{"report_id":"5e0ce897-f66f-42b6-87da-584baf2be643","version":6,"status":"done","tags":[],"date":"2026-02-04T17:31:30Z","url":{"schema":"http","addr":"vantaggio-it.digital","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"104.21.94.112","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"vantaggio-it.digital/","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"title":"Vantaggio AI","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"vantaggio-it.digital","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"104.21.94.112","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-11T17:31:30Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":6}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null},"summary":[{"fqdn":"ipapi.co","ip":{"addr":"104.26.9.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-04-19","domain_rank":7936,"first_seen":"2017-01-31T09:07:01Z","last_seen":"2026-02-04T12:01:59.027922Z","alert_count":0,"request_count":1,"received_data":2483,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"min-api.cryptocompare.com","ip":{"addr":"20.4.130.154","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"domain_registered":"2013-11-03","domain_rank":433733,"first_seen":"2017-01-31T12:53:23Z","last_seen":"2026-01-31T02:51:46.549883Z","alert_count":0,"request_count":1,"received_data":673,"sent_data":496,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"fonts.cdnfonts.com","ip":{"addr":"172.67.184.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2018-10-03","domain_rank":50661,"first_seen":"2020-06-10T09:02:17Z","last_seen":"2026-01-28T17:07:01.464052Z","alert_count":0,"request_count":2,"received_data":18782,"sent_data":976,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-02-01T22:32:08.727296Z","alert_count":0,"request_count":4,"received_data":382560,"sent_data":1956,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-02-01T22:17:46.954894Z","alert_count":0,"request_count":1,"received_data":5573,"sent_data":509,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2026-02-01T22:46:30.991716Z","alert_count":0,"request_count":1,"received_data":88169,"sent_data":463,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-02-01T22:14:44.580478Z","alert_count":0,"request_count":1,"received_data":73799,"sent_data":543,"comment":"","tags":null,"fingerprints":null},{"fqdn":"vantaggio-it.digital","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-04T14:23:37.163363Z","last_seen":"2026-02-04T14:23:37.163363Z","alert_count":120,"request_count":20,"received_data":2924923,"sent_data":11796,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/global_lpn_2_0/validation.js","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d3afc4debafe2cdc5e8922b67d106dc8","sha1":"8e24348db7697e3f37d7af7018e241cc4977de64","sha256":"630697298bf3dc854481028ece3625d20051176fded019a5195e2638e8575a40","sha512":"5f345b901979b4697af33fc5b19713844f4f9435a1679c83d2e70df8bb839339aec625f3caef3578713edc1767cccd5c5331436399de3f660237ca83f405ffe2","ssdeep":"96:WOTqLdUpFVkda+pcfQiEnCObOwrSjWDsknMOPOQ0hnu4oGW0s3ALOwM:WOWLdUpFVkda+pmQrnRhrSj0BmQZvGtW","tlshash":"d6b173e870f10519693356fd26df510669d9710bec45d98e3ecc83800f568e8ee9a3ec","size":5309,"data":"","first_seen":"2025-11-07T08:51:13.902875Z","last_seen":"2026-02-06T21:56:59.507733Z","times_seen":27,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/js/main.js","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"72b7e21741cb233f0e7ac1868379bb6e","sha1":"808ab23487469ab652c7698362844d96278c257c","sha256":"6a24e7609859464e938b6d8e72509c4ff1b3a0cf23976fcebc516e68ad6fb3c8","sha512":"5b22a4513620095e61e4f91f4ba3ce8ea0cd01b4b3381f85f60bb32d8535dfb1247ffff30babcb6cca911e441b82c3b4f8d0a3dff69c2a1d61a3b3550784487d","ssdeep":"","tlshash":"a041a92b3bba14240a9bb8bb539fa748792220033c97d64d7e5c49281fd1f6095f578d","size":2118,"data":"","first_seen":"2026-01-20T09:16:47.882418Z","last_seen":"2026-02-04T17:32:27.824758Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/js/intlTelInput.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c86b61ae6f79b75c7e08b42a351a7b6e","sha1":"16ee5c0d605e5a30b9f58107dbded4a97ba9bfa2","sha256":"e1759a4dbfab9dcdae85ac8ee40e4c961a098eb49f7e5a96ceb1ab928e6f681f","sha512":"cb1485a28c54e0b665efebb05f6c21696c28e8679f1e818e92657a121286c337231a435ea84bebaaee26b6b6c7e966049c85d1b4db8b9070c096d18ae4d8308c","ssdeep":"768:c603Xlqn/kiIzJT9FSRzA4xXnT2nYdn24X68a:cDiIz8A4knYdw","tlshash":"0cd2e7aeb365673ba6fd82a270e54503af7f79444604083d78ac8ede0288ed171f5b34","size":29872,"data":"","first_seen":"2024-07-10T10:54:41Z","last_seen":"2026-04-07T02:34:18.150961Z","times_seen":391,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c872dbe60f4ba70fb85356113d8b35e","sha1":"ee48592d1fff952fcf06ce0b666ed4785493afdc","sha256":"fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a","sha512":"bf6089ed4698cb8270a8b0c8ad9508ff886a7a842278e98064d5c1790ca3a36d5d69d9f047ef196882554fc104da2c88eb5395f1ee8cf0f3f6ff8869408350fe","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKr:sHNwcv9VBQpLl88SMBQ47GKr","tlshash":"3983f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","size":87533,"data":"","first_seen":"2023-08-31T16:03:19Z","last_seen":"2026-04-12T19:00:18.469251Z","times_seen":139413,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1d6965eaacca003e4d3cee17b4ebbff2","sha1":"64ef5c1d10ea9b11acc1a3881933ee28b4b1dd58","sha256":"c54a8944a658d507a8ad02f9ed7fbe4ab6525708aebca402e3b781b34a4f1aed","sha512":"f06ace219cc3b6608737494c54d933874731cb004169d5ad02a4f40ffa6ac15ebe874f3732648498f16932935d807dc0e702e16363836cac8b7f80848c0001d1","ssdeep":"","tlshash":"7de0cd1b4575047101579166978a5b45a272004b5045651abd4d4a266fd0d6c14f0bd2","size":391,"data":"","first_seen":"2025-09-21T21:48:23.192289Z","last_seen":"2026-02-15T01:19:43.975311Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6eae88fad6fe723d8c8d2386a63dd152","sha1":"42046e250c7f2eeff4619a89b0be7b83e01e5edf","sha256":"a4000409a897003b1c5a8e1f9f32e18a11b022452151cc47c17ecdcb76d5223b","sha512":"d356bd87f7170499fbf445353afeda69dbaccc391eb41826290a30752475735a27d56ce1d642af1dcb02f93a1405926a440add5cb38000b7d112cab0f918bd6e","ssdeep":"3072:9klM0hpJjFs3OwPss3MwPKm7i9T2xFM8Mp2xHsNBWUsD56kmLNTg/QKWVRphmVEw:9klMipBKxxFM8Mp2qbZQ","tlshash":"1144f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","size":258914,"data":"","first_seen":"2024-07-10T10:54:41Z","last_seen":"2026-04-12T13:49:54.211301Z","times_seen":1514,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/logo_it.svg","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/logo_it.svg HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3bqbCFOTl7LfQdbti4FKMQi6XcdB8XZOiOe0J72rAD02RQ8VvI8SMPy%2FKdqnc9YqTOjpV3ThkugCpQL8EFGWgm42%2F9zP7%2Bxng4PprTuAu1T0ss%2B0\"}]}\r\netag: W/\"691d8b53-3c0\"\r\ncontent-encoding: br\r\ncf-ray: 9c8be646b9398be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":960,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"85d74743ccc3877050c04efcc20f8b95","sha1":"f1581f1427f63b316fa29ab3c70c10d05522c20a","sha256":"bce3239282b5c239f8b101deba714575d044fffdecfe23d1ed285c014a4cc052","sha512":"03c20c16e4090678b287f17353d1eeacdaafd5b015401547c57aa15399fb01b15326b323e109407150e16a481f43a45a80973da54eda484d54c57a2ddf67dbfc","ssdeep":"","tlshash":"35117dc8328cd1844e4c4726970e243ba22b30f8e11a46c165513b07bccdaab4c7d7d8","first_seen":"2026-02-04T14:23:42.403473Z","last_seen":"2026-02-04T17:32:27.837334Z","times_seen":3,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.cdnfonts.com/s/18576/FuturaLT-CondensedExtraBold.woff","fqdn":"fonts.cdnfonts.com","domain":"cdnfonts.com","tld":"com"},"ip":{"addr":"172.67.184.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.750Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnfonts.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 10:30:43 GMT","end":"Sun, 05 Apr 2026 11:28:02 GMT"},"fingerprint":{"sha1":"19:1C:B1:F3:D2:08:65:B6:9A:C1:B4:79:D3:ED:56:0D:86:BE:C1:C5","sha256":"D5:42:A7:E8:38:8B:14:DE:00:B4:7F:DE:0D:40:F9:71:1D:5A:5E:5F:69:37:DF:9D:89:C2:31:AD:C5:EA:46:22"}}},"request":{"raw":"GET /s/18576/FuturaLT-CondensedExtraBold.woff HTTP/1.1\r\nHost: fonts.cdnfonts.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://vantaggio-it.digital\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.cdnfonts.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: font/woff\r\ncontent-length: 13292\r\npriority: u=4,i=?0\r\nlast-modified: Sat, 05 Feb 2022 02:00:39 GMT\r\netag: \"33ec-5d73bbbf04828\"\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\nage: 11270\r\ncache-control: max-age=2678400\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=UepwOarblkwIWIwlEXe78rxZVegWOJp%2F0X1J%2BQEaPsONKWSz3dbNI8c%2FcYqCr6DnpU%2FfzbNGsjSuslgtW7QfOGBkuTnL%2FfIuBQLRCKMgvBw%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64b1865b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13292,"size_decoded":0,"mime_type":"font/woff","magic":"Web Open Font Format, TrueType, length 13292, version 0.0","md5":"043825fcbf3988a8eac254118d616bd3","sha1":"928574fe39964427b682472126d02303ce62d110","sha256":"4096b0cf28efa4b9784a38329f4eb4b8e13b1882c5aece39ae26e50ca5e8efd0","sha512":"32ce0ad70bee15078497177e989b7829f5b046a272c1f910492845b93af8255802bee10a9f256538296f1a393571023f0959a1753b9e38637ce64d347d4fb0e2","ssdeep":"384:6ez38XjPTbp3tmt3fhU/L3ybcdBLITeUka0fnRY9:/zsXj6t3uj0IcThh","tlshash":"d252d039a213108de132a57c128582bf8f3044df89b253a7139867fc54fd96adca7033","first_seen":"2024-08-19T17:18:58.872876Z","last_seen":"2026-03-27T01:26:29.116335Z","times_seen":10,"resource_available":false,"data":null}},"time_used":116,"timings":{"blocked":62,"dns":44,"connect":0,"send":0,"wait":7,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/favicon_n.png","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:05.383Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/favicon_n.png HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:05 GMT\r\ncontent-type: image/png\r\ncontent-length: 1171\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=6,i=?0\r\netag: \"691d8b53-493\"\r\nexpires: Sat, 14 Feb 2026 14:23:14 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=I%2F%2FMdv6QnHdjKIkgOUNigpEoKGKCOGS6R3to2NPVMe1WK2v3SPk%2BFTRLw42B6wp1CaV1pkaAL9CT9KG7rp2%2BXGzf7TYkhhH3brbDj84OjnKKEO%2Fv\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64ea94f8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1171,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 34 x 41, 8-bit colormap, non-interlaced","md5":"f6a71ec6ddb77a700978efa0183078ec","sha1":"189a59258bd42ddbf22b28dca2d87fcd6fa3f918","sha256":"631d9a0813b463e47d61da06fe4c91f8836a4a6990770efdc75b9d838344f868","sha512":"bbd6ec6e13c9e127cc1ddab785cd0c7bb6d36db43523bbf88ae78384965050fc71bd21be23a1a8585d399f28966f63f32d171e5b48f15d0f86d838a2d81697d9","ssdeep":"","tlshash":"5f218945ed32c52bd95cf93126004291dde04f49b7407a8673e7b760e53b52d6c7231d","first_seen":"2026-02-04T14:23:42.402245Z","last_seen":"2026-02-04T17:32:27.841808Z","times_seen":3,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ipapi.co/json","fqdn":"ipapi.co","domain":"ipapi.co","tld":"co"},"ip":{"addr":"104.26.9.44","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.954Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"ipapi.co","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 19 Dec 2025 12:14:55 GMT","end":"Thu, 19 Mar 2026 13:14:43 GMT"},"fingerprint":{"sha1":"9F:6D:86:C5:B8:42:73:79:95:D9:AD:A7:9E:37:F2:54:CF:A0:9C:90","sha256":"C1:37:01:B7:C2:DD:54:62:A0:93:A6:F0:05:9D:5A:0C:55:E4:49:78:D8:DD:C8:9D:B1:B8:6B:75:83:70:B2:28"}}},"request":{"raw":"GET /json HTTP/1.1\r\nHost: ipapi.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vantaggio-it.digital/\r\nOrigin: https://vantaggio-it.digital\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:05 GMT\r\ncontent-type: application/json\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\nallow: GET, OPTIONS, POST, HEAD, OPTIONS\r\nx-frame-options: DENY\r\nvary: Host, origin\r\naccess-control-allow-origin: https://vantaggio-it.digital\r\nx-content-type-options: nosniff\r\nreferrer-policy: same-origin\r\ncross-origin-opener-policy: same-origin\r\ncontent-security-policy-report-only: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.stripe.com https://*.paddle.com https://www.google.com https://www.gstatic.com https://maps.gstatic.com https://maps.googleapis.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; style-src 'self' 'unsafe-inline' https://*.paddle.com https://fonts.gstatic.com https://fonts.googleapis.com; img-src 'self' data: https://ipapi.co https://maps.gstatic.com https://maps.googleapis.com https://*.stripe.com; font-src 'self' data: https://fonts.gstatic.com https://fonts.googleapis.com; frame-src 'self' https://www.google.com https://*.stripe.com https://*.paddle.com https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/; connect-src 'self' https://ipapi.co/ https://*.paddle.com https://*.stripe.com https://maps.googleapis.com https://www.google.com/recaptcha/; object-src 'none'; frame-ancestors 'none'; base-uri 'self'; form-action 'self';\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=F%2FbKvWgObLIudERI%2FI8Jlv3B4etLPi5VMGQ84iQiMOmKiNarY2odb5WFejhUD4VZTstOJ8zNS1l00FrXD8tp5SrkBa1p88k%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9c8be64cefe90731-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":748,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"460b460d57658b5fd29c5e4934445c33","sha1":"24a724b25ef1401657cafa588835edfb9f7ef1f7","sha256":"93eefe1243dfce9ac06bf199cc9962e610bab6bff4f096662a357d27c9aefa70","sha512":"127d42078b0a87c6d0a70bd359dbcf50844e871ae9e98875a63f2303950b50bcc04fdb72df3f2e157dde3c019355fb67791147d38d6c3c570e1bde1d3b8f31c2","ssdeep":"","tlshash":"a9012428e4680e7b88b80358b4286a07122422075f16354e7fd4878d0f8d8bf20b124e","first_seen":"2025-12-17T10:03:05.72606Z","last_seen":"2026-03-25T09:03:12.863773Z","times_seen":3067,"resource_available":false,"data":null}},"time_used":472,"timings":{"blocked":148,"dns":53,"connect":4,"send":0,"wait":227,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/tailwind.css","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.122Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/tailwind.css HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=2,i=?0\r\netag: W/\"691d8b53-e5a5\"\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 11270\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FsXBVmA34ZR1SF70MLqDKPKkYgNb3IWzL9JXkwL0AZJHZyR%2BeEhDTuZtEedP%2F%2BGIHtbhLKkX5%2FSmm3QI2HKbeboRL%2FRjNvav2j3sWVQ56wUjXkZ0\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be646a9158be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":58789,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (351)","md5":"fcf102d4d9bbbab970152d230936cf7f","sha1":"4ff6283b039f13011a49fdcc0ce22db3d20aad79","sha256":"d642cc0fb3ddbfcf85b9e95fdf813042a37dfe8e71bd2345f1fdd983100ac7a7","sha512":"2207c31eb5e6d20101547169eaaed58c0386eb2f04a131e4485356eeefd53ea0ae97f5153a18eba532b6e898b616c3155e58fd36d1b95fa16373edbba037a871","ssdeep":"384:wbZfn1j9535QQavX1PikKVI9sAmJoF7aAoNYWrae7yl:wbZfn135J41KkiAm97yl","tlshash":"c943651a97f1d6683c7ad1b0a109a4c8762e2195ddedcfaef9f02010cf84be85d97d18","first_seen":"2025-10-18T15:46:48.28549Z","last_seen":"2026-03-17T07:32:31.739571Z","times_seen":13,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/block-4.svg","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/block-4.svg HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4yzWhO8kFh8k6oK43ajalOOWaAhwIZeeAz2C5SPwmc1dzyLvC7u1tW%2FZjRByJW52Ql9yIUAH%2BHV8MIkMc%2F9pehpzeURJTDGbI%2F%2FKqrUbifCsAIE5\"}]}\r\netag: W/\"691d8b53-14b1d\"\r\ncontent-encoding: br\r\ncf-ray: 9c8be646b93f8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":84765,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"120e22a113cbc0db4f397884e56e3997","sha1":"710a31d1bb5f4aecde4d1afa2f498fe8bd84c447","sha256":"0ccd95e83258cb11d0630fc815f32c0eaf12399dc5e99a68c5ccf3f3efafb3da","sha512":"18199e0fa370c1514c30b64355959a8265dad43fda9e5925f38fba36cd77affe87df5cba346d0deedd7b4fcec2abb7fc34a575bf2cc08f03ece3ba5ee1c870d4","ssdeep":"1536:VDdAxZ1ilT16y9xhl06MkPskixceAe5gvYeT1Tvjsa1LodA58LUhddIxR+RCE3Z0:VDdqZ1ilT1jhlMkixceqvYS1TvjsaBoJ","tlshash":"ca83d1629ee7eff9c9d42e448c4f68509d10ac97d0cac0ac7549867313cea506ca9efd","first_seen":"2025-10-26T22:38:07.518283Z","last_seen":"2026-02-04T17:32:27.828012Z","times_seen":7,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/header-ava-1.png","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.860Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/header-ava-1.png HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 2539\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\netag: \"691d8b53-9eb\"\r\nexpires: Sat, 14 Feb 2026 14:23:14 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FYLnZvU2MEh%2B%2FwHpzfsgK406jq8pU6LXy8X5WtJwlSshgc81kbrBGDhm3I%2BfRSfDaubNcHWnZt9Uso1h93DJbx%2FNx6Q%2Bu07t0%2BiHLzAAqiXQsbZE\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64b5ee48be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2539,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 45, 8-bit colormap, non-interlaced","md5":"7f083864538274bf2dce49d1a2f59daf","sha1":"0787ade888089979124fdd93700659290a6645af","sha256":"0e08728fdeb3a8e1e149d9a97c0216a20b48fd1a32e8c82e5418256243a1dd26","sha512":"d3dec435568fcb933fbc3adb935cae0d320e762cacf4b33f06d6b748252cd3d99e501ddb80a35f0e7da21637d0c50e8ae4773555894ef805a7caabf0bd17606d","ssdeep":"","tlshash":"535129c87485e6f7e094a23e8c81196a82541bb226e91609dcef99366eb3d684d89087","first_seen":"2025-10-26T22:38:07.50547Z","last_seen":"2026-02-04T17:32:27.814452Z","times_seen":7,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/img/flags.png?1","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:05.520Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/intl-tel-input@23.0.12/build/img/flags.png?1 HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/css/intlTelInput.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-length: 70325\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: image/png\r\nx-jsd-version: 23.0.12\r\nx-jsd-version-type: version\r\netag: W/\"112b5-tFG020MXScxAzCpfJx+YB8oh8dM\"\r\naccept-ranges: bytes\r\nage: 3163574\r\ndate: Wed, 04 Feb 2026 17:31:05 GMT\r\nx-served-by: cache-fra-eddf8230190-FRA, cache-hel1410034-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":70325,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 5762 x 15, 8-bit/color RGBA, non-interlaced","md5":"0b1ca148890222235a0f9903636ca21a","sha1":"b451b4db431749cc40cc2a5f271f9807ca21f1d3","sha256":"54dc5bc49fbe41359681fa0af8add039fa1383a4f4eade34f7a0a5a257dd1caa","sha512":"37553ab4cecdb30b631d883dc0a1afe4b5e81b921fa2fb8054a63fa054c2f57954dddebfee1a5b676f97a392b954aaa553a803e6e9abeedd56f87da0b58a8475","ssdeep":"1536:3Cc3jdCcCx1zjonyR5/Gm5mwoKVehnITl1G/Ghdfal4pMy9c:SczdzCx9jonyT5mwo1hIp1hQ4pMOc","tlshash":"966302b241c2a627f87cb972b955522b673bfb30d280780a00cf15b6979517f04e3a3a","first_seen":"2023-09-16T21:00:24Z","last_seen":"2026-04-12T19:20:46.114509Z","times_seen":5116,"resource_available":false,"data":null}},"time_used":54,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":26,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/bg-2.png","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.711Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/bg-2.png HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/css/style.css?v=1.6\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 67664\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\netag: \"691d8b53-10850\"\r\nexpires: Sat, 14 Feb 2026 14:23:14 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1S9QvCq6qVPgOx7RmiWqWGnhs4LYjwxPCweGRFu7Ny7O2%2BQPE5vFKEa8rURn6DcQVCspBGFNDfvHSMz8jNLN2vF6yUGaJoGT3BcSwOQrvG8uD5KP\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64a7c688be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":67664,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 520 x 349, 8-bit colormap, non-interlaced","md5":"2fb0743b6202057274f03271037f7940","sha1":"cdeb263ebd7b69577c93b4e7cc8ee29c9457cdcf","sha256":"b00398424bde49dcbdd784a5b73c3fabeda579509877781d53b66bd05721c9e8","sha512":"31d7843bcaad3d5c7dbe8027028b3f41e6ce55dc4e29d4043151e00fe61fd864d885c13474def3004686f7f82a0d85897d20f8909028c121ed86ac704aaab05d","ssdeep":"1536:U+NDZgJDHL2VI0nGn6xhF1DW21kIioVjS:U+nODHLsJGncd1N9jS","tlshash":"69630259ca7c0e639941f573acd73e42f9acfaf2b8fd2258b9617f4e5201b358209020","first_seen":"2025-10-26T22:38:07.516252Z","last_seen":"2026-02-04T17:32:27.832827Z","times_seen":7,"resource_available":false,"data":null}},"time_used":19,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":16,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/header-ava-2.png","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.863Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/header-ava-2.png HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 2398\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\netag: \"691d8b53-95e\"\r\nexpires: Sat, 14 Feb 2026 14:23:14 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=19evPakKT9Fs2g%2FR9uwf1oaALa4e%2B%2FUeHxmKM4uC3Pzl36E9r9gLN4a7a0TTVhmERx2IRY7RHfN3f%2FA5pcjEAyTXhSBR1Q1tz0ZaxUbTRKj24LJg\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64b6eee8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2398,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 45, 8-bit colormap, non-interlaced","md5":"eb1a835a3d594af8b10f6c762b530f08","sha1":"c816b3e7859664bbd6d9aefa54a795bf1526c66b","sha256":"7e207e7fc69400e1820b147d2abf3553a06d2546d000a6020348280d9d1e6920","sha512":"267a75affab3fa2575515daff87a1c7cd4f94170c094eb5c8297fe746592ab67d18bd54a790fbfb2d240668cebfceb97a46e5d6a50e9c47e1ccc91964f5b0517","ssdeep":"","tlshash":"084108dda265cbb2fb029230991a8580c82857fcbf86af5c814f8a06fd330200c340af","first_seen":"2025-10-26T22:38:07.506947Z","last_seen":"2026-02-04T17:32:27.833575Z","times_seen":7,"resource_available":false,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/pesron-2.png","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/pesron-2.png HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 490771\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\netag: \"691d8b53-77d13\"\r\nexpires: Sat, 14 Feb 2026 14:23:14 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dn7QD%2FbSRrkK8P8kIcq1I8k1kR70WoBlN8XVWPuiWFCZbWIYkdYZIkaQDPRdhTUUBUxS2PkohH6eMKMo4g3xVfSADKHiAGh5e%2BckJBoJhyrJdYU%2F\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64b6f098be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":490771,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1170 x 778, 8-bit/color RGBA, non-interlaced","md5":"016005a402b08afc54dbacc5c51c4d7c","sha1":"b9b55bb0f5c7beb41e12ea5f3cb387dd10f297ad","sha256":"101254b8a04475f6e301accdd7dbbb8674d2d194bb3837a45707ad9ec6ba4a62","sha512":"1d4328fd03f0b01ded6d14d1e76a0cb71b4f50100356374c7728e07b0fc4a12ca35c74b36b8d27b25cfc2b9df9f003bf8c59e138cdf5148f6691672272f487ab","ssdeep":"12288:GhabKAjocKG/pdSE9gCqklCptiadh1MJ73/WwT:gabKAjWG/jjzgptiaH1ibOwT","tlshash":"2da423d4b25d04f20dbf303b44352c2fb2ba1a47ddad31bba895694b2a5ec9504ec727","first_seen":"2026-02-04T14:23:42.378411Z","last_seen":"2026-02-04T17:32:27.841073Z","times_seen":3,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":149,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/italy_3.png","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.705Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/italy_3.png HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/css/style.css?v=1.6\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 273918\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\netag: \"691d8b53-42dfe\"\r\nexpires: Sat, 14 Feb 2026 14:23:14 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qxME4Rwckalm647WD5LQKgMDJd5YCufHbS3mYMnkF9wsNOVORsRrRU3YpRMNWyegaGlA3xYmyaj7XrXlEjSnbWxQXUdzkjTLVrkX8RafEnIrrKi7\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64a6c478be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":273918,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2880 x 1260, 8-bit/color RGBA, non-interlaced","md5":"2b5e3903a9f81091d636e18423a2706f","sha1":"5ece460ce13ece073a8303ca0089a0c6d8a38e98","sha256":"cdda5e582fc1557f9f04c88aedfc5f1b4a029b1da6270e4c1d0b2a68fbf13d11","sha512":"94804bdc69be970279fcb905cd52d605febfa8e6c650f10a1e729c5a8ce1105a2c85d16536c0b0b6b9cf0a57dac8ad3dd0f4b0b9b99d0659945782fd2fa3015a","ssdeep":"6144:OeU7OH9FUOkYfoVVu2ZfLlwKGqyH0qBGeTUZzJU5QnoLtkw:OP7y9FUJYfoVzHnGOqBJQbaoc1","tlshash":"df4402814633de95cdef447065bb3f532bc34aaea6c4437ac331608ed98ae482c9625d","first_seen":"2026-02-04T14:23:42.344378Z","last_seen":"2026-02-04T17:32:27.828818Z","times_seen":3,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":7,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/person-1.png","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.866Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/person-1.png HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 1069470\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\netag: \"691d8b53-10519e\"\r\nexpires: Sat, 14 Feb 2026 14:23:14 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1gd8iUnOEBbe638FwPYpp0rOZNjf43Hu7BUtXauEwkRzIwjsugvkF8Hf1zbrKaOAtJyFhViz%2FlSU8yE2pnqxlFw0Et1FCzYLvY0G3Ry2T1DDSL2k\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64b6efb8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1069470,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1500 x 1001, 8-bit/color RGBA, non-interlaced","md5":"1c9beeef8dbd406683a6c7cf5216db0d","sha1":"f2f1a924bc2f878cb2d3387a652432fc2989f501","sha256":"16f00133d6670a15e006e42ff7d0bb61f523837fcabf954f9a1360001193509b","sha512":"f35916e4feee2b162749645c1049ae076a4c4b30ea2a982d03f604a2ee1b80d40ba4d1e9c8f253dce4f0aee6e20d4723ac6adb175ddab560800eb9eec46fa631","ssdeep":"24576:+nwJfojHVwB+NLydivimaPlsHVM/MKjO+q8iPLdaaDRCXEC6O:+nw56Hea2MimaN4VM/M9+q8iQaDRCX/","tlshash":"392533f884fc3bb458567c6ef667d62ae5e4ba50553f8db220f9eaf05c0109003ae721","first_seen":"2026-02-04T14:23:42.375651Z","last_seen":"2026-02-04T17:32:27.835048Z","times_seen":3,"resource_available":false,"data":null}},"time_used":128,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":119,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/js/utils.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:05.106Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/intl-tel-input@23.0.12/build/js/utils.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vantaggio-it.digital\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.jsdelivr.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-length: 61923\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 23.0.12\r\nx-jsd-version-type: version\r\netag: W/\"3f362-QgRuJQx/Lu/0YZqJsL57g+AeXt8\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nage: 2359337\r\ndate: Wed, 04 Feb 2026 17:31:05 GMT\r\nx-served-by: cache-fra-eddf8230139-FRA, cache-hel1410020-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":258914,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (1903)","md5":"6eae88fad6fe723d8c8d2386a63dd152","sha1":"42046e250c7f2eeff4619a89b0be7b83e01e5edf","sha256":"a4000409a897003b1c5a8e1f9f32e18a11b022452151cc47c17ecdcb76d5223b","sha512":"d356bd87f7170499fbf445353afeda69dbaccc391eb41826290a30752475735a27d56ce1d642af1dcb02f93a1405926a440add5cb38000b7d112cab0f918bd6e","ssdeep":"3072:9klM0hpJjFs3OwPss3MwPKm7i9T2xFM8Mp2xHsNBWUsD56kmLNTg/QKWVRphmVEw:9klMipBKxxFM8Mp2qbZQ","tlshash":"1144f1ebd63c9737a1e97b35968eb3cd5a8cbca3c848567826c3b54f52784e0706c205","first_seen":"2024-07-10T10:54:41Z","last_seen":"2026-04-12T13:49:54.211301Z","times_seen":1514,"resource_available":true,"data":null}},"time_used":102,"timings":{"blocked":51,"dns":1,"connect":0,"send":0,"wait":29,"receive":21,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/block-5.svg","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.139Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/block-5.svg HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8ekcnL29Ua9xntO2UZem5lVWZUsazIgvxNlyYqMZ9WleNdZUdYWngAJLjEQD1BxH0rjlOd18p6J4p3WZnhE%2FbCGRiqkCwjZIJbqAeF8OWg4SePPF\"}]}\r\netag: W/\"691d8b53-45678\"\r\ncontent-encoding: br\r\ncf-ray: 9c8be646b9458be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":284280,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"7f8a235ce62d1c2a0551023981ac54a6","sha1":"f6c36a868a8d5db4eafdcd0ac8d77ca6f8ec00be","sha256":"48c0fa254d01aa27ecbf16deeb4e4c0fb839758cce33c503209bdad97394f005","sha512":"d726478a9c59cd1cb7debe610609797dae693ecb8ae94fffe356d30f8e02af8fa47bdfe91dfb4637978a80a06e845b9451ec37350d4f93caffb924961c965fa0","ssdeep":"6144:LBMeGGi5vSeejdZY0eog0qxFHFZpxEcMDdXqq3Epm8/LS6svEJ/M8RnS5mvy5/NA:L7ZMoexn8X3o5OmyT4","tlshash":"1e5496222cf73e1d1e361a6a52c702e51c7021ac5d3ccfbfa0dea9a5e052f046b956f5","first_seen":"2025-10-26T22:38:07.497168Z","last_seen":"2026-02-04T17:32:27.831324Z","times_seen":7,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":10,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Inter:ital,opsz,wght@0,14..32,100..900;1,14..32,100..900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.251.38.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.238Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:37:56 GMT","end":"Mon, 06 Apr 2026 08:37:55 GMT"},"fingerprint":{"sha1":"DE:3B:B4:94:98:33:3A:CB:2A:A9:96:A1:CB:19:8C:84:B5:8D:23:E9","sha256":"D0:A1:5A:83:80:77:19:74:AA:CB:27:69:4A:C7:2C:F0:DA:06:9C:79:1E:07:77:9A:4D:7B:5D:AA:A2:D2:D4:E9"}}},"request":{"raw":"GET /css2?family=Inter:ital,opsz,wght@0,14..32,100..900;1,14..32,100..900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 04 Feb 2026 17:31:04 GMT\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4887,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"3fd96ba77783845730c343cf00ac7a93","sha1":"bc4f7f4f71aeae387232155c55c4f031c5f3f769","sha256":"27b95b2fcbc857ba25f7e5a707c5c4c06c5cf93415519b7669c19f4045edca37","sha512":"20b137cf9c61842c7bad62dd6c36125833022552379ad97324dbee2c2e9cb0303b17a9aee813ea2bcdbb68541c8c6edbfecfcfb2858cf27c2cff480d756d80cd","ssdeep":"96:aYg4aMzqYg4aybFZHYg4agkYg4aUJ3vYg4aERYg4aYGJc+uTYg4aR6NDO4a3qO4L:vywfydyGy63gy/yFVyR73xpmj3U8fHN","tlshash":"37a1ed91006f9104ea431dd627cf7e32ad8e51956082e27d6ffd2dca6cdbd23122874c","first_seen":"2025-09-10T21:50:06.177565Z","last_seen":"2026-04-12T19:25:32.939057Z","times_seen":11836,"resource_available":false,"data":null}},"time_used":461,"timings":{"blocked":219,"dns":5,"connect":10,"send":0,"wait":20,"receive":0,"ssl":201},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"min-api.cryptocompare.com/data/pricemulti?fsyms=BTC,ETH,LTC\u0026tsyms=EUR","fqdn":"min-api.cryptocompare.com","domain":"cryptocompare.com","tld":"com"},"ip":{"addr":"20.4.130.154","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.996Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"min-api.cryptocompare.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 10 Dec 2025 17:08:03 GMT","end":"Tue, 10 Mar 2026 17:08:02 GMT"},"fingerprint":{"sha1":"73:C7:4E:56:88:E5:CF:72:0E:94:F3:06:6D:8A:AF:FC:88:8A:F9:CD","sha256":"B6:54:2C:1C:36:F9:45:9B:A3:52:B9:CE:D7:F8:5D:38:C1:E3:7D:B8:C4:02:10:DD:4F:FE:6B:9C:3B:ED:4F:2A"}}},"request":{"raw":"GET /data/pricemulti?fsyms=BTC,ETH,LTC\u0026tsyms=EUR HTTP/1.1\r\nHost: min-api.cryptocompare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://vantaggio-it.digital/\r\nOrigin: https://vantaggio-it.digital\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Wed, 04 Feb 2026 17:31:05 GMT\r\nContent-Type: application/json; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Security-Policy: frame-ancestors 'none'\r\nAccess-Control-Allow-Origin: https://vantaggio-it.digital\r\nAccess-Control-Allow-Methods: GET, POST, OPTIONS\r\nAccess-Control-Allow-Headers: Content-Type, Cookie, Set-Cookie, Authorization\r\nAccess-Control-Allow-Credentials: true\r\nCache-Control: public, max-age=10\r\nX-CryptoCompare-Cache-HIT: false\r\nX-CryptoCompare-Server-Id: cc-api-min-v2-13\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":65,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"d6ff072f1f9d89a36d6343f3ae2b9eca","sha1":"1012c694ac0fe355900b85df839fb7adac9e59e5","sha256":"554d8b4dbc1f24121e22bd1378e44afe0c19e48af792005c14835c70ad7bc97f","sha512":"6014415b229a49a42e2ec0d906950f0da6aab051eeb7c5e30e9e8b5537162d5f1449cd848d10b5ed0adefe27c962dd06e008949160ee0cc68f40fe7ee2264bf8","ssdeep":"","tlshash":"1ba00288ef9c7706008068d620456d44cb89121455180742dc0723e542a016f74ad162","first_seen":"2026-02-04T17:31:33.955288Z","last_seen":"2026-02-04T17:31:33.955288Z","times_seen":1,"resource_available":false,"data":null}},"time_used":364,"timings":{"blocked":170,"dns":97,"connect":20,"send":0,"wait":23,"receive":0,"ssl":51},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/quotes.svg","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.142Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/quotes.svg HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YpgBh7ICZSyzLqV6%2BpiJlHA%2FWloNHkLpjOB7liwFwgMmEXTCZapG9ekiuIbkTHI18gVRlUYtyGm8J9h0QpLB%2F35Ia78RIww8gQuZdDB%2BhmF5miE6\"}]}\r\netag: W/\"691d8b53-6ff\"\r\ncontent-encoding: br\r\ncf-ray: 9c8be646c9588be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1791,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"87f511047dbd16be6aa9c7fb937e142d","sha1":"308f748ff90bbf2b895852739e3ed094e16676fd","sha256":"ccc4f108b8c061cebd5b85085c46d82ec81a2e02aeaf6f932d053f75e9af62aa","sha512":"e1cf19ba66126b97d93952f879c8001aa62fce858b0f4bf0a3ae8576ebaf9f8a7d1a510c8596aaa53fd9a434aa9b9a224867b7047977df15ca2b57522d1e45b2","ssdeep":"","tlshash":"6e31e0f0b2b922b8f476d7f866948c36fe7224ee71324d9140929d89575301c167e0f5","first_seen":"2025-10-26T22:38:07.492442Z","last_seen":"2026-02-04T17:32:27.816509Z","times_seen":7,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.7.1.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.153Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-3.7.1.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://vantaggio-it.digital\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-155ed\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\nage: 5459455\r\nx-served-by: cache-lga21978-LGA, cache-hel1410027-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 27, 302022\r\nx-timer: S1770226264.350201,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30336\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":87533,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"2c872dbe60f4ba70fb85356113d8b35e","sha1":"ee48592d1fff952fcf06ce0b666ed4785493afdc","sha256":"fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a","sha512":"bf6089ed4698cb8270a8b0c8ad9508ff886a7a842278e98064d5c1790ca3a36d5d69d9f047ef196882554fc104da2c88eb5395f1ee8cf0f3f6ff8869408350fe","ssdeep":"1536:0RUX9uDgwxcy2KVBNwchN6SLaHEk2BSrBESp+a/IEk4aAocVi8SMBQ47GKr:sHNwcv9VBQpLl88SMBQ47GKr","tlshash":"3983f8df77ca702247ab30b9006f550bf276199d684d4400f159d8e9bcb8a4a827bf7e","first_seen":"2023-08-31T16:03:19Z","last_seen":"2026-04-12T19:00:18.469251Z","times_seen":139413,"resource_available":true,"data":null}},"time_used":422,"timings":{"blocked":174,"dns":127,"connect":31,"send":0,"wait":27,"receive":14,"ssl":45},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/js/main.js","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.155Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/js/main.js HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=3,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=u%2BuN3gp4GAvpvMhXcWVtlSDHHN9bpoL4Vo4iPq5CKH5BDiF9Gfbb%2FgayJiXXx2%2FBCYhG1PwGR0AgVlqy6vbFi3Bq5Cgfbld0gqGORf3Vu0NVklNh\"}]}\r\netag: W/\"691d8b53-846\"\r\ncontent-encoding: br\r\ncf-ray: 9c8be646c96a8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2118,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text","md5":"72b7e21741cb233f0e7ac1868379bb6e","sha1":"808ab23487469ab652c7698362844d96278c257c","sha256":"6a24e7609859464e938b6d8e72509c4ff1b3a0cf23976fcebc516e68ad6fb3c8","sha512":"5b22a4513620095e61e4f91f4ba3ce8ea0cd01b4b3381f85f60bb32d8535dfb1247ffff30babcb6cca911e441b82c3b4f8d0a3dff69c2a1d61a3b3550784487d","ssdeep":"","tlshash":"a041a92b3bba14240a9bb8bb539fa748792220033c97d64d7e5c49281fd1f6095f578d","first_seen":"2026-01-20T09:16:47.882418Z","last_seen":"2026-02-04T17:32:27.824758Z","times_seen":5,"resource_available":true,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/css/style.css?v=1.6","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/css/style.css?v=1.6 HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=2,i=?0\r\netag: W/\"691d8b53-4870\"\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 11270\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=hldr0iDbZhlB3nUJFq4VjnRkuqGg3GOhXYIUl81BIrsgezHgqDVCer8FG%2FRSDBbwxTqJ%2FHnMnP0P%2FKHVS8nOsgi9%2BT0blWTdS6TzPvyeXSAjFfFM\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be646b91b8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18544,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"0a42cc7b96631a4eed19fc304d549759","sha1":"5115cf39766c273ba2dc8854e7d938922b7b47ac","sha256":"8012d057ce70efbb0b5e573807a99099fd870f7deac93dd552d9a613327a879a","sha512":"752be92cc8ab55cc7392d736fd0086e58bb70f75d3c2e72ae1b48f408c86f91b88ed05c3becc86db06168b3c0f3420146d5efe91bff778bb18caddf25db6a0e0","ssdeep":"192:T1UF/qjgc8V5jVP73XNLd1FL0F5WcOd4sAJQTYxOqdNJxA:dYnjd1h5OOYNJxA","tlshash":"c88220177f149c8ae306e4ac6f556f35260d8823ab0d9df79d65342cd1cd3a602a3b8e","first_seen":"2026-02-04T14:23:42.371541Z","last_seen":"2026-02-04T17:32:27.822999Z","times_seen":3,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/css/form.css","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/css/form.css HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=2,i=?0\r\netag: W/\"691d8b53-1656\"\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 11270\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zOO1QNpuIkH4QhgdYxnr1FqqvBd%2FwxKYhLDvM9DYxPdI%2BzBDxRomETUdMncO%2BEHXxN7AwXjOiXb2kLuvYkPGIEtzrQeyj6SoNzZNPwUJCUf2sDcA\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be646b9208be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5718,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"f2802dbf59bd81852da338c8d5425cc8","sha1":"73fa8c6ff1c33c43a743fb3b485807b93832c9c3","sha256":"177f6e5d7950c61ea8d97fe4435158b82512f23e04abbea32500e191a56822b1","sha512":"e7788688a904a183d25837293b9b173cb412eb1c6fa923e04469cbffdecd531770ae5b77fe696a2313513270b7b034bd2820d932edde4ba651e6f32431096a17","ssdeep":"96:fxJ/rm4gHBUZ/u+OD2V+L0bqr2lcg/2liLxHO5:f7rmyw+OD2V6oeliL1O5","tlshash":"09c1551b3e141441962fc6687eddafaa171f44629e0e4d2bb06238bc83cd5c566b3f8d","first_seen":"2025-10-26T22:38:07.487247Z","last_seen":"2026-02-04T17:32:27.836563Z","times_seen":5,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/css/intlTelInput.css","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.132Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/intl-tel-input@23.0.12/build/css/intlTelInput.css HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/css; charset=utf-8\r\nx-jsd-version: 23.0.12\r\nx-jsd-version-type: version\r\netag: W/\"4f9c-YW++h4sxifKlsVyMHgLARnQAuWE\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\nage: 1835557\r\nx-served-by: cache-fra-eddf8230088-FRA, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 3384\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20380,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (830)","md5":"b46140e6a10359c79822e7b801f0391b","sha1":"616fbe878b3189f2a5b15c8c1e02c0467400b961","sha256":"def1a0f6d2bd2a01f1f842475b7e7da7f2596f2783fd8872c37624ae406425af","sha512":"3a44a85b26a849c8d784e9bced73b9843cf51396eebe6d9a024abee73266698a72940d0e289e67a39a9ce1946b980a686971205dcde7d22c954b5ab91608898e","ssdeep":"192:WTxfNDsX5uVsAPkkk8ii/yE9y6czvZzorr8/zJHVyT1bK0VN12o7tHPVEVtVaVb2:IVsXk1kdCqE9y6mporr8LJj0H12o7U5","tlshash":"c5929e2346b00d3e965dc1fa38a2c1b5773f0c8a35eecc96eed9504a5887b90e5ebc54","first_seen":"2024-06-08T15:25:15Z","last_seen":"2026-04-12T18:15:38.064266Z","times_seen":808,"resource_available":false,"data":null}},"time_used":341,"timings":{"blocked":152,"dns":116,"connect":13,"send":0,"wait":15,"receive":1,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/block-6.svg","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.140Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/block-6.svg HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qwtDMaaEsbVTk4F%2FW4kfvdXtSQRalERDpcrnPZcjTQBBFgIoCEszWDAB2%2Ff4SMeHIF6e%2FvU2wntE6ihDu1l6HgFR2xSt8YFxRmLtRgf7Ihgg%2F0%2BU\"}]}\r\netag: W/\"691d8b53-4796\"\r\ncontent-encoding: br\r\ncf-ray: 9c8be646c94b8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18326,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f60c8889b2dd30d65b5d7653b8c93ba4","sha1":"9ff6241355782f20aea26f06e03fd74362866f07","sha256":"6b5b9f474910fc8b398b1ebc97b9413137877b0cb52e3e0f912f9a74d3463e60","sha512":"982d5247508408a3f8ebcbc7887d331a646044c3f798cd5d97743dc8e88502c08028265e62853db5e42b61261a0010212061a410c89ffeb738bc55f795451b6c","ssdeep":"384:OW71YqzMVbP/MIFl925QS2gkMn5shw2MIeKD7ynfav:Ou6qzMVpFlAQ9hdeWt","tlshash":"cb82cfd1297c1fca9d02ad2328fc7a2d1520223ba3a93066e6427799783b1c166657f9","first_seen":"2025-10-26T22:38:07.466919Z","last_seen":"2026-02-04T17:32:27.838096Z","times_seen":7,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/global_lpn_2_0/validation.js","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/global_lpn_2_0/validation.js HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Thu, 04 Dec 2025 21:00:51 GMT\r\npriority: u=3,i=?0\r\netag: W/\"6931f683-14bd\"\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nage: 11270\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wPlbPanC%2BqOXcxnIk98XU311ZImk00ORkSF2k5D18Ns%2B7%2Bwx2RFnVyQzentdmB6r7kNlQ4%2FzJavKsPK9xznaFuv4qbe%2Fv7JvApy6zBRkNSTh4zgt\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be646c96e8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5309,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"d3afc4debafe2cdc5e8922b67d106dc8","sha1":"8e24348db7697e3f37d7af7018e241cc4977de64","sha256":"630697298bf3dc854481028ece3625d20051176fded019a5195e2638e8575a40","sha512":"5f345b901979b4697af33fc5b19713844f4f9435a1679c83d2e70df8bb839339aec625f3caef3578713edc1767cccd5c5331436399de3f660237ca83f405ffe2","ssdeep":"96:WOTqLdUpFVkda+pcfQiEnCObOwrSjWDsknMOPOQ0hnu4oGW0s3ALOwM:WOWLdUpFVkda+pmQrnRhrSj0BmQZvGtW","tlshash":"d6b173e870f10519693356fd26df510669d9710bec45d98e3ecc83800f568e8ee9a3ec","first_seen":"2025-11-07T08:51:13.902875Z","last_seen":"2026-02-06T21:56:59.507733Z","times_seen":27,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.cdnfonts.com/css/futura-lt","fqdn":"fonts.cdnfonts.com","domain":"cdnfonts.com","tld":"com"},"ip":{"addr":"172.67.184.158","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.236Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnfonts.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 05 Jan 2026 10:30:43 GMT","end":"Sun, 05 Apr 2026 11:28:02 GMT"},"fingerprint":{"sha1":"19:1C:B1:F3:D2:08:65:B6:9A:C1:B4:79:D3:ED:56:0D:86:BE:C1:C5","sha256":"D5:42:A7:E8:38:8B:14:DE:00:B4:7F:DE:0D:40:F9:71:1D:5A:5E:5F:69:37:DF:9D:89:C2:31:AD:C5:EA:46:22"}}},"request":{"raw":"GET /css/futura-lt HTTP/1.1\r\nHost: fonts.cdnfonts.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: text/css;charset=UTF-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\naccess-control-allow-origin: *\r\ncontent-encoding: br\r\nage: 5032831\r\ncache-control: max-age=2678400\r\ncf-cache-status: HIT\r\nlast-modified: Mon, 08 Dec 2025 11:30:32 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LrPSsbxGTv2jJl7nBugc2p3g8DXHDpUpk9WOPGRoYiCNN3R7u496sTqgsqbgMkaVjzELv9l82BH%2FYk6Kzh6tPJ774CQ68HulDa4kG6N9k3bx%2FA%3D%3D\"}]}\r\ncf-ray: 9c8be647e9520731-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4080,"size_decoded":0,"mime_type":"text/css; charset=UTF-8","magic":"ASCII text","md5":"db86b145e47c7d13498a665b89112e8a","sha1":"a76cce02603e3677225a1e9e55fef5366c7aeec7","sha256":"0b25d099bb99e5919e32b97d11bdfa247e4afae8027ca9b8a0b3e862ca6909b9","sha512":"7ed720f0654e2d30be6f9be72a8f46c7ba0b5c6532843c02e6cd1071a17664fc5f97b59a38abafe428ccbf45a6d8033d80e6e5c5a2fb11f330d06254348ef3db","ssdeep":"","tlshash":"6681d39604dfa2c4a6221ccef75b79284e0f141f204dcd547bbdaf44afab42a1280b7d","first_seen":"2024-12-03T05:50:26.995645Z","last_seen":"2026-03-27T01:26:29.12243Z","times_seen":15,"resource_available":false,"data":null}},"time_used":135,"timings":{"blocked":64,"dns":23,"connect":2,"send":0,"wait":7,"receive":0,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/inter/v20/UcCo3FwrK3iLTcviYwYZ90A2N58.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.74.3","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:37:55 GMT","end":"Mon, 06 Apr 2026 08:37:54 GMT"},"fingerprint":{"sha1":"C9:11:F3:8A:1F:95:BA:78:F0:71:09:AC:AA:E5:AC:D1:ED:83:E4:04","sha256":"61:45:36:53:9C:8E:E6:E3:72:93:D5:B6:2E:25:31:08:2F:70:5B:C8:FA:43:EA:70:B8:CE:11:BF:74:C7:92:98"}}},"request":{"raw":"GET /s/inter/v20/UcCo3FwrK3iLTcviYwYZ90A2N58.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://vantaggio-it.digital\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 72964\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 02 Feb 2026 18:20:39 GMT\r\nexpires: Tue, 02 Feb 2027 18:20:39 GMT\r\ncache-control: public, max-age=31536000\r\nage: 169825\r\nlast-modified: Tue, 09 Sep 2025 18:33:18 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":72964,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 72964, version 1.0","md5":"91247c94dcda6ff52b445d71d6bbfb81","sha1":"ad2f62363ed047b430b91f32afa31df51fcd7c5e","sha256":"6a3c3e024b31eeacbf1f19c3c7be78612d91c623186f64035a50038241dad4f9","sha512":"a12dcac84e9f9ae02df3aabe29d76994281cd1005edca471194605cfcd6a0456eec872fd28c63c72ae124804d0b47d8377048caae49c40b0a18b5d6be4d6213f","ssdeep":"768:zbw+rLBkMxbCkupj4Y69/Yr71+j9pWiKahMM6+AWEqXB0oGuNGku+QCcIKE205C7:zbw+iwuS/iZWeaO1zP1/9Esvf8fXnm1","tlshash":"8f6302244e3c50c2a54d33aa286940f6f6e79c75b2b79ba4a69c589cd410f329cdfdc4","first_seen":"2025-05-29T18:51:13.223047Z","last_seen":"2026-04-12T18:46:51.110128Z","times_seen":19440,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":129,"dns":49,"connect":7,"send":0,"wait":12,"receive":16,"ssl":68},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/header-ava-3.png","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-img","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.864Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/valorium-ai-----offer------old_koz--it-----dob--elnopy-1.2-------send-2.0-_1763543635/assets/img/header-ava-3.png HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: image/png\r\ncontent-length: 2532\r\nserver: cloudflare\r\nlast-modified: Wed, 19 Nov 2025 09:18:11 GMT\r\npriority: u=4,i=?0\r\netag: \"691d8b53-9e4\"\r\nexpires: Sat, 14 Feb 2026 14:23:14 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\naccept-ranges: bytes\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qs%2BXjaOhX5C3R7aE5OaCt2YwtJkSE6YGx9drVDXIeCo%2FevU1nVeiwCVm4Lrs6MPWYKoobyNfcriNeugVxFA4rtT5%2BoPywssLli6rgrpX3PaGv8rB\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9c8be64b6ef48be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2532,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 44 x 45, 8-bit colormap, non-interlaced","md5":"68a3a28ab4d8fc16143c2a2f8db944f8","sha1":"0a5fddb3fa2a487c3e3526454bb6778e078bc180","sha256":"2b089c8e2fb86642eb7e39aec1097280178159d6f9afde3165c0506ca4ca08a3","sha512":"e3da89f88a2a635e93fa336737b9b83567ad1cc2aa711af0c4229135f5eba08559ad37ddb1c67b8f52b8d316a3dc7c86768c349af24d58cd9e3324d37ff804d4","ssdeep":"","tlshash":"5e512dde9f464f76e1372837d781517861c4e71ceb600a9fba474638cc51a408d07cab","first_seen":"2025-10-26T22:38:07.520322Z","last_seen":"2026-02-04T17:32:27.834286Z","times_seen":7,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/intl-tel-input@23.0.12/build/js/intlTelInput.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.129.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.159Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q2","organization":"GlobalSign nv-sa"},"validity":{"start":"Mon, 02 Jun 2025 15:43:52 GMT","end":"Sat, 04 Jul 2026 15:43:51 GMT"},"fingerprint":{"sha1":"21:17:81:78:41:C6:8F:86:D6:CF:8D:98:CC:74:A8:F1:03:F8:C9:D4","sha256":"D0:E6:8D:08:11:05:7E:0C:2A:0D:C7:E0:ED:AE:9E:18:C8:74:32:12:3D:56:43:98:62:CD:A2:08:6F:64:5B:B0"}}},"request":{"raw":"GET /npm/intl-tel-input@23.0.12/build/js/intlTelInput.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: application/javascript; charset=utf-8\r\nx-jsd-version: 23.0.12\r\nx-jsd-version-type: version\r\netag: W/\"74b0-Fu5cDWBeWjC59YEH297UqXupv6I\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nage: 1661545\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\nx-served-by: cache-fra-etou8220056-FRA, cache-hel1410024-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 11469\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":29872,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (29515)","md5":"c86b61ae6f79b75c7e08b42a351a7b6e","sha1":"16ee5c0d605e5a30b9f58107dbded4a97ba9bfa2","sha256":"e1759a4dbfab9dcdae85ac8ee40e4c961a098eb49f7e5a96ceb1ab928e6f681f","sha512":"cb1485a28c54e0b665efebb05f6c21696c28e8679f1e818e92657a121286c337231a435ea84bebaaee26b6b6c7e966049c85d1b4db8b9070c096d18ae4d8308c","ssdeep":"768:c603Xlqn/kiIzJT9FSRzA4xXnT2nYdn24X68a:cDiIz8A4knYdw","tlshash":"0cd2e7aeb365673ba6fd82a270e54503af7f79444604083d78ac8ede0288ed171f5b34","first_seen":"2024-07-10T10:54:41Z","last_seen":"2026-04-07T02:34:18.150961Z","times_seen":391,"resource_available":true,"data":null}},"time_used":345,"timings":{"blocked":146,"dns":104,"connect":28,"send":0,"wait":14,"receive":3,"ssl":47},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-04T17:31:03.667Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:03 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: no-store, no-cache, must-revalidate\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=bPUbV87hoRG6ocMp4CSFPlFyuKLu3MRSR4y2OZrkRIoGCp2UtxTBz5sisoxBqrfdCKO2IBrOAhhh7k4dBdCJFi4qP5e2Y3qN0KvbD16cKWaRPDGz\"}]}\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\npragma: no-cache\r\nset-cookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k; path=/\r\nvary: Accept-Encoding\r\nx-powered-by: PHP/7.4.33\r\naccess-control-allow-origin: *\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9c8be64498be5ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"jsDelivr","description":"JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.","website":"https://www.jsdelivr.com/","common_platform_enumeration":"","icon":"jsdelivr-icon.svg","categories":["CDN"]},{"name":"PHP:7.4.33","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"jQuery:3.7.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"jQuery CDN","description":"jQuery CDN is a way to include jQuery in your website without actually downloading and keeping it your website's folder.","website":"https://code.jquery.com/","common_platform_enumeration":"","icon":"jQuery.svg","categories":["CDN"]}],"data":{"size":517795,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (391)","md5":"97bded631c7fe21321909dff03492113","sha1":"fe1df7c160263ab1e31f394600497cf0d64937ac","sha256":"40bb20c379e7fac134a6b1438d8f3233c88a2e6fa91cc32396a7121e70eb00b5","sha512":"e1657a3188140eaa5d4a645c13903a2d9b0b7fd396072658fb21f33a97b0c1ee9c0953281ef569ce36a06cfb664c894186c8878f7ca06e8becf889566e1c6e31","ssdeep":"1536:qgQUgiaiBna/E4b0VNVVVR1JOvdFtxau/ipiBHanhgx4bTbHvvL6DE0uoOmSxrOS:qglx1JOJ7b63VoMo2+K","tlshash":"bbb4b53783b04baba14a809ca88815457b9884d7f6b1c3d0f32f0b1def4c9d599af765","first_seen":"2026-02-04T17:31:33.966197Z","last_seen":"2026-02-04T17:31:33.966197Z","times_seen":1,"resource_available":false,"data":null}},"time_used":334,"timings":{"blocked":104,"dns":83,"connect":1,"send":0,"wait":123,"receive":0,"ssl":19},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"vantaggio-it.digital/lander/global_lpn_2_0/default-integration.css","fqdn":"vantaggio-it.digital","domain":"vantaggio-it.digital","tld":"digital"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://vantaggio-it.digital/","date":"2026-02-04T17:31:04.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vantaggio-it.digital","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Feb 2026 07:14:25 GMT","end":"Sat, 02 May 2026 08:12:56 GMT"},"fingerprint":{"sha1":"5B:76:87:3D:AB:0B:8E:7F:A8:9B:7E:1E:80:AB:34:3D:9E:9B:CF:08","sha256":"CD:D7:17:AE:5C:22:7E:B1:9F:78:4F:35:15:10:93:A9:51:FD:88:97:62:BB:E7:48:F2:54:16:C1:1C:88:AB:CB"}}},"request":{"raw":"GET /lander/global_lpn_2_0/default-integration.css HTTP/1.1\r\nHost: vantaggio-it.digital\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://vantaggio-it.digital/\r\nCookie: PHPSESSID=boikrg13f6h4ngcrrfrsfee33k\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Wed, 04 Feb 2026 17:31:04 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Fri, 22 Aug 2025 08:25:20 GMT\r\npriority: u=2,i=?0\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nexpires: Sat, 14 Feb 2026 14:23:13 GMT\r\ncache-control: max-age=864000\r\naccess-control-allow-origin: *\r\nage: 11270\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oRg48k9BGR8wVWxsYEw4%2F6HNYBZwT8DNPtkvLj14lypeBZQOkoquYbqt%2BmClNqXMoOOYup4u6YFvJzoQW26%2BMWXg0dP5imHOD2GnduretI1aBvxz\"}]}\r\netag: W/\"68a82970-3db\"\r\ncontent-encoding: br\r\ncf-ray: 9c8be646b9258be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":987,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"241d8b07cc198e58411536bc5db6f958","sha1":"5455523aa41adb2e115d789756c59cde2bf84c76","sha256":"32469ef50810a6569bdf5e0407f68787312b5dc86beb0302827b46e00fedaa15","sha512":"6ee3112bb2d0199f4c52375a1fe98ea7607ae1ddfd8bc30ad848cdb1a549af626e5e504fca8ddaebe9602272ffc2cdf48acf41cacc18e72dc7b45ad2c29b6741","ssdeep":"","tlshash":"1411eb160a660a35a41bd2b46a653a2573191843770fec3b26a728284fc619e127fbe8","first_seen":"2025-04-18T11:50:01.196685Z","last_seen":"2026-04-02T05:38:09.365454Z","times_seen":348,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-02-04","alert":"Phishing Block","trigger":"vantaggio-it.digital","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-02-04","alert":"Sinkholed","trigger":"vantaggio-it.digital","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}