Report - tizianapepe.it/pa/ceextpraoettnucieds

Report Overview

Submitted URL
tizianapepe.it/pa/ceextpraoettnucieds
IP
185.81.4.134
ASN
#52030 Server Plan S.r.l.
Submitted
2022-10-07 17:02:49
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
156

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	28 kB	104.17.25.14
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	469 B	15 kB	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.65
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.148.228.200
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	111 kB	216.58.207.195
www.tizianapepe.it	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	23 kB	2.5 MB	185.81.4.134
www.tsinnovation.it	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	5.8 kB	86.107.32.70
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	44 kB	34.120.237.76
tizianapepe.it	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	454 B	342 B	185.81.4.134
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	8.0 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-07	medium	tizianapepe.it/pa/ceextpraoettnucieds	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.2.2	Malware
2022-10-07	medium	www.tizianapepe.it/pa/ceextpraoettnucieds	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/skin/skin.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.6	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/js_composer/custom.css?ver=5.1	Malware
2022-10-07	medium	www.tizianapepe.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/themes/dt-the7/fonts/FontAwesome/css/font-awesome.min.css?ver=4.2.2	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/media-381280428b.css?ver=4.2.2	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-numbers-32x32/icomoon-numbers-32x32.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-eighty-shades-16x16/icomoon-eighty-shades-16x16.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-pixeden-stroke-32x32/icomoon-pixeden-stroke-32x32.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-feather-24x24/icomoon-feather-24x24.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-brankic-32x32/icomoon-brankic-32x32.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/post-type-dynamic-381280428b.css?ver=4.2.2	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-icomoonfree-16x16/icomoon-icomoonfree-16x16.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/themes/dt-the7/css/main.min.css?ver=4.2.2	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/custom-381280428b.css?ver=4.2.2	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1	Malware
2022-10-07	medium	www.tizianapepe.it/wp-includes/js/wp-embed.min.js?ver=5.1.14	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/themes/dt-the7/js/post-type.js?ver=4.2.2	Malware
2022-10-07	medium	www.tizianapepe.it/wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-10-07	medium	tsinnovation.it	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed
2022-10-07	medium	tizianapepe.it	Sinkholed

JavaScript (26)

	URL	Size	First Seen	Last Seen
	www.tizianapepe.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14	12 kB	2023-03-07	2024-04-25
Pretty URL www.tizianapepe.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:16 Last Seen2024-04-25 08:18:41 Times Seen2107 Hash 33479c6b333bb34fd771bf50df1fefc3 4869e92709eee1d1a42a697a80879e303aea7572 d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7 Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	56 B	2023-03-07	2023-11-30
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:58:10 Last Seen2023-11-30 07:50:57 Times Seen8 Hash d42e84825853c25d0836f5094a6cf570 77868120604118ccf9ec7db9ce4e305a184cdd76 9a6ff3244fc333507ada7fb58d8e8f00f1e8f2e144c224333e7f16d8d6e38542 Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	63 B	2023-03-07	2024-02-13
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:15:55 Last Seen2024-02-13 09:20:57 Times Seen47 Hash 0a1f87f76124dabbfde867395b039e0b 2b9a16d6e1ad88431acf2b4c87031400f62fde8f ff47f5ffb114a968057028041cd25a71cefc6095f3357ad2055450402beafb7a Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	213 B	2023-03-07	2024-02-06
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:48 Last Seen2024-02-06 01:33:34 Times Seen57 Hash 55dc4a7b6b2ff44bb0e0eba0fd8cd269 b5ff9b9012f7947a20fa81a6a13061a605db6687 8ed180963ebf5a65e2e02c33d70f91aa4dd692c52e7615c231838179a8f155c1 Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	158 B	2023-03-08	2023-03-08
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:15:38 Last Seen2023-03-08 12:07:52 Times Seen1 Hash 2769dcf1ff6b917e44def1ee2a4e9d51 03fff0b780f537de31206c09862d65f9fe43cde1 b53300ac5df1cec36182b18747e1a5d3d06beca4bc5732e45d0649efe4eb8c99 Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	2.1 kB	2023-03-08	2023-03-08
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:15:38 Last Seen2023-03-08 12:07:52 Times Seen1 Hash 39200d4dbb61a95cb036ca36ef210e8d b7d6bd50d3b99c60d2ceafa15b747fd7f989fd5e 6139e6d9e7fb19cc2c546309898930d8c0b224ab41c664fb9ee2b0ac05321811 Loading...

	www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.2.2	111 kB	2023-03-07	2024-02-15
Pretty URL www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.2.2 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:44 Last Seen2024-02-15 15:39:54 Times Seen61 Hash 195cf63e0dbf9825f9bce3ccf2603e86 243c2e8dd7890b2f043fa61aee4ce6d9f06519d0 130cf83ddbad85e17c58491c8bb7e6d9a0fb1ec87eedab07c31f71651c65ed05 Loading...

	www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/flowplayer.min.js?ver=5.1.14	168 kB	2023-03-08	2024-03-04
Pretty URL www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/flowplayer.min.js?ver=5.1.14 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:15:40 Last Seen2024-03-04 18:46:06 Times Seen191 Hash 979ff8ece064cda84bd27117d42c67ea a23a31fc42b23ddcb9a03249ffb2a0e3bbc55b96 aa4102b0e8799af2d421bded67639052bb67126a9894cff3d52476f2dedf3785 Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	155 B	2023-03-08	2023-03-08
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:15:38 Last Seen2023-03-08 12:07:52 Times Seen1 Hash 84093752ec472ed6203bc14d807aab62 0a510eef92f03764eaaf258c5c63f8b79fc226fb b1d4b796cf4b085465b1472ef761716fe2839957f644e0b87058791f8163e79d Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	1.3 kB	2023-03-08	2023-03-08
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:30:35 Last Seen2023-03-08 08:30:44 Times Seen1 Hash 4a749fec88f0ee04e3fbe93d53a4baf4 ff857d16321f3b08335d94e3139bcdf6421d6786 c4e53d798a54bf842c00e571d48ed1e5fb7b9a013864a8f32930f41344be5bef Loading...

	www.tizianapepe.it/wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js	2.8 kB	2023-03-07	2024-04-25
Pretty URL www.tizianapepe.it/wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:49 Last Seen2024-04-25 01:48:26 Times Seen1365 Hash 639d1c35a685d111aa4a509a2dbf660c d0991ef04e2dd8fd1b0cb0c8bb0f1026649d9b25 1fdbb2180496fca532f43deaffec879f8ca6990258b38a469aed4120d6c0d2fe Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	771 B	2023-03-07	2024-02-06
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:48 Last Seen2024-02-06 01:33:34 Times Seen128 Hash ff5f5b72ccf8fc10916a0823557890de 7722a09344092b454ca3f0871a5cf215a6f05be0 18e3e0f8af5e19fe3bf34093574aff6aac112d6269d8558c54cca39f4413442a Loading...

	www.tizianapepe.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-26
Pretty URL www.tizianapepe.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-26 10:14:42 Times Seen37232 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	www.tizianapepe.it/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2	12 kB	2023-03-07	2024-01-06
Pretty URL www.tizianapepe.it/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:48 Last Seen2024-01-06 10:26:42 Times Seen60 Hash 26bcc63f374c43287868adb618b8fd7c 3f9dc5b95d446b8912f1046bc79a911064d72882 ccd1e0d2d06c1358483fefd52cd9729ce3a30e4b669847a61175c847db0835f8 Loading...

	www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1	14 kB	2023-03-07	2024-04-25
Pretty URL www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-25 16:04:37 Times Seen6665 Hash 1534f06aa2b1b721a45372f8238e2461 86f7e7b926e1a88209d171b56dadbccc2c96f578 b7e17926b30342edecee8b3a93029ac51462e2b479277d8e077ba57173eb1900 Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	713 B	2023-03-08	2023-03-08
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:30:44 Last Seen2023-03-08 08:30:44 Times Seen1 Hash e50096dc3559bd1c0f4569a4b20388cc dcacd11adc6b02d0e1974f7e6bd87a6fbac8a53e 5d43762d4a0e7ecf8a98f2816adb0c1110110a4c2a81701bde302076fdcbe007 Loading...

	www.tizianapepe.it/wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.6	20 kB	2023-03-08	2023-03-17
Pretty URL www.tizianapepe.it/wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.6 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:15:38 Last Seen2023-03-17 22:41:51 Times Seen1 Hash 7a100819d22d63391273c7dca22449b2 1e5861c4274b703c252c08fbb7e57b43b4ab7801 f7ebdfc42745f4c15113580b0f0cdcab817d7760b2d0ea9ba213f4869377ac24 Loading...

	www.tizianapepe.it/wp-content/themes/dt-the7/js/main.min.js?ver=4.2.2	374 kB	2023-03-07	2023-11-28
Pretty URL www.tizianapepe.it/wp-content/themes/dt-the7/js/main.min.js?ver=4.2.2 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:05:14 Last Seen2023-11-28 11:27:07 Times Seen9 Hash b9f4f2e0853a2d56785f49fe6000f46e 63e0fe9a5608b4974cf8b4b0bb2a76b361b42039 3bd22d2d04ca95fb9f70994478214bded342f32f7a4b22316d5307ac5232bad6 Loading...

	www.tizianapepe.it/wp-includes/js/wp-embed.min.js?ver=5.1.14	1.4 kB	2023-03-07	2024-04-24
Pretty URL www.tizianapepe.it/wp-includes/js/wp-embed.min.js?ver=5.1.14 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-24 21:41:00 Times Seen2990 Hash 570ae0f3c201604926ea599d3d1f6c04 2c29243a73660964d4712b969d2a15e27777bc14 5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 14:13:16 Times Seen37092977 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.2.2	24 kB	2023-03-07	2024-04-18
Pretty URL www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.2.2 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:48 Last Seen2024-04-18 05:49:36 Times Seen493 Hash ab5c641341135bae9cde257a14da0656 386804e789461da7b84d5e6e180ae87e67276dc8 7f612443943aaf092378e9fa4082d03bb33e0a4430b19f51fe16077e66729db3 Loading...

	www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1	63 kB	2023-03-07	2024-02-28
Pretty URL www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38:38 Last Seen2024-02-28 06:42:09 Times Seen421 Hash b4b495a7dc7db64771070c7f67813615 f36b9f296e3fa9eb6d6e18841540129ea95861fd 1dfd5afa2f6a618d8b7450ddc586413e1b75499322d6534e01accd990ae66925 Loading...

	www.tizianapepe.it/wp-includes/js/jquery/jquery.js?ver=1.12.4	97 kB	2023-03-07	2024-04-26
Pretty URL www.tizianapepe.it/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-26 10:14:42 Times Seen17760 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	www.tizianapepe.it/pa/ceextpraoettnucieds	711 B	2023-03-08	2023-03-08
Pretty URL www.tizianapepe.it/pa/ceextpraoettnucieds IP 185.81.4.134 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:30:44 Last Seen2023-03-08 08:30:44 Times Seen1 Hash 647a0862320fa97d769c3e2a50e7dc01 42baef66cfecf398566af5ab935ac6a7b6cc561d 9c81f988ad4e73e081214b7d2cba29aa88d89245eaabadf25529daa2a641038e Loading...

		Size	First Seen	Last Seen
	#1 Eval - 984a2eff822111800ad694aeee508d33	188 kB	2023-03-07	2024-01-04
Pretty Observations First Seen2023-03-07 12:42:45 Last Seen2024-01-04 21:23:35 Times Seen34 Hash 984a2eff822111800ad694aeee508d33 adb71740ef1abac1eff0955103d1ccc60de15233 1641ecd5c0c6baa294895f48e1d89a85e9ddf44abc0f453ff1dad6d0c6ffe556 Loading...

	#2 Eval - 3a15fdf632cd75a684de311897cf30d3	51 kB	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-26 10:42:38 Times Seen1164 Hash 3a15fdf632cd75a684de311897cf30d3 96fe9f5c57184ee30d1be2896f2bff11717a7fbf 2626f69586429e55dcd345b157a84d3956e2ee556ebf54c6a64ca939f88dda04 Loading...

HTTP Transactions (79)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

54.230.111.65

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.65:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _h0c1QnqYRxQ4D8vddITMgwoZi3uSdTPphS0E4UHjcHnfRoWHSh8lg==
Age: 177320

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
72057a68fb50c489049eaf05eb18d75c
4e21c249aea996080533bb23136d0deaeb411924
736bf414a3c5cb94de5c25a2bcaf61ff3f39d5cdc085a787ca2237ff1ff6866e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "736BF414A3C5CB94DE5C25A2BCAF61FF3F39D5CDC085A787CA2237FF1FF6866E"
Last-Modified: Fri, 07 Oct 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21233
Expires: Fri, 07 Oct 2022 22:56:31 GMT
Date: Fri, 07 Oct 2022 17:02:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3165
Expires: Fri, 07 Oct 2022 17:55:23 GMT
Date: Fri, 07 Oct 2022 17:02:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16970
Expires: Fri, 07 Oct 2022 21:45:28 GMT
Date: Fri, 07 Oct 2022 17:02:38 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: q0XigzqhcN8zTkTIrgafSkvd5fhTK8HXreJT2oD4W1pcAmZ37aXc+5CAHWGL94TAUndSMutFLfs=
x-amz-request-id: 0Q7K9JWAQ0DG86PE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 07 Oct 2022 16:31:16 GMT
age: 1882
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 17:02:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.65

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.65:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Fri, 07 Oct 2022 16:42:40 GMT
Cache-Control: max-age=3600
Expires: Fri, 07 Oct 2022 17:20:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tmEBQU5l6f0_qvHnDfcuSgGbdZ2iNAb3WZHxpi09r1eGlM0ZVJbyPg==
Age: 1977

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d6c404502c7987174a84d8f0a3efab23
fc3a3f6d63acab3f659fb3536b65fd8564ec8628
94b5693df873bd923ffbf31f576fff01d2628e5796af4c6b91306a743e27d19b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3188
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:39 GMT
Last-Modified: Fri, 07 Oct 2022 16:09:31 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.148.228.200

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.228.200:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Oq2X3KAQHRtxipQyUaCXqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C8ahpDeg9VH3nKt7+GpGNmKR+qA=

tizianapepe.it/pa/ceextpraoettnucieds

185.81.4.134

301 Moved Permanently

0 B

URL HTTP/2
tizianapepe.it/pa/ceextpraoettnucieds
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /pa/ceextpraoettnucieds HTTP/1.1
Host: tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.tizianapepe.it/pa/ceextpraoettnucieds
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 07 Oct 2022 17:02:38 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.2.2

185.81.4.134

200 OK

20 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text
Size
20 kB (20482 bytes)
Hash
2f196246a1b62c00b2398b15d3d1e6c8
e0563f9fd135a3cb84aa883dfba4cfb8d673f73e
e306106604040ca9d7c5d2fd3579273fc2fb001a528b3c670193d8e82fac4a50

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:41:57 GMT
etag: "3880f2b-5002-54d10adf6c740"
accept-ranges: bytes
content-length: 20482
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/pa/ceextpraoettnucieds

185.81.4.134

404 Not Found

76 kB

URL HTTP/2
www.tizianapepe.it/pa/ceextpraoettnucieds
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14297), with CRLF, LF line terminators
Size
76 kB (76491 bytes)
Hash
231319272d9c48369952beeeb6608638
c1a224ab9c892b907e143cf34c6bd7c207d77b41
50d54b41160fc1a6d0c9f1acc6dad989c13c88a0306625806b9156fdf8ce0f98

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /pa/ceextpraoettnucieds HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.tizianapepe.it/wp-json/>; rel="https://api.w.org/"
content-type: text/html; charset=UTF-8
date: Fri, 07 Oct 2022 17:02:39 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1

185.81.4.134

200 OK

1.7 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text
Size
1.7 kB (1685 bytes)
Hash
5ad1cfa3f5175f627385651790ed0bbd
7a06ac744a748ce4c315c798614d6d0068596cc4
3ad2fcb328295f1199d593adaba909f3eea790f695554ac3c1da7aa009fc0e0d

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 16:58:16 GMT
etag: "38813c9-695-5849da4fba947"
accept-ranges: bytes
content-length: 1685
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/skin/skin.css?ver=5.1.14

185.81.4.134

200 OK

41 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/skin/skin.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
Unicode text, UTF-8 text, with very long lines (1263)
Size
41 kB (40648 bytes)
Hash
c4824d35885b553e3bc6a65c495422bd
f59b3f57196e3273e05dd2ce374aaa67b61156db
ab953ed816cb0e1b415f5a20169b933177c219228a5ce54297f91ea8e2ac3cb8

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-video-player/lib/skin/skin.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 06 May 2020 08:38:34 GMT
etag: "392207b-9ec8-5a4f6b086ba13"
accept-ranges: bytes
content-length: 40648
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0

185.81.4.134

200 OK

529 B

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with CRLF line terminators
Size
529 B (529 bytes)
Hash
b655ad4016c052d438708a50654f7957
046aa8f2e76f9f0c7412b5f6e7a52b8ceed20421
3109fef8b2a9ab71fca698483d2bae36d8fed772517c259dacce872e739bb690

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Mar 2018 08:40:14 GMT
etag: "3881386-211-5676f70bcb780"
accept-ranges: bytes
content-length: 529
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.6

185.81.4.134

200 OK

72 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.6
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with CRLF line terminators
Size
72 kB (71602 bytes)
Hash
9e5230a7c480bdd9c977bdbb9286ef1f
991ee39abb564c26425050e5cdb55907f0e091f6
4aeeafb29e413b2206586e7cb16cb9974f3fc4497d11bc3e21c3d4ece94a9ee5

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.6 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:39:53 GMT
etag: "388068f-117b2-54d10a692b040"
accept-ranges: bytes
content-length: 71602
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/js_composer/custom.css?ver=5.1

185.81.4.134

200 OK

77 B

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/js_composer/custom.css?ver=5.1
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with CRLF line terminators
Size
77 B (77 bytes)
Hash
7abc01fdc7cccb646933b62ebe391d08
356c07fc01e5aa216dd4523fb194a6d9039e9a60
3e8ae00bee73b9a0519ed0e8df79b2ab44b7d4229ff183aa54d030da165b83c4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/js_composer/custom.css?ver=5.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:54:54 GMT
etag: "38e09cc-4d-54d20c93c0780"
accept-ranges: bytes
content-length: 77
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.tizianapepe.it/wp-content/themes/dt-the7/fonts/icomoon-arrows-the7/style.css?ver=4.2.2

185.81.4.134

200 OK

3.1 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/fonts/icomoon-arrows-the7/style.css?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text
Size
3.1 kB (3095 bytes)
Hash
a936ae1b498ce44b45d55caabac914f1
04fdf1633082d01b4851927ac5257fd1ed9fd54c
5b5c906444001a24411abd65a65100e27886b763f9047ea98771edebf326a25f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/fonts/icomoon-arrows-the7/style.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "39212a2-c17-54d110721ed40"
accept-ranges: bytes
content-length: 3095
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14

185.81.4.134

200 OK

12 kB

URL HTTP/2
www.tizianapepe.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (9071)
Size
12 kB (11951 bytes)
Hash
33479c6b333bb34fd771bf50df1fefc3
4869e92709eee1d1a42a697a80879e303aea7572
d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 11:45:26 GMT
etag: "39621fa-2eaf-5c0016644e384"
accept-ranges: bytes
content-length: 11951
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/themes/dt-the7/fonts/fontello/css/fontello.min.css?ver=4.2.2

185.81.4.134

200 OK

24 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/fonts/fontello/css/fontello.min.css?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (23615)
Size
24 kB (23616 bytes)
Hash
08ba5e3ba644aec59cb8bc0905db06d6
f57fdc494a023ff2ebe27eebfbdab535fd25854b
98b0ee3770d63b3cbec1ecc389c33e6bcb81b9746354ed4c19841b7e05203595

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/fonts/fontello/css/fontello.min.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "3921282-5c40-54d110721ed40"
accept-ranges: bytes
content-length: 23616
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1

185.81.4.134

200 OK

30 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (29418), with CRLF line terminators
Size
30 kB (29789 bytes)
Hash
9f4f00ef6543d1605d902f51fe083c2d
ee85e1283c695be178cf766524aa61ea36372a57
2e81985d6b2a407b4760c2c85a2cdfebeb13dfa8c07781162c429f7e8381aa45

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:43:42 GMT
etag: "3881a0d-745d-54d10b438f380"
accept-ranges: bytes
content-length: 29789
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/themes/dt-the7/fonts/FontAwesome/css/font-awesome.min.css?ver=4.2.2

185.81.4.134

200 OK

31 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/fonts/FontAwesome/css/font-awesome.min.css?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/fonts/FontAwesome/css/font-awesome.min.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "392129f-7918-54d110721ed40"
accept-ranges: bytes
content-length: 31000
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/themes/dt-the7/css/post-type.css?ver=4.2.2

185.81.4.134

200 OK

86 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/css/post-type.css?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (889)
Size
86 kB (85591 bytes)
Hash
1e535f5cecaa7406969b381ac562e857
ee8994b5776c1a306f6159c781f2a5270eb380ee
4d6b38213da10532b0970103de0d718dc5443cbc59a120a657d64739d950a9c0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/css/post-type.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:52 GMT
etag: "39212f3-14e57-54d110712ab00"
accept-ranges: bytes
content-length: 85591
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/gsap/1.11.2/TweenMax.min.js

104.17.25.14

200 OK

27 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/gsap/1.11.2/TweenMax.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (32033)
Size
27 kB (27294 bytes)
Hash
6fc7d7d232455a567501c29632d365f1
59e4133b0a5cc9723b222236af71342049892c98
724f3ee0e11df451de6a029f35af486a6941a42c176cfea462221e3f848b01fb

HTTP Headers

GET /ajax/libs/gsap/1.11.2/TweenMax.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 07 Oct 2022 17:02:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 27294
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e71-16e67"
last-modified: Mon, 04 May 2020 16:10:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7502620
expires: Wed, 27 Sep 2023 17:02:40 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fjef%2BsoY1Pl0XWHG3KKOsERfBKYVkexjwcm6ZMv9G9228OT%2F5CI2TUS%2Fe6m%2FpnkzZp%2FCowRtmEprflXNuNMcRmw9Hv46PvDZgVarsRCGW0aD7MMGjCwdhmWRPyROb6HbGWc4QBDo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 756834ae9f78b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/media-381280428b.css?ver=4.2.2

185.81.4.134

200 OK

48 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/media-381280428b.css?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text
Size
48 kB (48061 bytes)
Hash
bac6777f1fc24a200550f5758b17b3bf
b78f7eec1ecac6874c88ea7dbfaa48032b0ab1aa
20bf202e700ca530a5c9fb9718a1d466aaf2bf437c5a528532e07e7af498c58e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/wp-less/dt-the7/css/media-381280428b.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 17:41:24 GMT
etag: "38e077e-bbbd-5849e3f4583cb"
accept-ranges: bytes
content-length: 48061
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-numbers-32x32/icomoon-numbers-32x32.css?ver=5.1.14

185.81.4.134

200 OK

1.9 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-numbers-32x32/icomoon-numbers-32x32.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (1851), with no line terminators
Size
1.9 kB (1851 bytes)
Hash
13cabc23c350bb5793b525133b60caad
fc6bfc30d25139414d1c9ee3a55afa570b9503b3
4aed64094fc4d7dc24ea530e2a432434b4bc7754a51218cc6b3c0a6c428b3c65

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-numbers-32x32/icomoon-numbers-32x32.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:08 GMT
etag: "38e09ba-73b-54d20d138b500"
accept-ranges: bytes
content-length: 1851
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=5.1.14

185.81.4.134

200 OK

3.1 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (3073)
Size
3.1 kB (3104 bytes)
Hash
7548ec2f0a3a7d9958d25ebe4ea4bf0b
3dc03e2523445e80e6ecdaf7264e1bff9da61188
e706edf0b70392e8c768219e68cd5033c77db7274bda5ee29cacec1e231db3a9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:30:39 GMT
etag: "38a125f-c20-54d10858d51c0"
accept-ranges: bytes
content-length: 3104
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-60-vicons-18x18/icomoon-60-vicons-18x18.css?ver=5.1.14

185.81.4.134

200 OK

4.2 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-60-vicons-18x18/icomoon-60-vicons-18x18.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (4185), with no line terminators
Size
4.2 kB (4185 bytes)
Hash
a01ce72622192e8e8f9e1ff2dc4d1b18
8a755d3f33b85569c71b938b7d14570adddea2b8
6396d1e139db5a4e080ac14dde568c87780391249a3ec30fc3b5799510020b1b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-60-vicons-18x18/icomoon-60-vicons-18x18.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:58:00 GMT
etag: "38e099c-1059-54d20d4522a00"
accept-ranges: bytes
content-length: 4185
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-eighty-shades-16x16/icomoon-eighty-shades-16x16.css?ver=5.1.14

185.81.4.134

200 OK

5.8 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-eighty-shades-16x16/icomoon-eighty-shades-16x16.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (5789), with no line terminators
Size
5.8 kB (5789 bytes)
Hash
89b59c5a89d3fb6d41edd81bf2e27664
7905d50f797f62282e63439f7491b6be60a4d279
8cdee59c984d88f8346abddf672ee8a6d0804a039331312b97dc71fab136a0cc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-eighty-shades-16x16/icomoon-eighty-shades-16x16.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:44 GMT
etag: "38e097e-169d-54d20d35e0600"
accept-ranges: bytes
content-length: 5789
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-pixeden-stroke-32x32/icomoon-pixeden-stroke-32x32.css?ver=5.1.14

185.81.4.134

200 OK

14 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-pixeden-stroke-32x32/icomoon-pixeden-stroke-32x32.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (13579), with no line terminators
Size
14 kB (13579 bytes)
Hash
fb738fe090a186e1cacd7701aa079a66
8567c9d2946539e8e536cea3004cd9ddf736989a
2052851987aae6f60cdb40d9efafdc76f2f64e5a37a870f5b37dfc755063ecfc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-pixeden-stroke-32x32/icomoon-pixeden-stroke-32x32.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:56:48 GMT
etag: "38e0999-350b-54d20d0078800"
accept-ranges: bytes
content-length: 13579
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-feather-24x24/icomoon-feather-24x24.css?ver=5.1.14

185.81.4.134

200 OK

8.1 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-feather-24x24/icomoon-feather-24x24.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (8115), with no line terminators
Size
8.1 kB (8115 bytes)
Hash
b50c7956106c3c837a3dda404252b545
b3f95a5cd4991dbf2860acf499434ca5a20e994e
86280677bab07eabdb36c37f51da3b1d69eadfa56d2fc1ea89bd813aed59ac14

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-feather-24x24/icomoon-feather-24x24.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:32 GMT
etag: "38e098d-1fb3-54d20d2a6eb00"
accept-ranges: bytes
content-length: 8115
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-elegent-line-icons-32x32/icomoon-elegent-line-icons-32x32.css?ver=5.1.14

185.81.4.134

200 OK

7.6 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-elegent-line-icons-32x32/icomoon-elegent-line-icons-32x32.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (7623), with no line terminators
Size
7.6 kB (7623 bytes)
Hash
9dee603272c24b54f9144d189edc5577
83e8e2c90bd5f140814bf482bc28aa14eddce329
a76d7d9382b4dea600a21f25cecc3cb0d75d8fcc8dc0fa99287a8df036e94e84

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-elegent-line-icons-32x32/icomoon-elegent-line-icons-32x32.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:36 GMT
etag: "38e0967-1dc7-54d20d2e3f400"
accept-ranges: bytes
content-length: 7623
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

185.81.4.134

200 OK

10 kB

URL HTTP/2
www.tizianapepe.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (9959)
Size
10 kB (10056 bytes)
Hash
7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 20 May 2016 06:11:28 GMT
etag: "3962283-2748-5333ff613c400"
accept-ranges: bytes
content-length: 10056
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-brankic-32x32/icomoon-brankic-32x32.css?ver=5.1.14

185.81.4.134

200 OK

20 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-brankic-32x32/icomoon-brankic-32x32.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (20488), with no line terminators
Size
20 kB (20488 bytes)
Hash
78631c1cd8135a3e3e295d1adc792695
c1fcdcfeed2c7bac86be1d5380e109d0d9b6a47b
890f20eec2de095b55ea60f7945cecc0282b344ebe017e7284b09bca1ad964fc

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-brankic-32x32/icomoon-brankic-32x32.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:48 GMT
etag: "38e0975-5008-54d20d39b0f00"
accept-ranges: bytes
content-length: 20488
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.1.14

185.81.4.134

200 OK

8.5 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (8523), with no line terminators
Size
8.5 kB (8523 bytes)
Hash
06eb646ab6fc029690fdfd37b6f924bb
aadce95fb340f807915f5d1d2ba0e7f8d6933e41
7b70d23fbb5fda2c3126584ade84dbc3c22965e066793e3ee4542f5b5911aa32

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:26 GMT
etag: "38e0971-214b-54d20d24b5d80"
accept-ranges: bytes
content-length: 8523
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/post-type-dynamic-381280428b.css?ver=4.2.2

185.81.4.134

200 OK

35 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/post-type-dynamic-381280428b.css?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text
Size
35 kB (34630 bytes)
Hash
e6cfd56957948b5dd2e60265cc167ecb
7eff76b19a7889908900b4df1355904a77b51e94
0b206cdeacbef13c7aac32723ea9eb5a836bb77cf4491705b62f84a704684e10

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/wp-less/dt-the7/css/post-type-dynamic-381280428b.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 17:41:24 GMT
etag: "38e0761-8746-5849e3f46089e"
accept-ranges: bytes
content-length: 34630
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-icomoonfree-16x16/icomoon-icomoonfree-16x16.css?ver=5.1.14

185.81.4.134

200 OK

28 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-icomoonfree-16x16/icomoon-icomoonfree-16x16.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (27934), with no line terminators
Size
28 kB (27934 bytes)
Hash
af82f3976aad109fb4fae41a60393c0c
23952cc922bc1eb65228d9aee70ae0a2df35c317
407d09110e6fc4e1b107e9bb3a91aa276c3041d91573634456921a9b1fe172a4

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-icomoonfree-16x16/icomoon-icomoonfree-16x16.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:20 GMT
etag: "38e0983-6d1e-54d20d1efd000"
accept-ranges: bytes
content-length: 27934
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.1.14

185.81.4.134

200 OK

28 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (27639), with no line terminators
Size
28 kB (27639 bytes)
Hash
36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:47:29 GMT
etag: "38e09b0-6bf7-54d10c1c0b240"
accept-ranges: bytes
content-length: 27639
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.2.2

185.81.4.134

200 OK

24 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
Unicode text, UTF-8 text, with very long lines (23514)
Size
24 kB (23831 bytes)
Hash
ab5c641341135bae9cde257a14da0656
386804e789461da7b84d5e6e180ae87e67276dc8
7f612443943aaf092378e9fa4082d03bb33e0a4430b19f51fe16077e66729db3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:41:57 GMT
etag: "3880f44-5d17-54d10adf6c740"
accept-ranges: bytes
content-length: 23831
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.tizianapepe.it/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2

185.81.4.134

200 OK

12 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
HTML document, ASCII text, with very long lines (11475), with no line terminators
Size
12 kB (11475 bytes)
Hash
26bcc63f374c43287868adb618b8fd7c
3f9dc5b95d446b8912f1046bc79a911064d72882
ccd1e0d2d06c1358483fefd52cd9729ce3a30e4b669847a61175c847db0835f8

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "3921364-2cd3-54d110721ed40"
accept-ranges: bytes
content-length: 11475
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9552199aa9803ebb65cd986ed29f1aa9
ff7deeaaa6d2add9691459c2a3bf5de3bc094733
8d06b84fd50490ece750eb707bc1f0bea0aecbca222ba2ad7c0a38a72ab4a24e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D06B84FD50490ECE750EB707BC1F0BEA0AECBCA222BA2AD7C0A38A72AB4A24E"
Last-Modified: Thu, 06 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21249
Expires: Fri, 07 Oct 2022 22:56:49 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive

www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.1.14

185.81.4.134

200 OK

54 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (53601), with no line terminators
Size
54 kB (53601 bytes)
Hash
3b45e6c6c840593ae942c5350f12aaca
13e4d7cf0810c3f0a6055160d8a8d6bcf7dabb28
22ea2da34507e30595e6e794ac065b6a73ba168bf8f989966d36e23e0b89b098

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:12 GMT
etag: "38e09a5-d161-54d20d175be00"
accept-ranges: bytes
content-length: 53601
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1

185.81.4.134

200 OK

63 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (32003), with CRLF line terminators
Size
63 kB (63323 bytes)
Hash
b4b495a7dc7db64771070c7f67813615
f36b9f296e3fa9eb6d6e18841540129ea95861fd
1dfd5afa2f6a618d8b7450ddc586413e1b75499322d6534e01accd990ae66925

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:43:42 GMT
etag: "3881a3e-f75b-54d10b438f380"
accept-ranges: bytes
content-length: 63323
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/themes/dt-the7/css/main.min.css?ver=4.2.2

185.81.4.134

200 OK

386 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/css/main.min.css?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (64344)
Size
386 kB (386205 bytes)
Hash
3fda1fa05d7781a6842b645d8edb8d86
750d34eed5fe04cc8aee32d252cdf37695456cfe
15c73b0d7e6583db8bed5b2ee0f80d08b57fa6a7d346e6fcaea6601aeb630272

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/css/main.min.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:52 GMT
etag: "39212f4-5e49d-54d110712ab00"
accept-ranges: bytes
content-length: 386205
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-includes/js/jquery/jquery.js?ver=1.12.4

185.81.4.134

200 OK

97 kB

URL HTTP/2
www.tizianapepe.it/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (31997)
Size
97 kB (96873 bytes)
Hash
49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 05 Sep 2019 12:11:10 GMT
etag: "396227f-17a69-591cd379e4294"
accept-ranges: bytes
content-length: 96873
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0

185.81.4.134

200 OK

118 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (32006)
Size
118 kB (117557 bytes)
Hash
150324e55a09a90e1eface0a7faed270
0fe9f52c3c351c06f5cdb80f86d1aa70a52c4140
dfc519eb2d0e5ac0e8cdbe86fef355135280c643df14fa9a8e6abd5820d01159

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:41:57 GMT
etag: "3880f42-1cb35-54d10adf6c740"
accept-ranges: bytes
content-length: 117557
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1

185.81.4.134

200 OK

108 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (27184), with CRLF line terminators
Size
108 kB (107534 bytes)
Hash
ee418e8ccccf81d244d1e84e5f16a6cc
c3006d009fc528a5cd144e923ce9065c57eb6264
09b680f7684309e36e21b59242470b16a0ae396ba6d2ea465d28220db3de6c90

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:43:42 GMT
etag: "3881a3f-1a40e-54d10b438f380"
accept-ranges: bytes
content-length: 107534
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/custom-381280428b.css?ver=4.2.2

185.81.4.134

200 OK

489 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/custom-381280428b.css?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
assembler source, ASCII text, with very long lines (1571)
Size
489 kB (488990 bytes)
Hash
cb770aa170bec2621aa2431b24e3ef7c
c5ca98766c2d4b1ce69e457531c6d936304d0982
68af842a804aabff3c0ef29051a804e92d7b147ac62af17d8aab00dbbdb5a08a

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/wp-less/dt-the7/css/custom-381280428b.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 17:41:24 GMT
etag: "38e075b-7761e-5849e3f447e0e"
accept-ranges: bytes
content-length: 488990
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tsinnovation.it/wp-content/uploads/2018/02/sito3.png

86.107.32.70

200 OK

5.5 kB

URL HTTP/2
www.tsinnovation.it/wp-content/uploads/2018/02/sito3.png
IP
86.107.32.70:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 225 x 138, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 kB (5517 bytes)
Hash
82ad849f00c87f24f3120a65956a320c
e9edea77f1b5b1e06ea2fe0462aa57a72a66747e
ce4dc27945fd1323f144fb6c1da43963eae6df272dc998806890540ab0b0ec21

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed

HTTP Headers

GET /wp-content/uploads/2018/02/sito3.png HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:41 GMT
etag: "1d80770-158d-5ae2adbbaca4d"
accept-ranges: bytes
content-length: 5517
content-type: image/png
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/2017/04/H80.png

185.81.4.134

200 OK

22 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/2017/04/H80.png
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 266 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (21740 bytes)
Hash
2894f3f86d03ef46748da2227f56ca41
d343db725f884a97fd75990d05fb880cb3bc823b
e4b3db2c787c79b53cad5a6af5c5b58e41ed4ab74ebbbd91c404abafeb5f63c9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/04/H80.png HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 28 Apr 2017 16:36:16 GMT
etag: "390058a-54ec-54e3cac1ae000"
accept-ranges: bytes
content-length: 21740
content-type: image/png
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive

www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1

185.81.4.134

200 OK

14 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text
Size
14 kB (14440 bytes)
Hash
1534f06aa2b1b721a45372f8238e2461
86f7e7b926e1a88209d171b56dadbccc2c96f578
b7e17926b30342edecee8b3a93029ac51462e2b479277d8e077ba57173eb1900

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 16:58:16 GMT
etag: "38813c3-3868-5849da4fba55f"
accept-ranges: bytes
content-length: 14440
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-includes/js/wp-embed.min.js?ver=5.1.14

185.81.4.134

200 OK

1.4 kB

URL HTTP/2
www.tizianapepe.it/wp-includes/js/wp-embed.min.js?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (1391), with no line terminators
Size
1.4 kB (1391 bytes)
Hash
570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 11:45:26 GMT
etag: "3962336-56f-5c0016643f53a"
accept-ranges: bytes
content-length: 1391
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.6

185.81.4.134

200 OK

20 kB

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.6
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
20 kB (20177 bytes)
Hash
c21d2285b51859557f29305a8f5b11ec
81831c346479ba3956a84ed518eb8436605f3b44
4fcf6096058a4d19c19976dabb430b098e44e927ed5f414c09fa63d241cad1db

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.6 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:39:53 GMT
etag: "3880689-4ed1-54d10a692b040"
accept-ranges: bytes
content-length: 20177
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive

www.tizianapepe.it/wp-content/themes/dt-the7/js/post-type.js?ver=4.2.2

185.81.4.134

200 OK

80 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/js/post-type.js?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (330)
Size
80 kB (80244 bytes)
Hash
92949c810b46105a452e0f5d3b89d272
8171d73a7d92de315c13ea9ebc0ae0171167a41b
b678eed4d410b58ccba664ee54b7d1bb992b37680a3de62f90a52a73b6523274

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/js/post-type.js?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "3921366-13974-54d110721ed40"
accept-ranges: bytes
content-length: 80244
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/themes/dt-the7/js/main.min.js?ver=4.2.2

185.81.4.134

200 OK

374 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/js/main.min.js?ver=4.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (32010)
Size
374 kB (373777 bytes)
Hash
b9f4f2e0853a2d56785f49fe6000f46e
63e0fe9a5608b4974cf8b4b0bb2a76b361b42039
3bd22d2d04ca95fb9f70994478214bded342f32f7a4b22316d5307ac5232bad6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/js/main.min.js?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "3921395-5b411-54d110721ed40"
accept-ranges: bytes
content-length: 373777
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7758caee-c969-46dd-96d0-b4402437781d.jpeg

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7758caee-c969-46dd-96d0-b4402437781d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8445 bytes)
Hash
4572451a09430ca7a9203f14ddc035ba
46e17c44fba23988d7a9d9832c411ba2810136c3
fa54e73c4b32d8e109504ebcd46e4316de8143f44b7eae20a44ba63d14a6f24b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7758caee-c969-46dd-96d0-b4402437781d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8445
x-amzn-requestid: 7d295b3b-29d6-4b2e-8314-c9055d1def80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmju5FxwoAMFeQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4cc5-3f58c18b1159ad512c60422b;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:46:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: DC1ECXhkAhfdrU8ZyMhhDdwydsq4PQfzzGOPd-REjCkCsDbXQLnLiA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:01:57 GMT
etag: "46e17c44fba23988d7a9d9832c411ba2810136c3"
content-type: image/jpeg
age: 68443
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.5 kB (2478 bytes)
Hash
17df62c3e2ed48ba9c788f5e1b3b702f
854c326016059d67fae42cc34905d0feb58cb6fc
d0bee7a7e629f6594a79bad563bb91c71a17768c2f347fd4a366f7f0daf94fda

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2478
x-amzn-requestid: ed2a2dca-5367-42c1-b982-07a39762063e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmigWFvGIAMF9CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4ace-6fabb7845e4d04613897a866;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: GFxAiO1AQfV1-pVy0NBmc9VoQoxBuBeOWsbPkVpOuT06D8Tw_YuZfA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:09 GMT
etag: "854c326016059d67fae42cc34905d0feb58cb6fc"
content-type: image/jpeg
age: 68071
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10987 bytes)
Hash
53b7ffdc3799e0ac7a225145242579ef
c47f0525fe5354ee13fe63c0ec31f0f826a58005
4bb518afc9b3e7bfb976d343e46b306155834adbe71fa35b0d6f509959f78aca

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10987
x-amzn-requestid: c2ab1012-1afd-4d74-8114-97977b43da24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZgCHwGdGoAMFvyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cb097-3237927a0c1e081d22c902f7;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 22:15:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iClOZEPMiFmpeprT8McJ2HI0dCmyxkhEdfYr0qP0YK3U_Pcd9N0Fhg==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 11:08:01 GMT
age: 21279
etag: "c47f0525fe5354ee13fe63c0ec31f0f826a58005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A400%2C500%2C700%7COpen+Sans%3A400%2C600%7CAbril+Fatface%7CRaleway%3A400%2C700&ver=5.1.14

142.250.74.10

200 OK

14 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A400%2C500%2C700%7COpen+Sans%3A400%2C600%7CAbril+Fatface%7CRaleway%3A400%2C700&ver=5.1.14
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
14 kB (14460 bytes)
Hash
5be0b6072a7ac6e93d5a9f719ed8cf51
c711310d3a75e01ad9052e12cfe6a4696c138b56
ecf9aea69a2862e4f16b3ccbe049bbe03fe41df43e3c5057df98db6d061492c0

HTTP Headers

GET /css?family=Roboto%3A400%2C500%2C700%7COpen+Sans%3A400%2C600%7CAbril+Fatface%7CRaleway%3A400%2C700&ver=5.1.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 07 Oct 2022 17:02:40 GMT
date: Fri, 07 Oct 2022 17:02:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7261 bytes)
Hash
ed3fa86bbe319c9a2f81ff625e677cb0
e3d5210207f6ff922bc28e328285059c19a523a4
5919694bd942a4f25d5b7ffc3f8aee1af6cdb8461d4ba3dba9a2e72cf19164c8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7261
x-amzn-requestid: e1bdf299-b29e-4f58-9c8a-33f5dacdb081
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmirBELYoAMFfgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b13-1969b32c6f4f7e5749e7caa0;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: V3fTgH8URZ1iWMxWPy49--20mtdJvMK6XTG_aPKk68pvwCxPl8lULw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
age: 69502
etag: "e3d5210207f6ff922bc28e328285059c19a523a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9046 bytes)
Hash
7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: a9tOPCySPRdXpvJf239ycM7_3PJS7GcITvM52Sxic_FwYr_-n2XQHA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
age: 69502
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tizianapepe.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 05:42:51 GMT
expires: Fri, 06 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 127189
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tizianapepe.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 163713
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2

216.58.207.195

200 OK

46 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size
46 kB (46524 bytes)
Hash
c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826

HTTP Headers

GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tizianapepe.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:13:12 GMT
expires: Tue, 03 Oct 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 330569
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js

185.81.4.134

200 OK

2.8 kB

URL HTTP/2
www.tizianapepe.it/wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (2609)
Size
2.8 kB (2777 bytes)
Hash
639d1c35a685d111aa4a509a2dbf660c
d0991ef04e2dd8fd1b0cb0c8bb0f1026649d9b25
1fdbb2180496fca532f43deaffec879f8ca6990258b38a469aed4120d6c0d2fe

Detections

Analyzer	Verdict	Alert
fortinet	Malware
quad9	Sinkholed

HTTP Headers

GET /wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "392137b-ad9-54d110721ed40"
accept-ranges: bytes
content-length: 2777
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/2017/04/H120.png

185.81.4.134

200 OK

26 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/2017/04/H120.png
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 371 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (25756 bytes)
Hash
4665ea13066e76f43d6ca08d4831a1b4
76b6ecb59196f4767edae916bfde9467ab212a89
e0d3df7af1032e8be16c2d33efe32cffb9364915d6e34a49c5550f2ef196e669

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/04/H120.png HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 28 Apr 2017 16:36:53 GMT
etag: "39005a0-649c-54e3cae4f7340"
accept-ranges: bytes
content-length: 25756
content-type: image/png
date: Fri, 07 Oct 2022 17:02:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/uploads/2017/04/16x16.png

185.81.4.134

200 OK

16 kB

URL HTTP/2
www.tizianapepe.it/wp-content/uploads/2017/04/16x16.png
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (15513 bytes)
Hash
34ed9a74a52ee8edac1c52990fbbf6e7
e56e6b4fea093054cf8f377e6008e1a299658dea
a5b6819f5dd958aeae16b1cfd86a6169582153ac239cec48d7eded5f294134b8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/uploads/2017/04/16x16.png HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 28 Apr 2017 16:36:49 GMT
etag: "3900584-3c99-54e3cae126a40"
accept-ranges: bytes
content-length: 15513
content-type: image/png
date: Fri, 07 Oct 2022 17:02:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/flowplayer.min.js?ver=5.1.14

185.81.4.134

200 OK

0 B

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/flowplayer.min.js?ver=5.1.14
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/easy-video-player/lib/flowplayer.min.js?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 06 May 2020 08:38:34 GMT
etag: "3922086-291d4-5a4f6b087332d"
accept-ranges: bytes
content-length: 168404
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.195

200 OK

0 B

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tizianapepe.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:07:32 GMT
expires: Thu, 05 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 183309
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.2.2

185.81.4.134

200 OK

0 B

URL HTTP/2
www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.2.2
IP
185.81.4.134:0
ASN
#52030 Server Plan S.r.l.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:41:57 GMT
etag: "3880f43-1b1e8-54d10adf6c740"
accept-ranges: bytes
content-length: 111080
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations