firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _h0c1QnqYRxQ4D8vddITMgwoZi3uSdTPphS0E4UHjcHnfRoWHSh8lg==
Age: 177320
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 72057a68fb50c489049eaf05eb18d75c
4e21c249aea996080533bb23136d0deaeb411924
736bf414a3c5cb94de5c25a2bcaf61ff3f39d5cdc085a787ca2237ff1ff6866e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "736BF414A3C5CB94DE5C25A2BCAF61FF3F39D5CDC085A787CA2237FF1FF6866E"
Last-Modified: Fri, 07 Oct 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21233
Expires: Fri, 07 Oct 2022 22:56:31 GMT
Date: Fri, 07 Oct 2022 17:02:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3165
Expires: Fri, 07 Oct 2022 17:55:23 GMT
Date: Fri, 07 Oct 2022 17:02:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16970
Expires: Fri, 07 Oct 2022 21:45:28 GMT
Date: Fri, 07 Oct 2022 17:02:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: q0XigzqhcN8zTkTIrgafSkvd5fhTK8HXreJT2oD4W1pcAmZ37aXc+5CAHWGL94TAUndSMutFLfs=
x-amz-request-id: 0Q7K9JWAQ0DG86PE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 07 Oct 2022 16:31:16 GMT
age: 1882
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 07 Oct 2022 17:02:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Fri, 07 Oct 2022 16:42:40 GMT
Cache-Control: max-age=3600
Expires: Fri, 07 Oct 2022 17:20:42 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tmEBQU5l6f0_qvHnDfcuSgGbdZ2iNAb3WZHxpi09r1eGlM0ZVJbyPg==
Age: 1977
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d6c404502c7987174a84d8f0a3efab23
fc3a3f6d63acab3f659fb3536b65fd8564ec8628
94b5693df873bd923ffbf31f576fff01d2628e5796af4c6b91306a743e27d19b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3188
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:39 GMT
Last-Modified: Fri, 07 Oct 2022 16:09:31 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.228.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Oq2X3KAQHRtxipQyUaCXqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C8ahpDeg9VH3nKt7+GpGNmKR+qA=
tizianapepe.it/pa/ceextpraoettnucieds
185.81.4.134301 Moved Permanently 0 B URL HTTP/2 tizianapepe.it/pa/ceextpraoettnucieds
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /pa/ceextpraoettnucieds HTTP/1.1
Host: tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.tizianapepe.it/pa/ceextpraoettnucieds
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 07 Oct 2022 17:02:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.2.2
185.81.4.134200 OK 20 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Hash 2f196246a1b62c00b2398b15d3d1e6c8
e0563f9fd135a3cb84aa883dfba4cfb8d673f73e
e306106604040ca9d7c5d2fd3579273fc2fb001a528b3c670193d8e82fac4a50
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:41:57 GMT
etag: "3880f2b-5002-54d10adf6c740"
accept-ranges: bytes
content-length: 20482
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/pa/ceextpraoettnucieds
185.81.4.134404 Not Found 76 kB URL HTTP/2 www.tizianapepe.it/pa/ceextpraoettnucieds
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14297), with CRLF, LF line terminators
Hash 231319272d9c48369952beeeb6608638
c1a224ab9c892b907e143cf34c6bd7c207d77b41
50d54b41160fc1a6d0c9f1acc6dad989c13c88a0306625806b9156fdf8ce0f98
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /pa/ceextpraoettnucieds HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.tizianapepe.it/wp-json/>; rel="https://api.w.org/"
content-type: text/html; charset=UTF-8
date: Fri, 07 Oct 2022 17:02:39 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1
185.81.4.134200 OK 1.7 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Hash 5ad1cfa3f5175f627385651790ed0bbd
7a06ac744a748ce4c315c798614d6d0068596cc4
3ad2fcb328295f1199d593adaba909f3eea790f695554ac3c1da7aa009fc0e0d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 16:58:16 GMT
etag: "38813c9-695-5849da4fba947"
accept-ranges: bytes
content-length: 1685
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/skin/skin.css?ver=5.1.14
185.81.4.134200 OK 41 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/skin/skin.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (1263)
Hash c4824d35885b553e3bc6a65c495422bd
f59b3f57196e3273e05dd2ce374aaa67b61156db
ab953ed816cb0e1b415f5a20169b933177c219228a5ce54297f91ea8e2ac3cb8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/easy-video-player/lib/skin/skin.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 06 May 2020 08:38:34 GMT
etag: "392207b-9ec8-5a4f6b086ba13"
accept-ranges: bytes
content-length: 40648
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0
185.81.4.134200 OK 529 B URL HTTP/2 www.tizianapepe.it/wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Hash b655ad4016c052d438708a50654f7957
046aa8f2e76f9f0c7412b5f6e7a52b8ceed20421
3109fef8b2a9ab71fca698483d2bae36d8fed772517c259dacce872e739bb690
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/recent-tweets-widget/tp_twitter_plugin.css?ver=1.0 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Mar 2018 08:40:14 GMT
etag: "3881386-211-5676f70bcb780"
accept-ranges: bytes
content-length: 529
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.6
185.81.4.134200 OK 72 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.6
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Hash 9e5230a7c480bdd9c977bdbb9286ef1f
991ee39abb564c26425050e5cdb55907f0e091f6
4aeeafb29e413b2206586e7cb16cb9974f3fc4497d11bc3e21c3d4ece94a9ee5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/go_pricing/assets/css/go_pricing_styles.css?ver=3.3.6 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:39:53 GMT
etag: "388068f-117b2-54d10a692b040"
accept-ranges: bytes
content-length: 71602
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/js_composer/custom.css?ver=5.1
185.81.4.134200 OK 77 B URL HTTP/2 www.tizianapepe.it/wp-content/uploads/js_composer/custom.css?ver=5.1
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Hash 7abc01fdc7cccb646933b62ebe391d08
356c07fc01e5aa216dd4523fb194a6d9039e9a60
3e8ae00bee73b9a0519ed0e8df79b2ab44b7d4229ff183aa54d030da165b83c4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/js_composer/custom.css?ver=5.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:54:54 GMT
etag: "38e09cc-4d-54d20c93c0780"
accept-ranges: bytes
content-length: 77
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tizianapepe.it/wp-content/themes/dt-the7/fonts/icomoon-arrows-the7/style.css?ver=4.2.2
185.81.4.134200 OK 3.1 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/fonts/icomoon-arrows-the7/style.css?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Hash a936ae1b498ce44b45d55caabac914f1
04fdf1633082d01b4851927ac5257fd1ed9fd54c
5b5c906444001a24411abd65a65100e27886b763f9047ea98771edebf326a25f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/dt-the7/fonts/icomoon-arrows-the7/style.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "39212a2-c17-54d110721ed40"
accept-ranges: bytes
content-length: 3095
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14
185.81.4.134200 OK 12 kB URL HTTP/2 www.tizianapepe.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (9071)
Hash 33479c6b333bb34fd771bf50df1fefc3
4869e92709eee1d1a42a697a80879e303aea7572
d9160bf5ee2c9435a62c8b1d991b7f419417cab5d5a37eefcee79767a292b4b7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 11:45:26 GMT
etag: "39621fa-2eaf-5c0016644e384"
accept-ranges: bytes
content-length: 11951
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/themes/dt-the7/fonts/fontello/css/fontello.min.css?ver=4.2.2
185.81.4.134200 OK 24 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/fonts/fontello/css/fontello.min.css?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (23615)
Hash 08ba5e3ba644aec59cb8bc0905db06d6
f57fdc494a023ff2ebe27eebfbdab535fd25854b
98b0ee3770d63b3cbec1ecc389c33e6bcb81b9746354ed4c19841b7e05203595
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/dt-the7/fonts/fontello/css/fontello.min.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "3921282-5c40-54d110721ed40"
accept-ranges: bytes
content-length: 23616
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1
185.81.4.134200 OK 30 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (29418), with CRLF line terminators
Hash 9f4f00ef6543d1605d902f51fe083c2d
ee85e1283c695be178cf766524aa61ea36372a57
2e81985d6b2a407b4760c2c85a2cdfebeb13dfa8c07781162c429f7e8381aa45
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:43:42 GMT
etag: "3881a0d-745d-54d10b438f380"
accept-ranges: bytes
content-length: 29789
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/themes/dt-the7/fonts/FontAwesome/css/font-awesome.min.css?ver=4.2.2
185.81.4.134200 OK 31 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/fonts/FontAwesome/css/font-awesome.min.css?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/dt-the7/fonts/FontAwesome/css/font-awesome.min.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "392129f-7918-54d110721ed40"
accept-ranges: bytes
content-length: 31000
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/themes/dt-the7/css/post-type.css?ver=4.2.2
185.81.4.134200 OK 86 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/css/post-type.css?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (889)
Hash 1e535f5cecaa7406969b381ac562e857
ee8994b5776c1a306f6159c781f2a5270eb380ee
4d6b38213da10532b0970103de0d718dc5443cbc59a120a657d64739d950a9c0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/dt-the7/css/post-type.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:52 GMT
etag: "39212f3-14e57-54d110712ab00"
accept-ranges: bytes
content-length: 85591
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/gsap/1.11.2/TweenMax.min.js
104.17.25.14200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/gsap/1.11.2/TweenMax.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (32033)
Hash 6fc7d7d232455a567501c29632d365f1
59e4133b0a5cc9723b222236af71342049892c98
724f3ee0e11df451de6a029f35af486a6941a42c176cfea462221e3f848b01fb
GET /ajax/libs/gsap/1.11.2/TweenMax.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 07 Oct 2022 17:02:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 27294
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e71-16e67"
last-modified: Mon, 04 May 2020 16:10:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7502620
expires: Wed, 27 Sep 2023 17:02:40 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fjef%2BsoY1Pl0XWHG3KKOsERfBKYVkexjwcm6ZMv9G9228OT%2F5CI2TUS%2Fe6m%2FpnkzZp%2FCowRtmEprflXNuNMcRmw9Hv46PvDZgVarsRCGW0aD7MMGjCwdhmWRPyROb6HbGWc4QBDo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 756834ae9f78b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/media-381280428b.css?ver=4.2.2
185.81.4.134200 OK 48 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/media-381280428b.css?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Hash bac6777f1fc24a200550f5758b17b3bf
b78f7eec1ecac6874c88ea7dbfaa48032b0ab1aa
20bf202e700ca530a5c9fb9718a1d466aaf2bf437c5a528532e07e7af498c58e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/wp-less/dt-the7/css/media-381280428b.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 17:41:24 GMT
etag: "38e077e-bbbd-5849e3f4583cb"
accept-ranges: bytes
content-length: 48061
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-numbers-32x32/icomoon-numbers-32x32.css?ver=5.1.14
185.81.4.134200 OK 1.9 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-numbers-32x32/icomoon-numbers-32x32.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (1851), with no line terminators
Hash 13cabc23c350bb5793b525133b60caad
fc6bfc30d25139414d1c9ee3a55afa570b9503b3
4aed64094fc4d7dc24ea530e2a432434b4bc7754a51218cc6b3c0a6c428b3c65
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-numbers-32x32/icomoon-numbers-32x32.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:08 GMT
etag: "38e09ba-73b-54d20d138b500"
accept-ranges: bytes
content-length: 1851
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=5.1.14
185.81.4.134200 OK 3.1 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (3073)
Hash 7548ec2f0a3a7d9958d25ebe4ea4bf0b
3dc03e2523445e80e6ecdaf7264e1bff9da61188
e706edf0b70392e8c768219e68cd5033c77db7274bda5ee29cacec1e231db3a9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/convertplug/admin/assets/css/perfect-scrollbar.min.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:30:39 GMT
etag: "38a125f-c20-54d10858d51c0"
accept-ranges: bytes
content-length: 3104
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-60-vicons-18x18/icomoon-60-vicons-18x18.css?ver=5.1.14
185.81.4.134200 OK 4.2 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-60-vicons-18x18/icomoon-60-vicons-18x18.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (4185), with no line terminators
Hash a01ce72622192e8e8f9e1ff2dc4d1b18
8a755d3f33b85569c71b938b7d14570adddea2b8
6396d1e139db5a4e080ac14dde568c87780391249a3ec30fc3b5799510020b1b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-60-vicons-18x18/icomoon-60-vicons-18x18.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:58:00 GMT
etag: "38e099c-1059-54d20d4522a00"
accept-ranges: bytes
content-length: 4185
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-eighty-shades-16x16/icomoon-eighty-shades-16x16.css?ver=5.1.14
185.81.4.134200 OK 5.8 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-eighty-shades-16x16/icomoon-eighty-shades-16x16.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (5789), with no line terminators
Hash 89b59c5a89d3fb6d41edd81bf2e27664
7905d50f797f62282e63439f7491b6be60a4d279
8cdee59c984d88f8346abddf672ee8a6d0804a039331312b97dc71fab136a0cc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-eighty-shades-16x16/icomoon-eighty-shades-16x16.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:44 GMT
etag: "38e097e-169d-54d20d35e0600"
accept-ranges: bytes
content-length: 5789
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-pixeden-stroke-32x32/icomoon-pixeden-stroke-32x32.css?ver=5.1.14
185.81.4.134200 OK 14 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-pixeden-stroke-32x32/icomoon-pixeden-stroke-32x32.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (13579), with no line terminators
Hash fb738fe090a186e1cacd7701aa079a66
8567c9d2946539e8e536cea3004cd9ddf736989a
2052851987aae6f60cdb40d9efafdc76f2f64e5a37a870f5b37dfc755063ecfc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-pixeden-stroke-32x32/icomoon-pixeden-stroke-32x32.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:56:48 GMT
etag: "38e0999-350b-54d20d0078800"
accept-ranges: bytes
content-length: 13579
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-feather-24x24/icomoon-feather-24x24.css?ver=5.1.14
185.81.4.134200 OK 8.1 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-feather-24x24/icomoon-feather-24x24.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (8115), with no line terminators
Hash b50c7956106c3c837a3dda404252b545
b3f95a5cd4991dbf2860acf499434ca5a20e994e
86280677bab07eabdb36c37f51da3b1d69eadfa56d2fc1ea89bd813aed59ac14
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-feather-24x24/icomoon-feather-24x24.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:32 GMT
etag: "38e098d-1fb3-54d20d2a6eb00"
accept-ranges: bytes
content-length: 8115
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-elegent-line-icons-32x32/icomoon-elegent-line-icons-32x32.css?ver=5.1.14
185.81.4.134200 OK 7.6 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-elegent-line-icons-32x32/icomoon-elegent-line-icons-32x32.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (7623), with no line terminators
Hash 9dee603272c24b54f9144d189edc5577
83e8e2c90bd5f140814bf482bc28aa14eddce329
a76d7d9382b4dea600a21f25cecc3cb0d75d8fcc8dc0fa99287a8df036e94e84
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-elegent-line-icons-32x32/icomoon-elegent-line-icons-32x32.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:36 GMT
etag: "38e0967-1dc7-54d20d2e3f400"
accept-ranges: bytes
content-length: 7623
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
185.81.4.134200 OK 10 kB URL HTTP/2 www.tizianapepe.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 20 May 2016 06:11:28 GMT
etag: "3962283-2748-5333ff613c400"
accept-ranges: bytes
content-length: 10056
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-brankic-32x32/icomoon-brankic-32x32.css?ver=5.1.14
185.81.4.134200 OK 20 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-brankic-32x32/icomoon-brankic-32x32.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (20488), with no line terminators
Hash 78631c1cd8135a3e3e295d1adc792695
c1fcdcfeed2c7bac86be1d5380e109d0d9b6a47b
890f20eec2de095b55ea60f7945cecc0282b344ebe017e7284b09bca1ad964fc
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-brankic-32x32/icomoon-brankic-32x32.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:48 GMT
etag: "38e0975-5008-54d20d39b0f00"
accept-ranges: bytes
content-length: 20488
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.1.14
185.81.4.134200 OK 8.5 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (8523), with no line terminators
Hash 06eb646ab6fc029690fdfd37b6f924bb
aadce95fb340f807915f5d1d2ba0e7f8d6933e41
7b70d23fbb5fda2c3126584ade84dbc3c22965e066793e3ee4542f5b5911aa32
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-free-social-contact-16x16/icomoon-free-social-contact-16x16.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:26 GMT
etag: "38e0971-214b-54d20d24b5d80"
accept-ranges: bytes
content-length: 8523
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/post-type-dynamic-381280428b.css?ver=4.2.2
185.81.4.134200 OK 35 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/post-type-dynamic-381280428b.css?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Hash e6cfd56957948b5dd2e60265cc167ecb
7eff76b19a7889908900b4df1355904a77b51e94
0b206cdeacbef13c7aac32723ea9eb5a836bb77cf4491705b62f84a704684e10
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/wp-less/dt-the7/css/post-type-dynamic-381280428b.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 17:41:24 GMT
etag: "38e0761-8746-5849e3f46089e"
accept-ranges: bytes
content-length: 34630
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-icomoonfree-16x16/icomoon-icomoonfree-16x16.css?ver=5.1.14
185.81.4.134200 OK 28 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-icomoonfree-16x16/icomoon-icomoonfree-16x16.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (27934), with no line terminators
Hash af82f3976aad109fb4fae41a60393c0c
23952cc922bc1eb65228d9aee70ae0a2df35c317
407d09110e6fc4e1b107e9bb3a91aa276c3041d91573634456921a9b1fe172a4
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-icomoonfree-16x16/icomoon-icomoonfree-16x16.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:20 GMT
etag: "38e0983-6d1e-54d20d1efd000"
accept-ranges: bytes
content-length: 27934
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.1.14
185.81.4.134200 OK 28 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (27639), with no line terminators
Hash 36ea4805809e6b690c2f5126a0808297
4531470deab3efd0b8499f29a323a1b45f0efced
4354449ab7a164ef5486d12020f3bc403b8ff104a8da73e9f9332106b86b061c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:47:29 GMT
etag: "38e09b0-6bf7-54d10c1c0b240"
accept-ranges: bytes
content-length: 27639
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.2.2
185.81.4.134200 OK 24 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (23514)
Hash ab5c641341135bae9cde257a14da0656
386804e789461da7b84d5e6e180ae87e67276dc8
7f612443943aaf092378e9fa4082d03bb33e0a4430b19f51fe16077e66729db3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:41:57 GMT
etag: "3880f44-5d17-54d10adf6c740"
accept-ranges: bytes
content-length: 23831
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tizianapepe.it/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2
185.81.4.134200 OK 12 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type HTML document, ASCII text, with very long lines (11475), with no line terminators
Hash 26bcc63f374c43287868adb618b8fd7c
3f9dc5b95d446b8912f1046bc79a911064d72882
ccd1e0d2d06c1358483fefd52cd9729ce3a30e4b669847a61175c847db0835f8
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/dt-the7/js/above-the-fold.min.js?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "3921364-2cd3-54d110721ed40"
accept-ranges: bytes
content-length: 11475
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9552199aa9803ebb65cd986ed29f1aa9
ff7deeaaa6d2add9691459c2a3bf5de3bc094733
8d06b84fd50490ece750eb707bc1f0bea0aecbca222ba2ad7c0a38a72ab4a24e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D06B84FD50490ECE750EB707BC1F0BEA0AECBCA222BA2AD7C0A38A72AB4A24E"
Last-Modified: Thu, 06 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21249
Expires: Fri, 07 Oct 2022 22:56:49 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive
www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.1.14
185.81.4.134200 OK 54 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (53601), with no line terminators
Hash 3b45e6c6c840593ae942c5350f12aaca
13e4d7cf0810c3f0a6055160d8a8d6bcf7dabb28
22ea2da34507e30595e6e794ac065b6a73ba168bf8f989966d36e23e0b89b098
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/smile_fonts/icomoon-material-24x24/icomoon-material-24x24.css?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Apr 2017 13:57:12 GMT
etag: "38e09a5-d161-54d20d175be00"
accept-ranges: bytes
content-length: 53601
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1
185.81.4.134200 OK 63 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (32003), with CRLF line terminators
Hash b4b495a7dc7db64771070c7f67813615
f36b9f296e3fa9eb6d6e18841540129ea95861fd
1dfd5afa2f6a618d8b7450ddc586413e1b75499322d6534e01accd990ae66925
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:43:42 GMT
etag: "3881a3e-f75b-54d10b438f380"
accept-ranges: bytes
content-length: 63323
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/themes/dt-the7/css/main.min.css?ver=4.2.2
185.81.4.134200 OK 386 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/css/main.min.css?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (64344)
Size 386 kB (386205 bytes)
Hash 3fda1fa05d7781a6842b645d8edb8d86
750d34eed5fe04cc8aee32d252cdf37695456cfe
15c73b0d7e6583db8bed5b2ee0f80d08b57fa6a7d346e6fcaea6601aeb630272
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/dt-the7/css/main.min.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:52 GMT
etag: "39212f4-5e49d-54d110712ab00"
accept-ranges: bytes
content-length: 386205
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-includes/js/jquery/jquery.js?ver=1.12.4
185.81.4.134200 OK 97 kB URL HTTP/2 www.tizianapepe.it/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (31997)
Hash 49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 05 Sep 2019 12:11:10 GMT
etag: "396227f-17a69-591cd379e4294"
accept-ranges: bytes
content-length: 96873
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
185.81.4.134200 OK 118 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (32006)
Size 118 kB (117557 bytes)
Hash 150324e55a09a90e1eface0a7faed270
0fe9f52c3c351c06f5cdb80f86d1aa70a52c4140
dfc519eb2d0e5ac0e8cdbe86fef355135280c643df14fa9a8e6abd5820d01159
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:41:57 GMT
etag: "3880f42-1cb35-54d10adf6c740"
accept-ranges: bytes
content-length: 117557
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1
185.81.4.134200 OK 108 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (27184), with CRLF line terminators
Size 108 kB (107534 bytes)
Hash ee418e8ccccf81d244d1e84e5f16a6cc
c3006d009fc528a5cd144e923ce9065c57eb6264
09b680f7684309e36e21b59242470b16a0ae396ba6d2ea465d28220db3de6c90
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:43:42 GMT
etag: "3881a3f-1a40e-54d10b438f380"
accept-ranges: bytes
content-length: 107534
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/custom-381280428b.css?ver=4.2.2
185.81.4.134200 OK 489 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/wp-less/dt-the7/css/custom-381280428b.css?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type assembler source, ASCII text, with very long lines (1571)
Size 489 kB (488990 bytes)
Hash cb770aa170bec2621aa2431b24e3ef7c
c5ca98766c2d4b1ce69e457531c6d936304d0982
68af842a804aabff3c0ef29051a804e92d7b147ac62af17d8aab00dbbdb5a08a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/wp-less/dt-the7/css/custom-381280428b.css?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 17:41:24 GMT
etag: "38e075b-7761e-5849e3f447e0e"
accept-ranges: bytes
content-length: 488990
content-type: text/css
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tsinnovation.it/wp-content/uploads/2018/02/sito3.png
86.107.32.70200 OK 5.5 kB URL HTTP/2 www.tsinnovation.it/wp-content/uploads/2018/02/sito3.png
IP 86.107.32.70:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 225 x 138, 8-bit/color RGBA, non-interlaced\012- data
Hash 82ad849f00c87f24f3120a65956a320c
e9edea77f1b5b1e06ea2fe0462aa57a72a66747e
ce4dc27945fd1323f144fb6c1da43963eae6df272dc998806890540ab0b0ec21
Analyzer Verdict Alert mnemonic_dns Sinkholed
GET /wp-content/uploads/2018/02/sito3.png HTTP/1.1
Host: www.tsinnovation.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 31 Aug 2020 11:39:41 GMT
etag: "1d80770-158d-5ae2adbbaca4d"
accept-ranges: bytes
content-length: 5517
content-type: image/png
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/2017/04/H80.png
185.81.4.134200 OK 22 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/2017/04/H80.png
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 266 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 2894f3f86d03ef46748da2227f56ca41
d343db725f884a97fd75990d05fb880cb3bc823b
e4b3db2c787c79b53cad5a6af5c5b58e41ed4ab74ebbbd91c404abafeb5f63c9
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/04/H80.png HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Apr 2017 16:36:16 GMT
etag: "390058a-54ec-54e3cac1ae000"
accept-ranges: bytes
content-length: 21740
content-type: image/png
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive
www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
185.81.4.134200 OK 14 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Hash 1534f06aa2b1b721a45372f8238e2461
86f7e7b926e1a88209d171b56dadbccc2c96f578
b7e17926b30342edecee8b3a93029ac51462e2b479277d8e077ba57173eb1900
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.1 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 21 Mar 2019 16:58:16 GMT
etag: "38813c3-3868-5849da4fba55f"
accept-ranges: bytes
content-length: 14440
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-includes/js/wp-embed.min.js?ver=5.1.14
185.81.4.134200 OK 1.4 kB URL HTTP/2 www.tizianapepe.it/wp-includes/js/wp-embed.min.js?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (1391), with no line terminators
Hash 570ae0f3c201604926ea599d3d1f6c04
2c29243a73660964d4712b969d2a15e27777bc14
5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/wp-embed.min.js?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Apr 2021 11:45:26 GMT
etag: "3962336-56f-5c0016643f53a"
accept-ranges: bytes
content-length: 1391
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.6
185.81.4.134200 OK 20 kB URL HTTP/2 www.tizianapepe.it/wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.6
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash c21d2285b51859557f29305a8f5b11ec
81831c346479ba3956a84ed518eb8436605f3b44
4fcf6096058a4d19c19976dabb430b098e44e927ed5f414c09fa63d241cad1db
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/go_pricing/assets/js/go_pricing_scripts.js?ver=3.3.6 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:39:53 GMT
etag: "3880689-4ed1-54d10a692b040"
accept-ranges: bytes
content-length: 20177
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive
www.tizianapepe.it/wp-content/themes/dt-the7/js/post-type.js?ver=4.2.2
185.81.4.134200 OK 80 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/js/post-type.js?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (330)
Hash 92949c810b46105a452e0f5d3b89d272
8171d73a7d92de315c13ea9ebc0ae0171167a41b
b678eed4d410b58ccba664ee54b7d1bb992b37680a3de62f90a52a73b6523274
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/dt-the7/js/post-type.js?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "3921366-13974-54d110721ed40"
accept-ranges: bytes
content-length: 80244
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/themes/dt-the7/js/main.min.js?ver=4.2.2
185.81.4.134200 OK 374 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/js/main.min.js?ver=4.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (32010)
Size 374 kB (373777 bytes)
Hash b9f4f2e0853a2d56785f49fe6000f46e
63e0fe9a5608b4974cf8b4b0bb2a76b361b42039
3bd22d2d04ca95fb9f70994478214bded342f32f7a4b22316d5307ac5232bad6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/dt-the7/js/main.min.js?ver=4.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "3921395-5b411-54d110721ed40"
accept-ranges: bytes
content-length: 373777
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Fri, 07 Oct 2022 17:55:12 GMT
Date: Fri, 07 Oct 2022 17:02:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7758caee-c969-46dd-96d0-b4402437781d.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7758caee-c969-46dd-96d0-b4402437781d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4572451a09430ca7a9203f14ddc035ba
46e17c44fba23988d7a9d9832c411ba2810136c3
fa54e73c4b32d8e109504ebcd46e4316de8143f44b7eae20a44ba63d14a6f24b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7758caee-c969-46dd-96d0-b4402437781d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8445
x-amzn-requestid: 7d295b3b-29d6-4b2e-8314-c9055d1def80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmju5FxwoAMFeQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4cc5-3f58c18b1159ad512c60422b;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:46:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: DC1ECXhkAhfdrU8ZyMhhDdwydsq4PQfzzGOPd-REjCkCsDbXQLnLiA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:01:57 GMT
etag: "46e17c44fba23988d7a9d9832c411ba2810136c3"
content-type: image/jpeg
age: 68443
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg
34.120.237.76200 OK 2.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17df62c3e2ed48ba9c788f5e1b3b702f
854c326016059d67fae42cc34905d0feb58cb6fc
d0bee7a7e629f6594a79bad563bb91c71a17768c2f347fd4a366f7f0daf94fda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2da6f7a-675a-45e2-af30-4afd851d825d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2478
x-amzn-requestid: ed2a2dca-5367-42c1-b982-07a39762063e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmigWFvGIAMF9CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4ace-6fabb7845e4d04613897a866;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: GFxAiO1AQfV1-pVy0NBmc9VoQoxBuBeOWsbPkVpOuT06D8Tw_YuZfA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:08:09 GMT
etag: "854c326016059d67fae42cc34905d0feb58cb6fc"
content-type: image/jpeg
age: 68071
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 53b7ffdc3799e0ac7a225145242579ef
c47f0525fe5354ee13fe63c0ec31f0f826a58005
4bb518afc9b3e7bfb976d343e46b306155834adbe71fa35b0d6f509959f78aca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0b7bc4b-b79a-4bab-9bec-87695d757b08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10987
x-amzn-requestid: c2ab1012-1afd-4d74-8114-97977b43da24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZgCHwGdGoAMFvyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633cb097-3237927a0c1e081d22c902f7;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 22:15:51 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: iClOZEPMiFmpeprT8McJ2HI0dCmyxkhEdfYr0qP0YK3U_Pcd9N0Fhg==
via: 1.1 3dde68f1f52282c9e1ee336d97233b0a.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 11:08:01 GMT
age: 21279
etag: "c47f0525fe5354ee13fe63c0ec31f0f826a58005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A400%2C500%2C700%7COpen+Sans%3A400%2C600%7CAbril+Fatface%7CRaleway%3A400%2C700&ver=5.1.14
142.250.74.10200 OK 14 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A400%2C500%2C700%7COpen+Sans%3A400%2C600%7CAbril+Fatface%7CRaleway%3A400%2C700&ver=5.1.14
IP 142.250.74.10:0
Hash 5be0b6072a7ac6e93d5a9f719ed8cf51
c711310d3a75e01ad9052e12cfe6a4696c138b56
ecf9aea69a2862e4f16b3ccbe049bbe03fe41df43e3c5057df98db6d061492c0
GET /css?family=Roboto%3A400%2C500%2C700%7COpen+Sans%3A400%2C600%7CAbril+Fatface%7CRaleway%3A400%2C700&ver=5.1.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 07 Oct 2022 17:02:40 GMT
date: Fri, 07 Oct 2022 17:02:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed3fa86bbe319c9a2f81ff625e677cb0
e3d5210207f6ff922bc28e328285059c19a523a4
5919694bd942a4f25d5b7ffc3f8aee1af6cdb8461d4ba3dba9a2e72cf19164c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7261
x-amzn-requestid: e1bdf299-b29e-4f58-9c8a-33f5dacdb081
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmirBELYoAMFfgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b13-1969b32c6f4f7e5749e7caa0;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: V3fTgH8URZ1iWMxWPy49--20mtdJvMK6XTG_aPKk68pvwCxPl8lULw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
age: 69502
etag: "e3d5210207f6ff922bc28e328285059c19a523a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: a9tOPCySPRdXpvJf239ycM7_3PJS7GcITvM52Sxic_FwYr_-n2XQHA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
age: 69502
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tizianapepe.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 05:42:51 GMT
expires: Fri, 06 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 127189
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash aea480478c3be7392d09e8a92826542f
b660fb42c8122efb07b3d1de1a8907ad1f6e1a60
ee691969e4d61ba3145fe90b28c5051367c223f31c0e0ee001d8481035090760
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 07 Oct 2022 17:02:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tizianapepe.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 163713
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.195200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tizianapepe.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 21:13:12 GMT
expires: Tue, 03 Oct 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 330569
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js
185.81.4.134200 OK 2.8 kB URL HTTP/2 www.tizianapepe.it/wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (2609)
Hash 639d1c35a685d111aa4a509a2dbf660c
d0991ef04e2dd8fd1b0cb0c8bb0f1026649d9b25
1fdbb2180496fca532f43deaffec879f8ca6990258b38a469aed4120d6c0d2fe
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/dt-the7/js/atoms/plugins/jquery.mousewheel.min.js HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 19:06:53 GMT
etag: "392137b-ad9-54d110721ed40"
accept-ranges: bytes
content-length: 2777
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/2017/04/H120.png
185.81.4.134200 OK 26 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/2017/04/H120.png
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 371 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 4665ea13066e76f43d6ca08d4831a1b4
76b6ecb59196f4767edae916bfde9467ab212a89
e0d3df7af1032e8be16c2d33efe32cffb9364915d6e34a49c5550f2ef196e669
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/04/H120.png HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Apr 2017 16:36:53 GMT
etag: "39005a0-649c-54e3cae4f7340"
accept-ranges: bytes
content-length: 25756
content-type: image/png
date: Fri, 07 Oct 2022 17:02:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/uploads/2017/04/16x16.png
185.81.4.134200 OK 16 kB URL HTTP/2 www.tizianapepe.it/wp-content/uploads/2017/04/16x16.png
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 34ed9a74a52ee8edac1c52990fbbf6e7
e56e6b4fea093054cf8f377e6008e1a299658dea
a5b6819f5dd958aeae16b1cfd86a6169582153ac239cec48d7eded5f294134b8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2017/04/16x16.png HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Apr 2017 16:36:49 GMT
etag: "3900584-3c99-54e3cae126a40"
accept-ranges: bytes
content-length: 15513
content-type: image/png
date: Fri, 07 Oct 2022 17:02:41 GMT
server: Apache
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/flowplayer.min.js?ver=5.1.14
185.81.4.134200 OK 0 B URL HTTP/2 www.tizianapepe.it/wp-content/plugins/easy-video-player/lib/flowplayer.min.js?ver=5.1.14
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/easy-video-player/lib/flowplayer.min.js?ver=5.1.14 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 06 May 2020 08:38:34 GMT
etag: "3922086-291d4-5a4f6b087332d"
accept-ranges: bytes
content-length: 168404
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.tizianapepe.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 14:07:32 GMT
expires: Thu, 05 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 183309
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.2.2
185.81.4.134200 OK 0 B URL HTTP/2 www.tizianapepe.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.2.2
IP 185.81.4.134:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.2.2 HTTP/1.1
Host: www.tizianapepe.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tizianapepe.it/pa/ceextpraoettnucieds
Cookie: devicePixelRatio=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Apr 2017 18:41:57 GMT
etag: "3880f43-1b1e8-54d10adf6c740"
accept-ranges: bytes
content-length: 111080
content-type: application/javascript
date: Fri, 07 Oct 2022 17:02:40 GMT
server: Apache
X-Firefox-Spdy: h2