9244f41b2a5b
be672e9431212a687a577bcdf344edd7b68eae2e
d55c5681f186d7021a844131671178b26e545d901ef21a4def0acafe6ab53d93
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-appointments/app/assets/front-end/css/bootstrap-datepicker.min.css?ver=1.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 25 Sep 2022 14:20:40 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.pievemarsina.com/en/wp-json/>; rel="https://api.w.org/"
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:40 GMT; Max-Age=31536000; path=/
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/public.js?ver=4.2
46.37.14.198200 OK 16 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/public.js?ver=4.2
IP 46.37.14.198:0
Hash e3cdafa53027be421488c05f092ab929
4a85fc6e13071c186a7d75359ddd565db3af928f
addf29f6f6f30de277ced52868a962ea361c34eb492f9a9d5694df1f9527e159
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-facebook-likebox/public/assets/js/public.js?ver=4.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Tue, 29 Mar 2016 14:39:42 GMT
etag: W/"56fa93ae-9f8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.163200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pievemarsina.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:13:12 GMT
expires: Tue, 19 Sep 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 493653
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/uploads/2016/09/phone-call.png
46.37.14.198200 OK 696 B URL HTTP/2 www.pievemarsina.com/wp-content/uploads/2016/09/phone-call.png
IP 46.37.14.198:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a77e9cf8b8f61a899db63b3884e918e0
e09e296bffd78c254f582ace8e1f7dcaf8e998fd
53bd2023c54eeb3fb4d9df1a5dd70146e192ef182f06ad1192a20f4fc2671d45
GET /wp-content/uploads/2016/09/phone-call.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: image/png
content-length: 696
x-accel-version: 0.01
last-modified: Fri, 30 Sep 2016 07:20:16 GMT
etag: "2b8-53db46d04ec00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/uploads/2016/09/calendar.png
46.37.14.198200 OK 383 B URL HTTP/2 www.pievemarsina.com/wp-content/uploads/2016/09/calendar.png
IP 46.37.14.198:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 30384dbed13074c0647df54fa699ba82
068d7199fd25ae514dee26c5e30b3b622e50810c
1c2d838c7771ef1b5d50fbbffc81bf54529acff127e1f097a5c16fc78a9c4c6f
GET /wp-content/uploads/2016/09/calendar.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: image/png
content-length: 383
x-accel-version: 0.01
last-modified: Thu, 29 Sep 2016 16:01:16 GMT
etag: "17f-53da7966b4b00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d1681901.8080618565!2d10.236358129808512!3d43.384776897217385!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x132bcdebcccb11dd%3A0x2d6d96b5e18774c4!2sLa+Pieve+Marsina+Tuscan+Retreat!5e0!3m2!1sit!2sit!4v1539185712300
142.250.74.164200 OK 1.5 kB URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d1681901.8080618565!2d10.236358129808512!3d43.384776897217385!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x132bcdebcccb11dd%3A0x2d6d96b5e18774c4!2sLa+Pieve+Marsina+Tuscan+Retreat!5e0!3m2!1sit!2sit!4v1539185712300
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2753)
Hash 73a1ab6a4f6ad83c406974d5c34aa84f
db92a7aa468432971d85d1176a72f28c04239260
fcfe33f21869ed8c0ae6b36790da106613164190de57ae24249e2274529e5ffa
GET /maps/embed?pb=!1m18!1m12!1m3!1d1681901.8080618565!2d10.236358129808512!3d43.384776897217385!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x132bcdebcccb11dd%3A0x2d6d96b5e18774c4!2sLa+Pieve+Marsina+Tuscan+Retreat!5e0!3m2!1sit!2sit!4v1539185712300 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 25 Sep 2022 14:20:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-gb8p36TKexha7GKsjwBNMw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1486
x-xss-protection: 0
server-timing: gfet4t7; dur=169
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/the-preloader/images/preloader.gif
46.37.14.198200 OK 101 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/the-preloader/images/preloader.gif
IP 46.37.14.198:0
File type GIF image data, version 89a, 120 x 120\012- data
Size 101 kB (100727 bytes)
Hash eb688c8cf529e90682bb3ff44e607c80
7a4db397ab2e32d045b9a585d9aa6d0f1d916e38
8ef886544f84f0c1b5a58a39ced26b7612b75a44df96227a283fd374e229d041
GET /wp-content/plugins/the-preloader/images/preloader.gif HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: image/gif
content-length: 100727
last-modified: Mon, 22 Feb 2016 16:05:08 GMT
etag: "56cb31b4-18977"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/images/arrow.png
46.37.14.198200 OK 3.9 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/images/arrow.png
IP 46.37.14.198:0
File type PNG image data, 91 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 12678535699c75c0e4104f823f0f9374
8ae846e38f785cc5a681615c016cf9073a1967d4
fd25068d4068818be376268af11a3e92d999e52503f160b543df214bf4713d61
GET /wp-content/themes/rays/images/arrow.png HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/wp-content/themes/rays/style.css?ver=6.0.2
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: image/png
content-length: 3875
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: "56a1f6d8-f23"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pievemarsina.com/wp-content/uploads/2016/03/null-1188489_1920-370x514.jpg
46.37.14.198200 OK 45 kB URL HTTP/2 www.pievemarsina.com/wp-content/uploads/2016/03/null-1188489_1920-370x514.jpg
IP 46.37.14.198:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 370x514, components 3\012- data
Hash 0b76ce732621c449969882a319312c7d
69ef08b5c8a0e9880693e2b1f626603aa95b1c18
9b3feb5b7fd483205e4f40eb0d8af8c2bab45779112309459339f3a3b6ef7393
GET /wp-content/uploads/2016/03/null-1188489_1920-370x514.jpg HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: image/jpeg
content-length: 45420
last-modified: Fri, 29 Apr 2016 17:30:52 GMT
etag: "57239a4c-b16c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/2checkout.js?ver=6.0.2
46.37.14.198200 OK 27 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/2checkout.js?ver=6.0.2
IP 46.37.14.198:0
File type ASCII text, with very long lines (37030), with CRLF line terminators
Hash fa4249835cc597c5d4f44e2e16da51a2
ad9b7492e26277f770d594da5563d37e00cb12e7
1ad4e63fb2f5ac8010028d696d80fc7ab630e3908e8e4f194fe5ae6f967385fd
GET /wp-content/themes/rays/js/2checkout.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-9dd0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/uploads/2016/02/watches-1204696_1280-370x514.jpg
46.37.14.198200 OK 62 kB URL HTTP/2 www.pievemarsina.com/wp-content/uploads/2016/02/watches-1204696_1280-370x514.jpg
IP 46.37.14.198:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 370x514, components 3\012- data
Hash b802dc29290a2d5e20ad3d7943f3b39d
3aab85af3fac3a2131e02a81b6f98f4f96a1bf59
ce991bc49a5245ba027289f206a76e0d46848afd365a10e8a3cc29563afc3f33
GET /wp-content/uploads/2016/02/watches-1204696_1280-370x514.jpg HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: image/jpeg
content-length: 62531
last-modified: Fri, 29 Apr 2016 17:31:10 GMT
etag: "57239a5e-f443"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.9.2
46.37.14.198200 OK 22 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.9.2
IP 46.37.14.198:0
File type ASCII text, with very long lines (18520), with no line terminators
Hash 08691259b833f6e5560cef10fc891594
6e7427f3693e3ebefc194284363b74635e499650
6fe156fbec7f62d12a4a2a312d56a59434d4ff666516f0ed8f84ebfc67771fbf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=4.9.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Tue, 19 Jan 2016 13:12:40 GMT
etag: W/"569e3648-4858"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
widget.customer-alliance.com/build/fonts/open-sans-latin_latin-ext-300.woff2
144.76.151.254200 OK 16 kB URL HTTP/2 widget.customer-alliance.com/build/fonts/open-sans-latin_latin-ext-300.woff2
IP 144.76.151.254:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 16340, version 1.6554\012- data
Hash cfceb2ce8cce429d06c67487607cb71d
e55a42dc0f842803466b0840513414e70b6c7235
84b04c672a4ac903d6ed9d9a590f2743c0fca77ae76b3ae2c75f0bde655f4f88
GET /build/fonts/open-sans-latin_latin-ext-300.woff2 HTTP/1.1
Host: widget.customer-alliance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pievemarsina.com
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: font/woff2
content-length: 16340
last-modified: Thu, 22 Sep 2022 13:50:04 GMT
etag: "632c680c-3fd4"
access-control-allow-origin: *
vary: X-Forwarded-Proto
age: 67
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
widget.customer-alliance.com/build/fonts/open-sans-latin_latin-ext-700.woff2
144.76.151.254200 OK 16 kB URL HTTP/2 widget.customer-alliance.com/build/fonts/open-sans-latin_latin-ext-700.woff2
IP 144.76.151.254:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 16468, version 1.6554\012- data
Hash 100a476a622f50affc2dbe4b80ed986d
abe81edaad3e48a2f11ada7b93955e63045ff244
d8b88139a57b947ead982409d86e33702eebe5da8a93debb58361720d6d3fea9
GET /build/fonts/open-sans-latin_latin-ext-700.woff2 HTTP/1.1
Host: widget.customer-alliance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pievemarsina.com
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: font/woff2
content-length: 16468
last-modified: Thu, 22 Sep 2022 13:50:04 GMT
etag: "632c680c-4054"
access-control-allow-origin: *
vary: X-Forwarded-Proto
age: 98
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
widget.customer-alliance.com/build/fonts/open-sans-latin_latin-ext-600.woff2
144.76.151.254200 OK 17 kB URL HTTP/2 widget.customer-alliance.com/build/fonts/open-sans-latin_latin-ext-600.woff2
IP 144.76.151.254:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 16812, version 1.6554\012- data
Hash f02da507ad68b43061f961a0c783324f
654e9294a85866b7b3ef80773ad917d38472ab00
5b733fdd03795bc43a293955993c0e8485319ccbd1684876c61cceca351fa5fc
GET /build/fonts/open-sans-latin_latin-ext-600.woff2 HTTP/1.1
Host: widget.customer-alliance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.pievemarsina.com
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: font/woff2
content-length: 16812
last-modified: Thu, 22 Sep 2022 13:50:04 GMT
etag: "632c680c-41ac"
access-control-allow-origin: *
vary: X-Forwarded-Proto
age: 83
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/css/owl-carousel.css?ver=6.0.2
46.37.14.198200 OK 18 kB URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/owl-carousel.css?ver=6.0.2
IP 46.37.14.198:0
File type ASCII text, with CRLF line terminators
Hash c1d24629217709c523f60b2cf3e8c21b
79b229b13816084f1bb915d46a72b4a2719110c6
020498093b0a0cfd80749e0056f6750d52f628d53f826f3015617c9be0728411
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/css/owl-carousel.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:06 GMT
etag: W/"56a1f6da-13da"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/responsive.css?ver=1.0
46.37.14.198404 Not Found 39 kB URL HTTP/2 www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/responsive.css?ver=1.0
IP 46.37.14.198:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 31a75deaedf8687e75ef89b57089a764
1bd2ac97d0c4922df2f2e0bd2eb3d5871ba5130b
482447bb46325ca2a2976a38ca7bcfaf696e33acfc777cabc7d0532f42872f67
GET /wp-content/plugins/wp-appointments/app/assets/front-end/css/responsive.css?ver=1.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 25 Sep 2022 14:20:40 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.pievemarsina.com/en/wp-json/>; rel="https://api.w.org/"
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:39 GMT; Max-Age=31536000; path=/
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6738d1761d3c5000a4a15aa4abf2f7d0
7a81af5cdb7fb0d139ac3974e1fc3a031a0b0b49
7920e24baa7bcf6ac07d419e4e2a71ad39e8ad273e6d12003e0730adb95c9afa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5550
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:45 GMT
Last-Modified: Sun, 25 Sep 2022 12:48:15 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Sun, 25 Sep 2022 12:41:09 GMT
expires: Sun, 25 Sep 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 5976
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6738d1761d3c5000a4a15aa4abf2f7d0
7a81af5cdb7fb0d139ac3974e1fc3a031a0b0b49
7920e24baa7bcf6ac07d419e4e2a71ad39e8ad273e6d12003e0730adb95c9afa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5550
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:45 GMT
Last-Modified: Sun, 25 Sep 2022 12:48:15 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ca5IlbM/17WZY6x8ISpG9jdO2MlMgxe39eHk94gVOo5ZbuypFQ7cPxM9VKaMg0oQWw8cUa1my9kDbzzrrVgi3w==
content-length: 26840
x-fb-trip-id: 1679558926
date: Sun, 25 Sep 2022 14:20:45 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1961)
Hash 373c6378341d30120e0c24ee29744542
e6b35d978eb5143ff904919c3e40012f1d072d44
63cb05a5b67d08ead4a40cdd2d571967d360ac723a66d2cdfaac33b7fc4dfc42
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6e82243d8f9139c50f2d4337d0f37899
etag: "aefc286764f4229b0e62dab248564410"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 25 Sep 2022 14:32:26 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: NzxjeDQdMBIODCTuKXRFQg==
x-fb-debug: TlrclWSsC4yGnBCAHf3hLhCxBqkHHMkbHfgYNWzn4xq77pcPxs0oVFtvqXaPlA0Bj036ZL3w4B4xjwnryHbs2A==
content-length: 1685
x-fb-trip-id: 1679558926
date: Sun, 25 Sep 2022 14:20:45 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6738d1761d3c5000a4a15aa4abf2f7d0
7a81af5cdb7fb0d139ac3974e1fc3a031a0b0b49
7920e24baa7bcf6ac07d419e4e2a71ad39e8ad273e6d12003e0730adb95c9afa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5550
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:45 GMT
Last-Modified: Sun, 25 Sep 2022 12:48:15 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.pievemarsina.com
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.pievemarsina.com
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.pievemarsina.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 2137054
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sun, 25 Sep 2022 14:20:45 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
www.facebook.com/tr/?id=850691601706854&ev=PageView&dl=https%3A%2F%2Fwww.pievemarsina.com%2Fen%2F&rl=&if=false&ts=1664115644442&cd[source]=wordpress&cd[version]=6.0.2&cd[pluginVersion]=1.7.7&sw=1280&sh=1024&v=2.9.84&r=stable&a=wordpress-6.0.2-1.7.7&ec=0&o=30&fbp=fb.1.1664115644441.621985835&it=1664115644228&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=850691601706854&ev=PageView&dl=https%3A%2F%2Fwww.pievemarsina.com%2Fen%2F&rl=&if=false&ts=1664115644442&cd[source]=wordpress&cd[version]=6.0.2&cd[pluginVersion]=1.7.7&sw=1280&sh=1024&v=2.9.84&r=stable&a=wordpress-6.0.2-1.7.7&ec=0&o=30&fbp=fb.1.1664115644441.621985835&it=1664115644228&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=850691601706854&ev=PageView&dl=https%3A%2F%2Fwww.pievemarsina.com%2Fen%2F&rl=&if=false&ts=1664115644442&cd[source]=wordpress&cd[version]=6.0.2&cd[pluginVersion]=1.7.7&sw=1280&sh=1024&v=2.9.84&r=stable&a=wordpress-6.0.2-1.7.7&ec=0&o=30&fbp=fb.1.1664115644441.621985835&it=1664115644228&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 14:20:45 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c29810e7b34472452d3e8edd46811445
98f043a5647ef8c9f008da0c82f1cf00964765d7
528ab2bbab65f11b39703705ebb002a3521e217e799d40820c27579c3d5045c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2156
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:20:45 GMT
Last-Modified: Sun, 25 Sep 2022 13:44:49 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313
www.pievemarsina.com/wp-content/themes/rays/js/owl.carousel.min.js?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/owl.carousel.min.js?ver=6.0.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/js/owl.carousel.min.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-ab51"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/razorpay.js?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/razorpay.js?ver=6.0.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/js/razorpay.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-3d1f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
widget.customer-alliance.com/reviews/js/standard/c3d9999868f198b0.js
144.76.151.254200 OK 0 B URL HTTP/2 widget.customer-alliance.com/reviews/js/standard/c3d9999868f198b0.js
IP 144.76.151.254:0
ASN #24940 Hetzner Online GmbH
GET /reviews/js/standard/c3d9999868f198b0.js HTTP/1.1
Host: widget.customer-alliance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:40 GMT
content-type: application/javascript
cache-control: public, s-maxage=3600
content-language: en
content-encoding: gzip
vary: Accept-Encoding, Accept-Language, X-Forwarded-Proto
age: 0
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pievemarsina.com/en/
46.37.14.198200 OK 0 B IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /en/ HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/html; charset=UTF-8
link: <https://www.pievemarsina.com/en/wp-json/>; rel="https://api.w.org/", <https://www.pievemarsina.com/en/wp-json/wp/v2/pages/38>; rel="alternate"; type="application/json", <https://www.pievemarsina.com/en/>; rel=shortlink
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:38 GMT; Max-Age=31536000; path=/
x-powered-by: PHP/7.4.30, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/the-preloader/js/preloader-script.js
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/the-preloader/js/preloader-script.js
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/the-preloader/js/preloader-script.js HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Mon, 22 Feb 2016 15:55:54 GMT
etag: W/"105-52c5dde237680"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/custom-facebook-feed/js/cff-scripts.js?ver=2.4
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/custom-facebook-feed/js/cff-scripts.js?ver=2.4
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/custom-facebook-feed/js/cff-scripts.js?ver=2.4 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Tue, 29 Mar 2016 14:23:12 GMT
etag: W/"56fa8fd0-214d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/ik-facebook/include/css/gallery.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/ik-facebook/include/css/gallery.css?ver=6.0.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ik-facebook/include/css/gallery.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Tue, 29 Mar 2016 14:42:20 GMT
etag: W/"56fa944c-633"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/css/public.css?ver=4.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/css/public.css?ver=4.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-facebook-likebox/public/assets/css/public.css?ver=4.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Tue, 29 Mar 2016 14:39:42 GMT
etag: W/"56fa93ae-2292"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/css/responsive.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/responsive.css?ver=6.0.2
IP 46.37.14.198:0
GET /wp-content/themes/rays/css/responsive.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Sat, 06 Feb 2016 16:37:58 GMT
etag: W/"56b62166-298b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/flags.css?ver=1.0
46.37.14.198404 Not Found 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/flags.css?ver=1.0
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-appointments/app/assets/front-end/css/flags.css?ver=1.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 25 Sep 2022 14:20:40 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.pievemarsina.com/en/wp-json/>; rel="https://api.w.org/"
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:39 GMT; Max-Age=31536000; path=/
content-encoding: br
X-Firefox-Spdy: h2
pievemarsina.com/
46.37.14.198302 Found 0 B IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sun, 25 Sep 2022 14:20:38 GMT
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:38 GMT; Max-Age=31536000; path=/
location: https://pievemarsina.com/en/
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A400%2C100%2C200%2C500%2C600%2C300%2C700%2C800%2C900%7CArimo%3A400%2C400italic%2C700%2C700italic%7CRoboto%2BSlab%3A400%2C300%2C100%2C700%7CRoboto%3A400%2C100%2C100italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=1.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A400%2C100%2C200%2C500%2C600%2C300%2C700%2C800%2C900%7CArimo%3A400%2C400italic%2C700%2C700italic%7CRoboto%2BSlab%3A400%2C300%2C100%2C700%7CRoboto%3A400%2C100%2C100italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=1.0
IP 142.250.74.10:0
GET /css?family=Raleway%3A400%2C100%2C200%2C500%2C600%2C300%2C700%2C800%2C900%7CArimo%3A400%2C400italic%2C700%2C700italic%7CRoboto%2BSlab%3A400%2C300%2C100%2C700%7CRoboto%3A400%2C100%2C100italic%2C300%2C300italic%2C400italic%2C500%2C500italic%2C700%2C700italic%2C900%2C900italic&subset=latin%2Clatin-ext&ver=1.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 14:20:39 GMT
date: Sun, 25 Sep 2022 14:20:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css?ver=4.5.0
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css?ver=4.5.0
IP 104.18.11.207:0
GET /font-awesome/4.5.0/css/font-awesome.min.css?ver=4.5.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 718
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-03-10 20:26:24
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 383ccb0d590aeb837241674b042913a7
cdn-cache: HIT
cf-cache-status: HIT
age: 13426413
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 750466db3a69fab8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Mon, 19 Sep 2022 12:31:09 GMT
etag: W/"6328610d-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/jquery.prettyPhoto.js?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/jquery.prettyPhoto.js?ver=6.0.2
IP 46.37.14.198:0
GET /wp-content/themes/rays/js/jquery.prettyPhoto.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-5b39"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/simple-cookie-notification-bar/assets/css/style.min.css?ver=1.5
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/simple-cookie-notification-bar/assets/css/style.min.css?ver=1.5
IP 46.37.14.198:0
GET /wp-content/plugins/simple-cookie-notification-bar/assets/css/style.min.css?ver=1.5 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Wed, 02 Mar 2016 09:26:10 GMT
etag: W/"37a-52d0d78ea5080"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/jquery.scrolly.js?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/jquery.scrolly.js?ver=6.0.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/js/jquery.scrolly.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-954"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/jquery.datepick.js?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/jquery.datepick.js?ver=6.0.2
IP 46.37.14.198:0
GET /wp-content/themes/rays/js/jquery.datepick.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-24ec7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/custom-facebook-feed/css/cff-style.css?ver=2.4
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/custom-facebook-feed/css/cff-style.css?ver=2.4
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/custom-facebook-feed/css/cff-style.css?ver=2.4 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Tue, 29 Mar 2016 14:23:12 GMT
etag: W/"56fa8fd0-22d4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/wp-twitter-feeds/css/admin_style.min.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/wp-twitter-feeds/css/admin_style.min.css?ver=6.0.2
IP 46.37.14.198:0
GET /wp-content/plugins/wp-twitter-feeds/css/admin_style.min.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Tue, 23 Feb 2016 10:32:08 GMT
etag: W/"56cc3528-2270"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/bootstrap.min.css?ver=1.0
46.37.14.198404 Not Found 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/bootstrap.min.css?ver=1.0
IP 46.37.14.198:0
GET /wp-content/plugins/wp-appointments/app/assets/front-end/css/bootstrap.min.css?ver=1.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 25 Sep 2022 14:20:40 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.pievemarsina.com/en/wp-json/>; rel="https://api.w.org/"
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:39 GMT; Max-Age=31536000; path=/
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/css/onepage-scroll.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/onepage-scroll.css?ver=6.0.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/css/onepage-scroll.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:06 GMT
etag: W/"56a1f6da-704"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/css/payment_icons.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/payment_icons.css?ver=6.0.2
IP 46.37.14.198:0
GET /wp-content/themes/rays/css/payment_icons.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:06 GMT
etag: W/"56a1f6da-1076"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/ik-facebook/include/css/light_style.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/ik-facebook/include/css/light_style.css?ver=6.0.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ik-facebook/include/css/light_style.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Tue, 29 Mar 2016 14:42:20 GMT
etag: W/"56fa944c-1255"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/color.css?ver=1.0
46.37.14.198404 Not Found 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/wp-appointments/app/assets/front-end/css/color.css?ver=1.0
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-appointments/app/assets/front-end/css/color.css?ver=1.0 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 25 Sep 2022 14:20:40 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.pievemarsina.com/en/wp-json/>; rel="https://api.w.org/"
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:40 GMT; Max-Age=31536000; path=/
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.9.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.9.2
IP 46.37.14.198:0
GET /wp-content/plugins/js_composer/assets/lib/waypoints/waypoints.min.js?ver=4.9.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Tue, 19 Jan 2016 13:12:40 GMT
etag: W/"569e3648-1f6c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/jquery.cookie.js?ver=4.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/js/jquery.cookie.js?ver=4.2
IP 46.37.14.198:0
GET /wp-content/plugins/easy-facebook-likebox/public/assets/js/jquery.cookie.js?ver=4.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Tue, 29 Mar 2016 14:39:42 GMT
etag: W/"56fa93ae-c38"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/userincr.js?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/userincr.js?ver=6.0.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/js/userincr.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-14d4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
pievemarsina.com/en/
46.37.14.198301 Moved Permanently 0 B IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /en/ HTTP/1.1
Host: pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: qtrans_front_language=en
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 25 Sep 2022 14:20:38 GMT
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
set-cookie: qtrans_front_language=en; expires=Mon, 25-Sep-2023 14:20:38 GMT; Max-Age=31536000; path=/
location: https://www.pievemarsina.com/en/
x-powered-by: PHP/7.4.30, PleskLin
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/magnific-popup.css?ver=4.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/easy-facebook-likebox/public/assets/popup/magnific-popup.css?ver=4.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/easy-facebook-likebox/public/assets/popup/magnific-popup.css?ver=4.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Tue, 29 Mar 2016 14:39:42 GMT
etag: W/"56fa93ae-1e6d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-includes/js/comment-reply.min.js?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-includes/js/comment-reply.min.js?ver=6.0.2
IP 46.37.14.198:0
GET /wp-includes/js/comment-reply.min.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Mon, 19 Sep 2022 12:31:10 GMT
etag: W/"6328610e-ba5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/css/color.css
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/color.css
IP 46.37.14.198:0
GET /wp-content/themes/rays/css/color.css HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:45 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:06 GMT
etag: W/"56a1f6da-12e9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/css/font-awesome.min.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/font-awesome.min.css?ver=6.0.2
IP 46.37.14.198:0
GET /wp-content/themes/rays/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:06 GMT
etag: W/"56a1f6da-7012"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/css/animate.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/css/animate.css?ver=6.0.2
IP 46.37.14.198:0
GET /wp-content/themes/rays/css/animate.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 22 Jan 2016 09:31:06 GMT
etag: W/"56a1f6da-1348d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.9.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.9.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=4.9.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Tue, 19 Jan 2016 13:12:40 GMT
etag: W/"569e3648-b15e9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/style.css?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/style.css?ver=6.0.2
IP 46.37.14.198:0
GET /wp-content/themes/rays/style.css?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 13:17:12 GMT
etag: W/"62597058-39f26"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.pievemarsina.com/wp-content/themes/rays/js/bootstrap.min.js?ver=6.0.2
46.37.14.198200 OK 0 B URL HTTP/2 www.pievemarsina.com/wp-content/themes/rays/js/bootstrap.min.js?ver=6.0.2
IP 46.37.14.198:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/rays/js/bootstrap.min.js?ver=6.0.2 HTTP/1.1
Host: www.pievemarsina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pievemarsina.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:20:39 GMT
content-type: application/javascript
last-modified: Fri, 22 Jan 2016 09:31:04 GMT
etag: W/"56a1f6d8-97b0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2