r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8444
Expires: Sat, 14 Jan 2023 06:39:33 GMT
Date: Sat, 14 Jan 2023 04:18:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4826412809ac0196f13ac1ef44e357e5
793c81d2f90cfaa245dc89fc7a6090cbee846b26
11be07342f3aa4e059ddc3149337895d55bc71e30ad045dc72e4cca4be4c6951
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11BE07342F3AA4E059DDC3149337895D55BC71E30AD045DC72E4CCA4BE4C6951"
Last-Modified: Wed, 11 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2759
Expires: Sat, 14 Jan 2023 05:04:48 GMT
Date: Sat, 14 Jan 2023 04:18:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 03:48:53 GMT
content-type: application/json
age: 1796
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0f4ecf4f26be1ba09e61135b1b488bf4
f16b8277e00033bc990a8bcce54b693cb3c87d62
3018c2a228f0a894d217e8e8b0b8dd060527f06879cd2f469bac6c8766acbbf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3018C2A228F0A894D217E8E8B0B8DD060527F06879CD2F469BAC6C8766ACBBF8"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9160
Expires: Sat, 14 Jan 2023 06:51:29 GMT
Date: Sat, 14 Jan 2023 04:18:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: y0O0LUMC7hphJW8Th5IdvPs5uMFQwr66t7PFwIXFPOnhWwAMWsnN9zvQoHx2prbtW14ynWlEgbU=
x-amz-request-id: P8YXK9VQ7YZMGWMJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 03:54:47 GMT
age: 1442
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 04:18:49 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gabrielecossu.it/
503 Service Unavailable 4.9 kB IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (756), with CRLF, LF line terminators
Hash bd6c69f3d790bf3e405036794a03f946
432ede6df4643128c4399935a63ad83d4ff73228
5d45ea4ea5ddf8b56b743f675b60367ad596265b8a5ec3e296cde2297557c292
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 503 Service Unavailable
Server: nginx
Date: Sat, 14 Jan 2023 04:18:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Retry-After: 3600
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%2C300italic%2C400italic%2C600italic%2C700italic%2C800italic&ver=4.4.29
200 OK 1.1 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%2C300italic%2C400italic%2C600italic%2C700italic%2C800italic&ver=4.4.29
IP
Hash 7d5978eb65ebf46f535000aeb7b83d11
d64c84281e4ca0605a4f4cc201edd15c2328a7f7
fffe03db40fdc7db46668277add134eb4886f80caa9faf08b9ca8360908e3ebd
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800%2C300italic%2C400italic%2C600italic%2C700italic%2C800italic&ver=4.4.29 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 14 Jan 2023 04:18:50 GMT
Date: Sat, 14 Jan 2023 04:18:50 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 04:17:25 GMT
age: 85
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b1e3535cab3c1ac295b1412126a9325c
d1bdf1b8663817ae34b6182db29d6b20666779e7
90c4ecd4b0782647fd78110b5bacfb73d2b05aae4de789a90318574407dfb565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 270
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 04:18:50 GMT
Last-Modified: Sat, 14 Jan 2023 04:14:20 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
www.gabrielecossu.it/wp-content/plugins/maintenance/load/js/jquery.backstretch.min.js?ver=4.4.29
200 OK 5.1 kB URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/js/jquery.backstretch.min.js?ver=4.4.29
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (527)
Hash 6f2c57934bb9906e4ce8ebd1acc233e6
59661fbbb303a454fbdc111baee06221d8276048
f39824532031fd7254b263930d54ee96e0b348c3d01451a80f90432ec02cbdd8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/js/jquery.backstretch.min.js?ver=4.4.29 HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:50 GMT
Content-Type: application/javascript
Content-Length: 5060
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/icons.style.css?ver=4.4.29
200 OK 3.5 kB URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/icons.style.css?ver=4.4.29
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2351)
Hash 7ee84e1da7e1482cdc070f81729e11ca
e68db7f01467911c2cdd6e3e41fcc2e3a7dd8b32
88e0615ecf14ae1aee8482289c074def4f2a2579f75c3c356a82ac7bf34093b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/images/fonts-icon/icons.style.css?ver=4.4.29 HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:50 GMT
Content-Type: text/css
Content-Length: 3507
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
www.gabrielecossu.it/wp-content/plugins/maintenance/load/js/jquery.placeholder.js?ver=4.4.29
200 OK 1.7 kB URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/js/jquery.placeholder.js?ver=4.4.29
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1721), with no line terminators
Hash 239c27616e2bd8ab8cb83fc2183ad4f5
71bf86dfdba459316a3c5ed2b44a98a216559475
9216cd2470f2308a207c81a4c634ee6b5fde5a5b82b3adb027a368e23746d841
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/js/jquery.placeholder.js?ver=4.4.29 HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:50 GMT
Content-Type: application/javascript
Content-Length: 1721
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
www.gabrielecossu.it/wp-content/plugins/maintenance/load/js/jquery.frontend.min.js?ver=4.4.29
200 OK 3.6 kB URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/js/jquery.frontend.min.js?ver=4.4.29
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (3612), with no line terminators
Hash da285d1c0e1c39179b4a79b9ad3c5f01
185438f9af2ec67d5574d95e31e0f285eb137d20
c8b723a03f84ff936014a140823f31fd3d12293481bf3516099569304f41202b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/js/jquery.frontend.min.js?ver=4.4.29 HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:50 GMT
Content-Type: application/javascript
Content-Length: 3612
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UBedqcWOa0hIwCrwx5gCKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: me/FMFXihQQRQJuYnisZtU0g6MM=
www.gabrielecossu.it/wp-content/plugins/maintenance/load/style.css?ver=4.4.29
200 OK 13 kB URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/style.css?ver=4.4.29
IP
ASN #24940 Hetzner Online GmbH
Hash 0cd195ed17532457f991d43f1d1c1b05
3cca666b1ba7eedeb0a7b741810761e0ce8bd584
c7109eca6ba2430e9a3a08f211abd5e3ca159e44cff606855df7d514f632fd68
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/style.css?ver=4.4.29 HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:51 GMT
Content-Type: text/css
Content-Length: 12776
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
www.gabrielecossu.it/wp-content/plugins/maintenance/load/js/jquery.blur.min.js?ver=4.4.29
200 OK 2.3 kB URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/js/jquery.blur.min.js?ver=4.4.29
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (534)
Hash 5ca9b97c3e9b6daf5fa610fa89f68fd2
69714b71ce1f0b5b7ec0e45ba946aefd9920ac49
92fef310373da212648817f5f6e81cb9b1eec6c40d6fa3271d0aa5b1da0ee581
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/js/jquery.blur.min.js?ver=4.4.29 HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:51 GMT
Content-Type: application/javascript
Content-Length: 2292
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
www.gabrielecossu.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
200 OK 7.2 kB URL HTTP/1.1 www.gabrielecossu.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash 512b871a2830e44259bc3ce3343afcd0
875bce76a77590c3c438bbc6e014b39c23c8c88d
c4d24f6b27cc7ceea56fbec786bb1f486fdad9a1f998f760f76d1f44671e105c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:51 GMT
Content-Type: application/javascript
Content-Length: 7200
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Tue, 23 Jul 2013 13:28:26 GMT
Accept-Ranges: bytes
www.gabrielecossu.it/wp-includes/js/jquery/jquery.js?ver=1.11.3
200 OK 96 kB URL HTTP/1.1 www.gabrielecossu.it/wp-includes/js/jquery/jquery.js?ver=1.11.3
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32038)
Hash 207abeb83412721d556faeba36e00822
c06b7f0b1526037bcdc6639244c9692e2ef3ebdd
ca32702f36da9bdbaa5463f8e3db9b18d82f3ce8a630d18e8bde6b30a2582d20
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:51 GMT
Content-Type: application/javascript
Content-Length: 95977
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:09:30 GMT
Accept-Ranges: bytes
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 48 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gabrielecossu.it
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 47952
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 13 Jan 2023 13:41:13 GMT
Expires: Sat, 13 Jan 2024 13:41:13 GMT
Cache-Control: public, max-age=31536000
Age: 52658
Last-Modified: Mon, 15 Aug 2022 18:22:41 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gabrielecossu.it
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 09 Jan 2023 19:26:15 GMT
Expires: Tue, 09 Jan 2024 19:26:15 GMT
Cache-Control: public, max-age=31536000
Age: 377556
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/general_foundicons.woff
200 OK 9.7 kB URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/general_foundicons.woff
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, TrueType, length 9728, version 0.0\012- data
Hash 460c4e8a696b6bd52092ddc1dd6f0cbb
479f809c7ec0c029cd630f76edff369f9b86e28f
68ee5120b4ccda682d308143fea223226ed32efd272ce6445ebbd99f1e54e823
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/images/fonts-icon/general_foundicons.woff HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gabrielecossu.it
Connection: keep-alive
Referer: http://www.gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:51 GMT
Content-Type: font/woff
Content-Length: 9728
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7791
Expires: Sat, 14 Jan 2023 06:28:42 GMT
Date: Sat, 14 Jan 2023 04:18:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39503f4d-fcf8-45b4-ae61-51c447039195.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39503f4d-fcf8-45b4-ae61-51c447039195.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27b277cb6a1a8bb75c4478c92536262e
f832aa86e17caedb066063c1b0dee457ecbc227b
ce7b781081903eb676c9b7f43572b8d45cebb01475b05e693f4a8e8674da2852
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39503f4d-fcf8-45b4-ae61-51c447039195.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6722
x-amzn-requestid: d6d57a8b-a053-444d-84c7-b6337902d62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eq0-QF_6oAMFTyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c101f4-08602bdd546582c72659cd4e;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 07:02:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cVrJeRRbgzxCSLm2P0VTTRr-0GW1nclrZWyBrMBZ4jck8up3MNkn7Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 07:22:03 GMT
age: 75409
etag: "f832aa86e17caedb066063c1b0dee457ecbc227b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7555f05-0674-49ea-946d-4aece84ab675.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7555f05-0674-49ea-946d-4aece84ab675.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6930b7861448bb9f4491579a89cf99e
c781b725bc77d7afbeff8c2ef88933062943214c
71959793617cc6dae00ce2d3f2c9309666930da60298da5897378cc2bc793c23
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7555f05-0674-49ea-946d-4aece84ab675.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9405
x-amzn-requestid: 001968d8-53b7-4827-9804-938594e671e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAc0E37oAMFh-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ab8-7f8f9d8520ba526459a12dee;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:12:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hY8ugT4MGQLqg0ETb8kp3S6vo5LGhgOLpXjrN-imTXTJ3MeaFCQvOQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:13:29 GMT
age: 3923
etag: "c781b725bc77d7afbeff8c2ef88933062943214c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JRzc2Mcl4EasyH6_1kFh7sr-57f1HNDu-YN8YptDe_kcTET9x8P9LA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 14:03:21 GMT
age: 51331
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c5167d-4d7e-40fb-86f7-00c3c61a3d8a.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c5167d-4d7e-40fb-86f7-00c3c61a3d8a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c06b9b83ee9dbe95b329ed2aa7590ea7
a0589b0ba31279219ed4e8143980dcb4badd81b0
78273bc40a06cf4805d7dc7cb3a9d10d11d61e31c5606f621b0f49ef6fa1fb6d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00c5167d-4d7e-40fb-86f7-00c3c61a3d8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7796
x-amzn-requestid: f429dfb8-42f9-40d0-88e5-8fff853da5b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAlCGu4IAMFUgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7aec-2fc65c774e4f2caa72a3f63f;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DEhKBJET0--xJ_ZiaOEkUc8kJsmWISui8dbWa6GcCR2tKoMV6DmUMA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:30:50 GMT
age: 2882
etag: "a0589b0ba31279219ed4e8143980dcb4badd81b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd34cbb2e-8cd4-4c61-a8c1-a6ab4f223abb.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd34cbb2e-8cd4-4c61-a8c1-a6ab4f223abb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41aec5fd4a5d8bb8cd840f4843d48250
13b3efa7259324d7dca3576a69936b5a7339ecf1
742eb5ccd303bf58c9d7c2288b1d36f2989bd030b69293c74dca463fd8bb6a10
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd34cbb2e-8cd4-4c61-a8c1-a6ab4f223abb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10461
x-amzn-requestid: 2545c321-708a-418a-81a8-0b108fa83dc9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0pZEa5oAMF4cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3b-7544647613db6c4c198145f3;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0bt51kj0PtGNr8Z37lVs7-BoR82dj3clknoURdKFQexK7yV9Pvf_sw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:06 GMT
age: 23386
etag: "13b3efa7259324d7dca3576a69936b5a7339ecf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64ba27a2f0a3bc61bd325f1fb317b755
c65c58476b66cbb6269ba1d8412d270a0a003ae3
5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9135
x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAnoG6roAMFzgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RnAGo4OuBl5UjyOlUOJqu2nlFLHTOe0ETxokWtbI4frbpkNVnIBSew==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 01:41:40 GMT
age: 9432
etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gabrielecossu.it/wp-content/uploads/2015/12/mt-sample-background.jpg
200 OK 1.3 MB URL HTTP/1.1 www.gabrielecossu.it/wp-content/uploads/2015/12/mt-sample-background.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 1.3 MB (1342393 bytes)
Hash 52794f4a10ebc3795d5aee58b6d38e93
2a128793b93f22a4ca842ee872028264bf51b50c
e903a8df8d150dea72026fb72aa3332f156870130bdee2b897756c71897fa924
GET /wp-content/uploads/2015/12/mt-sample-background.jpg HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:51 GMT
Content-Type: image/jpeg
Content-Length: 1342393
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:29 GMT
Accept-Ranges: bytes
gabrielecossu.it/favicon.ico
404 Not Found 315 B URL HTTP/1.1 gabrielecossu.it/favicon.ico
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /favicon.ico HTTP/1.1
Host: gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gabrielecossu.it/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 14 Jan 2023 04:18:52 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 315
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/social_foundicons.woff
200 OK 11 kB URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/social_foundicons.woff
IP
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, TrueType, length 10644, version 0.0\012- data
Hash 5ec54dbe138004385f1aa6749bd122c2
ea3c0bdd747775c3c8f51d63384b4a2078e5b7e1
744a778e81e6b205fe9feec0b37b4ae78482e288b0270c177051a54a4c611289
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/images/fonts-icon/social_foundicons.woff HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gabrielecossu.it
Connection: keep-alive
Referer: http://www.gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:53 GMT
Content-Type: font/woff
Content-Length: 10644
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7af5e398-d86e-4aa0-bb1e-b5d82b7126bf.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7af5e398-d86e-4aa0-bb1e-b5d82b7126bf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6caf04526badc2e146f7bfe4a4ebbc43
f50c61c4c10121a407052061e2fce795989f5564
8baff27e309b1956a09a1bb0d703cd9c1507a12f5bd8806fd4288157e78830ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7af5e398-d86e-4aa0-bb1e-b5d82b7126bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8257
x-amzn-requestid: 605e8a38-10e9-4724-8fc9-d3e06a21a754
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ephACEUJoAMF3VA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c07b99-11445aed36ea9a7b13aba702;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:28:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nXABntBQg4azgB7xtH8_Cc8rBPRzQ4reKYAx4lVxEtnGdRjIe8rsvA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 05:39:26 GMT
age: 81572
etag: "f50c61c4c10121a407052061e2fce795989f5564"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/social_foundicons.ttf
200 OK 0 B URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/social_foundicons.ttf
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/images/fonts-icon/social_foundicons.ttf HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://gabrielecossu.it
Connection: keep-alive
Referer: http://www.gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:53 GMT
Content-Type: font/ttf
Content-Length: 16880
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/general_foundicons.ttf
200 OK 0 B URL HTTP/1.1 www.gabrielecossu.it/wp-content/plugins/maintenance/load/images/fonts-icon/general_foundicons.ttf
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/maintenance/load/images/fonts-icon/general_foundicons.ttf HTTP/1.1
Host: www.gabrielecossu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://gabrielecossu.it
Connection: keep-alive
Referer: http://www.gabrielecossu.it/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 14 Jan 2023 04:18:51 GMT
Content-Type: font/ttf
Content-Length: 15488
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 24 Dec 2015 11:06:04 GMT
Accept-Ranges: bytes
136.243.82.137
52.34.83.145
95.101.11.115
93.184.220.29