Report - www.northfaceitaliait.com/scarpe-scarponi-c-1_47

Report Overview

Submitted URL
www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
IP
196.196.155.85
ASN
#58065 Orion Network Limited
Submitted
2024-04-24 17:46:19
Access
public
Website Title
Scarponi North Face Donna Saldi - North Face Scarpe Negozi
Final URL
www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
80

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.northfaceitaliait.com	unknown	2023-08-22	2023-09-04	2024-03-22	22 kB	1.5 MB	196.196.155.85

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed
2024-04-24	medium	northfaceitaliait.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	44 B	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen4184 Hash 0f9f77c8d79923a94eaf9563663b37bf e9de64d20cf4f34a74de22d7b663634bd64f1be6 f401ef86148cd7087f19cbf14828ac17464cb4e1712f05305fb571d07521bb01 Loading...

	www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jquery-price-slider.js	36 kB	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jquery-price-slider.js IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen460 Hash 7f730a53f528a3b4571ecb35842dac9a b57a5bb69a7cc5386aee6cd1a3bc385de69cbf7c 3698640de183901071d26abf398014dbf19ca2e87298a5a8b2877c67ef526dbb Loading...

	www.northfaceitaliait.com/js/jquery.jxb.js	158 kB	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/js/jquery.jxb.js IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:53 Times Seen13525 Hash 6f3d61313966fcd43b0334aa5fad66b9 22b2b120da5b405a348e4abdd865c496625d87ab f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5 Loading...

	unknown	201 B	2024-04-24	2024-04-24
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-04-24 19:46:22 Last Seen2024-04-24 19:46:22 Times Seen1 Hash dc2a86893d5e88f3b866a2a93a7e6025 bce3a862f4300ba27e3a74246f91d779c89cfc36 8844c3a0733f88bbb8a058b6fc3daf0a434c21be1fe4c6e4cb728d57c5ae1a47 Loading...

	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	311 B	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:14 Last Seen2024-05-05 19:17:49 Times Seen1375 Hash d70835bbf8fe8ba2123a94e4d82f747f 75de4d4e1704be292925f155abc7514d2d164617 17e98b785268fe290b82a465cc6f8c2084e98ebde2f80edd10c676a552dc2a31 Loading...

	www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_jquery_kinSlideshow.js	10 kB	2023-04-11	2024-05-05
Pretty URL www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_jquery_kinSlideshow.js IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:28:27 Last Seen2024-05-05 19:40:52 Times Seen3555 Hash abbb3376ffd05856914efb567ee1f53b 4502bb187bd05f6bdc324546301c0fb3ededb453 f3e0eb53b3dc82b94ae4c1fe8c654bf827bf0d7f9f12cc01976e0689c5db9203 Loading...

	www.northfaceitaliait.com/js/jquery.mmenu.min.all.js	39 kB	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/js/jquery.mmenu.min.all.js IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen7667 Hash 5b2edbe2f95659b625a0b919ebf98286 1c5722696e849953fccdf41e0f0a01e3f37a80da a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637 Loading...

	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	530 B	2023-03-08	2024-04-24
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 16:22:51 Last Seen2024-04-24 19:46:22 Times Seen2 Hash 8dcd358f8b9dcf671ca1eab769bb2dcb 3bf516eadcd0d6f1b58ff584bfe77adc41debb4c 49e3581aa0be73c563d337fcce2eb91ad8d068973c6cab46619c79be09093e67 Loading...

	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	257 B	2023-03-08	2024-04-24
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 16:22:51 Last Seen2024-04-24 19:46:22 Times Seen2 Hash ee7ab3a15277bb5d374341851e48f091 d723f71958248dc91e48040824a7ced9ec0f4bde 25af4140dcc8cfe2a9e357d0386c30c23f89fb50e4c44cf357a484ee54e4260b Loading...

	www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_jquery.js	86 kB	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_jquery.js IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen18156 Hash e85aed5c30d734f1e30646e030d7a817 b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad 8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a Loading...

	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	765 B	2024-04-24	2024-04-24
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:46:22 Last Seen2024-04-24 19:46:22 Times Seen1 Hash b9c87dd67cd002d3f25def466e9a3c71 99127e0df5a99c57ff2b13e476fa84f549947632 ab620e6d1a4397c21208e46cc24c8ef5bdafce1bb68c7251274005286d7b264b Loading...

	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	407 B	2024-04-24	2024-04-24
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:46:22 Last Seen2024-04-24 19:46:22 Times Seen1 Hash f3575e430204a4ee3fb51730fb0fce43 4753d462051f420bf8e0d57ba842f9bd556647d5 313ed1274135ba532fe11a8d8d75f6cbdfd2d6e29a34ce65e3765470981eeec1 Loading...

	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	300 B	2024-04-24	2024-04-24
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 19:46:22 Last Seen2024-04-24 19:46:22 Times Seen1 Hash ab8b4ee2f4656a0b4f534af35535875d 1bfdd5d45e2eaf87726c4c6123929612891783c9 2ef91cd71a88a3f1a301428d1018c8c09b3b7c2c6d092226887e4707ed74ccf9 Loading...

	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	1.4 kB	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:14 Last Seen2024-05-05 19:17:50 Times Seen1058 Hash 204a344df3e7e4af26abe5e7024721a4 139b47ad14a6775209f11b1d4ccfff0f033f51da aed114f354b3a2d4a3cb59046449edaa62654b8d17938ac12824151309ff5e7f Loading...

	www.northfaceitaliait.com/js/jquery.jxa.js	2.7 kB	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/js/jquery.jxa.js IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen7560 Hash ca643ec9e974f881e4c904db35bc40c7 759df5ef14b4e2c0c46770b5e408f600972294ca a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2 Loading...

	www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html	19 B	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:14 Last Seen2024-05-05 19:17:50 Times Seen1187 Hash b597ccb77b826fd34751b800e56fface 39a900a0627d76c0f99b7947ecc248b7bc19a2db 9c1bfe1f224f624f38ec0ca4eda34a1314c709c3a78428907ae8bf78e0bbb9b6 Loading...

	www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_lightbox.js	20 kB	2023-03-07	2024-05-05
Pretty URL www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_lightbox.js IP 196.196.155.85 ASN #58065 Orion Network Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen4138 Hash 62160589e6cfe07633cf89ba5f6b850e 0ddc3da269bf68a7a86f82db9099181126c8aad5 c84699604527cf065821fe6ddb4aea785e99cfbcfbaec426a51cff1dfd617eca Loading...

		Size	First Seen	Last Seen
	#1 Eval - abf4a875d5948c9b1b39999a48ff7e87	13 kB	2023-03-07	2024-05-05
Pretty Observations First Seen2023-03-07 01:06:40 Last Seen2024-05-05 19:40:52 Times Seen3870 Hash abf4a875d5948c9b1b39999a48ff7e87 e686ced083517764a0dd7424d84ac5fa1b52f20b a824a97e1e060dcfc3950a4231c4510e369c17c0c8694340e873ff5bdc8397ea Loading...

HTTP Transactions (40)

URL IP Response Size

www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html

196.196.155.85

200 OK

54 kB

URL User Request GET HTTP/1.1
www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (8807), with CRLF, LF line terminators
Size
54 kB (53865 bytes)
Hash
6ab108614db20ff5a8b7700f8603084d
45a808254f362b90c1d4c3e111e6d641fc2ed350
37b0a884abc948db51122fc9678cf4aa0b68f22cd9d6ccb97bc44eaaab483a55

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /scarpe-scarponi-c-1_47_57.html HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032; path=/; HttpOnly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet.css

196.196.155.85

200 OK

0 B

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Wed, 09 Apr 2014 19:36:02 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet1.css

196.196.155.85

200 OK

16 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet1.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
ASCII text, with very long lines (876), with CRLF line terminators
Size
16 kB (15476 bytes)
Hash
effe366eba19152391a0d18e2473d780
95382f525972eef4a33589c511c20ff596eb6453
cfbb5075ac2f7aef3398238cb9d03d6aa2c14ef0244ceb2d1162896a043dc10f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet1.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 10 Sep 2020 08:59:40 GMT
Accept-Ranges: bytes
Content-Length: 15476
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_haokuna.css

196.196.155.85

200 OK

0 B

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_haokuna.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet_haokuna.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 10 Sep 2020 08:59:40 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_lightbox.css

196.196.155.85

200 OK

2.4 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_lightbox.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
ASCII text, with CRLF line terminators
Size
2.4 kB (2370 bytes)
Hash
4156c4f3b3e8eb75b3f0ffc31b9b3c48
d2e2362789756890af0cd16178e7dc00b66a2032
9b1778227a7dc12daa8be9254e2f90de342d38c9c26140ffd85c82de5a1f70cd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet_lightbox.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 10 Sep 2020 08:59:40 GMT
Accept-Ranges: bytes
Content-Length: 2370
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_add.css

196.196.155.85

200 OK

178 B

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_add.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
ASCII text
Size
178 B (178 bytes)
Hash
3d372a1cb4a5c596147ea4123ced27d7
c77116d60116e0cbad041002a2afb14420be6d68
b356396cc5563c1983f4297821b0e8bddacc94ae2bc45ecc0dcda90cbf9e91c3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet_add.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 10 Sep 2020 08:59:40 GMT
Accept-Ranges: bytes
Content-Length: 178
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_lin.css

196.196.155.85

200 OK

0 B

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_lin.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet_lin.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 10 Sep 2020 08:59:40 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_categories_menu.css

196.196.155.85

200 OK

2.3 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_categories_menu.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
ASCII text
Size
2.3 kB (2341 bytes)
Hash
77ac4aa1fc1b80426aa7ad8033dcb40c
fa30830acbbe5458aa445be97ecd00be2e1d60fa
93a60cfc2924d4c2d193bd12bd2ccd8d54b433b975bf842d9c2547a95efabdf0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet_categories_menu.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 08:17:13 GMT
Accept-Ranges: bytes
Content-Length: 2341
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_header_menu.css

196.196.155.85

200 OK

3.8 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_header_menu.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
ASCII text, with CRLF line terminators
Size
3.8 kB (3791 bytes)
Hash
bd6a3cb78a664518024d45179f41a276
978d41afe62918164f5ad6fb527659e2cac76de0
f4efe8e9b170f96132f765fce9cf0f53079f5b8c890e55e198d0815aa903e141

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet_header_menu.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 10 Sep 2020 08:59:40 GMT
Accept-Ranges: bytes
Content-Length: 3791
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheetmy.css

196.196.155.85

200 OK

0 B

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheetmy.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheetmy.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Wed, 09 Apr 2014 19:36:02 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_jquery.mmenu.all.css

196.196.155.85

200 OK

11 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_jquery.mmenu.all.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
ASCII text, with CRLF line terminators
Size
11 kB (11399 bytes)
Hash
c55db76f8a22e78f2eedac9f2a7e562c
0be24f6955ba38d3b9ceee94f1ad65e667791e4e
43e3fdd3ef9ee7fd95364cb2cddcdb3fcea85e00069e78786aba640d4937527f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet_jquery.mmenu.all.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 23 Jul 2020 02:27:10 GMT
Accept-Ranges: bytes
Content-Length: 11399
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_jquery_kinSlideshow.js

196.196.155.85

200 OK

9.7 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_jquery_kinSlideshow.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (8513), with CRLF line terminators
Size
9.7 kB (9674 bytes)
Hash
08a763acea723e1d88cbce2f1c9b3317
ea20687e4f773bf67907b0edb029ebafbc110fc1
c17caeebb94b90d9aae3dc3142cda848f67e8b9425a6d25e434af74d2978aba4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/jscript/jscript_jquery_kinSlideshow.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Sat, 20 Nov 2010 23:51:10 GMT
Accept-Ranges: bytes
Content-Length: 9674
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_lightbox.js

196.196.155.85

200 OK

20 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_lightbox.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, ISO-8859 text, with very long lines (797), with CRLF line terminators
Size
20 kB (20417 bytes)
Hash
3d79a6c53803295ef00c052546d76500
f1481ce4f6f2aaefd7a5b6af19be42c7b1606dcc
93acbf26510bd264764a43d220a984b78270cd37536e0aa6bf8deb1fb28338f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/jscript/jscript_lightbox.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Sat, 23 Oct 2010 19:36:54 GMT
Accept-Ranges: bytes
Content-Length: 20417
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_1.11.1.min.js

196.196.155.85

200 OK

158 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_1.11.1.min.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/jscript/jscript_1.11.1.min.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 05 May 2017 10:03:43 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_all.css

196.196.155.85

200 OK

112 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_all.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
112 kB (112409 bytes)
Hash
bf2043f0bedfeb3b6d2c06425be5f47a
1fff4e15c37bbccf748320cfcd83a29aba671e4a
7668d8b3d967ccfb55affd9e83928ee1be90713934aabfd78437270203dc8818

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/stylesheet_all.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 10 Sep 2020 08:59:40 GMT
Accept-Ranges: bytes
Content-Length: 112409
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_jquery.js

196.196.155.85

200 OK

86 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jscript_jquery.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65168)
Size
86 kB (85925 bytes)
Hash
e85aed5c30d734f1e30646e030d7a817
b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad
8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/jscript/jscript_jquery.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 01 Apr 2011 07:28:42 GMT
Accept-Ranges: bytes
Content-Length: 85925
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/facebox/css/font-awesome.min.css

196.196.155.85

200 OK

32 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/facebox/css/font-awesome.min.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
ASCII text, with very long lines (402)
Size
32 kB (31725 bytes)
Hash
0557ee20cbec5ddc14ba0481a4ae9ca8
b95de7bc2822aebad9564b64fd10ed69c60f611c
c6d652d309878c531875964ca66aa28c95a80204df250b89ef04d90be6c4f50d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /facebox/css/font-awesome.min.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Sun, 10 May 2020 02:08:47 GMT
Accept-Ranges: bytes
Content-Length: 31725
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/js/jquery.mmenu.min.all.js

196.196.155.85

200 OK

39 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/js/jquery.mmenu.min.all.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, ASCII text, with very long lines (401)
Size
39 kB (38800 bytes)
Hash
5b2edbe2f95659b625a0b919ebf98286
1c5722696e849953fccdf41e0f0a01e3f37a80da
a83065a45e7248c11ae228cab8da5d6bfcfa4791be255e2a78e81dbc456a4637

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.mmenu.min.all.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 07:51:19 GMT
Accept-Ranges: bytes
Content-Length: 38800
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jquery-price-slider.js

196.196.155.85

200 OK

36 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/jscript/jquery-price-slider.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, ASCII text, with very long lines (476)
Size
36 kB (35700 bytes)
Hash
7f730a53f528a3b4571ecb35842dac9a
b57a5bb69a7cc5386aee6cd1a3bc385de69cbf7c
3698640de183901071d26abf398014dbf19ca2e87298a5a8b2877c67ef526dbb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/jscript/jquery-price-slider.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Tue, 03 Dec 2019 07:39:54 GMT
Accept-Ranges: bytes
Content-Length: 35700
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/js/jquery.jxa.js

196.196.155.85

200 OK

2.7 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/js/jquery.jxa.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
2.7 kB (2658 bytes)
Hash
ca643ec9e974f881e4c904db35bc40c7
759df5ef14b4e2c0c46770b5e408f600972294ca
a1e3d7d98e8e9886c1181e7d53ddd4a6ff424a0fff640d1dc4b06757f096e0e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxa.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Wed, 29 Apr 2020 05:46:05 GMT
Accept-Ranges: bytes
Content-Length: 2658
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/js/jquery-1.7.2.min.js

196.196.155.85

200 OK

158 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/js/jquery-1.7.2.min.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery-1.7.2.min.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 07 May 2020 08:22:18 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/flag/EUR.gif

196.196.155.85

200 OK

1.2 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/flag/EUR.gif
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
GIF image data, version 89a, 26 x 17
Size
1.2 kB (1225 bytes)
Hash
9f620c391bc99cb47e4afb10b1b322ab
b802fc483b5982cc0b359679a655495cd7742fca
d1a4d74882ada5e6b77269361ddc0e2313d31adee86086c7c71b3f491f03f995

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/images/flag/EUR.gif HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Tue, 09 Jul 2019 09:02:20 GMT
Accept-Ranges: bytes
Content-Length: 1225
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/logo.png

196.196.155.85

200 OK

41 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/logo.png
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
PNG image data, 131 x 64, 8-bit/color RGBA, non-interlaced
Size
41 kB (40858 bytes)
Hash
226e6cc9f9161775151aa319a89c5db9
fdd30dfdaeaa410ff7ed1f540d51e17f4529f953
78de0b89dae3bf1c9db1ea8e722e1d934ce6bb22a58d50536e57715c8f43ccde

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/images/logo.png HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 27 Aug 2020 01:50:08 GMT
Accept-Ranges: bytes
Content-Length: 40858
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.northfaceitaliait.com/js/jquery.jxb.js

196.196.155.85

200 OK

158 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/js/jquery.jxb.js
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JavaScript source, ASCII text, with very long lines (749)
Size
158 kB (157648 bytes)
Hash
6f3d61313966fcd43b0334aa5fad66b9
22b2b120da5b405a348e4abdd865c496625d87ab
f2374ffefd903e49bfa1772a042c1b593e52cd862e6553f538128ab4a58fe5b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/jquery.jxb.js HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 05 May 2017 10:03:43 GMT
Accept-Ranges: bytes
Content-Length: 157648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Back-To-Be%201082.jpg

196.196.155.85

200 OK

37 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Back-To-Be%201082.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
37 kB (36595 bytes)
Hash
8d7fb1a44ea98439bd72446d268ec648
37262612660a0d52265cd4d2879fd1145f9eb9cb
c7fad958d0d51b3f4b1bb3ebfa6d250d85d52bd4e831fb7eac3ffce467e851f2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Back-To-Be%201082.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:12 GMT
Accept-Ranges: bytes
Content-Length: 36595
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Back-To-Be%201080.jpg

196.196.155.85

200 OK

36 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Back-To-Be%201080.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
36 kB (35867 bytes)
Hash
8a16137bfae6c96d2e09869ddd333122
666d2b202a93de3259bf3b0a0ceacc9076c59409
dfa13bac79a2e748f768dc29afb0ab585ce2750ac77290bb49a136af02741654

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Back-To-Be%201080.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:05 GMT
Accept-Ranges: bytes
Content-Length: 35867
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0

196.196.155.85

200 OK

77 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/facebox/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /facebox/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/facebox/css/font-awesome.min.css
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2016 08:51:44 GMT
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/print_stylesheet.css

196.196.155.85

200 OK

773 B

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/print_stylesheet.css
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
ASCII text
Size
773 B (773 bytes)
Hash
bbd38cb1b3b2298d98121752e951e872
f18e1df8b85734180dbe990473e12b9854913ed1
5ec0e5addd6014a7f05030ad5de266ee15d8d5192ea2efcaccafc3e235a0bd29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/css/print_stylesheet.css HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Wed, 09 Apr 2014 19:36:02 GMT
Accept-Ranges: bytes
Content-Length: 773
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Hedgehog%20F%201084.jpg

196.196.155.85

200 OK

41 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Hedgehog%20F%201084.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
41 kB (40610 bytes)
Hash
a33fdb9f9dcfe505fb859a301a2fd06d
3fbc6a0a947d875c50715755983e935d51ed891c
fd17555e268adab1436996f767c50ee6e94c3f6e5443de87a6e2123062bec52d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Hedgehog%20F%201084.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:18 GMT
Accept-Ranges: bytes
Content-Length: 40610
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Thermoball%201086.jpg

196.196.155.85

200 OK

40 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Thermoball%201086.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
40 kB (40012 bytes)
Hash
3b738c733e30afb39379b9470f7c8c00
6462d43de1d7eb2ab24b7c313233f28888cae2e5
abbe4a215ba86fe98959515b2b9a24b1d5a5ce715501642c3c41b45dd2425432

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Thermoball%201086.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:25 GMT
Accept-Ranges: bytes
Content-Length: 40012
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Ultra%20Fast%201078.jpg

196.196.155.85

200 OK

52 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Ultra%20Fast%201078.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
52 kB (51643 bytes)
Hash
02ca99c5185b6c6caa66fdd89c8d6788
de5275ab3757df3fd2294eb350d1c535220d8d6c
ab5074308c7aa5928a6a5d85920cb0cfe73f20b0e9770b32215f06e246a56bc7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20North%20Face%20Donna%20Ultra%20Fast%201078.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:30:59 GMT
Accept-Ranges: bytes
Content-Length: 51643
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Back-T%201081.jpg

196.196.155.85

200 OK

36 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Back-T%201081.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
36 kB (35981 bytes)
Hash
37bbeac0aff859a0c8aea04ac521c926
2b4268c2e6ca719c998a63f9e0254fa74f8fac48
b77ae8f2f91241302d4cbef8f97f557b3ea63007974590bd15ca7859f45b06e7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Back-T%201081.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:08 GMT
Accept-Ranges: bytes
Content-Length: 35981
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Hedgeh%201085.jpg

196.196.155.85

200 OK

37 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Hedgeh%201085.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
37 kB (37057 bytes)
Hash
12be27d1744b15f18854ff3ead15cf18
8b184786e5686eaed6925510c156f61d6d69be47
08150e111e56a1095f17db36a8c9bfd33ccb83a894604d9a592e3ffe629a1c64

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Hedgeh%201085.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:22 GMT
Accept-Ranges: bytes
Content-Length: 37057
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Thermo%201087.jpg

196.196.155.85

200 OK

44 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Thermo%201087.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
44 kB (43455 bytes)
Hash
bc00cf7f2eba76482eafb887c3b9867b
fd1cd996932faf4127d752864672516e199fdfd0
b8c607c542db47731f5d0bb84f94dc7906f8cea945914f7034bbbb7ea99ea043

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Thermo%201087.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:50 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:28 GMT
Accept-Ranges: bytes
Content-Length: 43455
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Trail%20%201083.jpg

196.196.155.85

200 OK

46 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Trail%20%201083.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
46 kB (46137 bytes)
Hash
8c77983687729a5cccc4a5a25bcb8a7d
1246cfd5fde749510c75db70e7545628d93efc00
5bd30332533bba064f9a52e24e603cb66ba534e41a0bab7d44ad88d6cf944098

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Trail%20%201083.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:51 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:15 GMT
Accept-Ranges: bytes
Content-Length: 46137
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Ultra%20%201079.jpg

196.196.155.85

200 OK

48 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Ultra%20%201079.jpg
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 650x755, components 3
Size
48 kB (48279 bytes)
Hash
680510386710349b45bc8691cb1ea7c5
1080729f436f3a2f3e354adbfd2586fbce985512
eee37948b0d0682d034fbc1e4adf7d9411535193f76572ff63e85791b1a8ceb0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/thenorthfacesconti/Scarponi%20The%20North%20Face%20Donna%20Ultra%20%201079.jpg HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:51 GMT
Server: Apache
Last-Modified: Fri, 21 Aug 2020 01:31:02 GMT
Accept-Ranges: bytes
Content-Length: 48279
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/menu.png

196.196.155.85

200 OK

2.8 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/menu.png
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced
Size
2.8 kB (2848 bytes)
Hash
f48069fcd9f61020e0a8263037fc5d74
2c6ffd750ef23783de3ba33bb859ce664bc1aabe
3f25d9df3c429a2a355713afefb51e3f3cdf2abb9f6a6d3b09219196da51cdb8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/images/menu.png HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_jquery.mmenu.all.css
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:51 GMT
Server: Apache
Last-Modified: Fri, 08 May 2020 06:09:31 GMT
Accept-Ranges: bytes
Content-Length: 2848
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/none.png

196.196.155.85

200 OK

2.9 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/none.png
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
PNG image data, 15 x 9, 8-bit/color RGBA, non-interlaced
Size
2.9 kB (2921 bytes)
Hash
c02b04735d7dedcc52c8b2731164de37
20531f04cccf219c07c361f259473e29092a4989
ccc297b760904cc083f9e6d9bed275b73389a1f11303ef73a29201cd82f2153b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/images/none.png HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_all.css
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:51 GMT
Server: Apache
Last-Modified: Mon, 09 Mar 2020 15:15:48 GMT
Accept-Ranges: bytes
Content-Length: 2921
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.northfaceitaliait.com/favicon.ico

196.196.155.85

200 OK

1.2 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/favicon.ico
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
eb9634ef626b8b5129b4295abdeb6e2f
dbbadce08a04371c12a05b7daf99dd655160a4b7
45a78902fa5c1cd1cb4af0f7e190962f97b688174932387d0773856d42295fad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:51 GMT
Server: Apache
Last-Modified: Thu, 27 Aug 2020 01:46:39 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/x-icon

www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/arr.png

196.196.155.85

200 OK

3.2 kB

URL GET HTTP/1.1
www.northfaceitaliait.com/includes/templates/thenorthfacesconti/images/arr.png
IP
196.196.155.85:443
ASN
#58065 Orion Network Limited

Requested by
https://www.northfaceitaliait.com/scarpe-scarponi-c-1_47_57.html
Certificate
IssuerLet's Encrypt
Subjectnorthfaceitaliait.com
FingerprintCD:C2:FA:7E:1F:DB:4F:F9:FE:A1:E9:70:CB:B7:87:5E:45:51:2B:A0
ValidityFri, 22 Mar 2024 02:23:17 GMT - Thu, 20 Jun 2024 02:23:16 GMT

File type
PNG image data, 13 x 21, 8-bit/color RGBA, non-interlaced
Size
3.2 kB (3156 bytes)
Hash
ececf87d573fb10c313f40c06335e25f
4b4c6f1086144adb7ca53488ba5c81749b018c4b
a1838101881751e352091b47c127bbf5ab274c992a0f040d0c09217345477285

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/thenorthfacesconti/images/arr.png HTTP/1.1
Host: www.northfaceitaliait.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.northfaceitaliait.com/includes/templates/thenorthfacesconti/css/stylesheet_all.css
Cookie: zenid=tedi0ihv8tlijrjhtiqap7u032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 17:45:51 GMT
Server: Apache
Last-Modified: Sat, 03 Jun 2017 03:25:03 GMT
Accept-Ranges: bytes
Content-Length: 3156
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL