www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
89.46.110.20301 Moved Permanently 168 B URL HTTP/1.1 www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
IP 89.46.110.20:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82f04704c04c2706b1b96a73be2ff3a9
8cd210a378b7f54ce8945cdf1c7ce1f696171eee
ede97dbf06b3e703cd950b3591a29351ce9b24eccab58b1a913b3c7e4571bf02
Analyzer Verdict Alert fortinet Malware
GET /made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/ HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: aruba-proxy
Date: Mon, 28 Nov 2022 16:04:15 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
Location: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
X-ServerName: ipvsproxy209.ad.aruba.it
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4193
Expires: Mon, 28 Nov 2022 17:14:08 GMT
Date: Mon, 28 Nov 2022 16:04:15 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5838
Cache-Control: max-age=158664
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:15 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 12:08:39 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2163
Expires: Mon, 28 Nov 2022 16:40:18 GMT
Date: Mon, 28 Nov 2022 16:04:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 15:19:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2683
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: v8VKD2epYgZg5Emryvd1n+T93VXuKUNc34fJvPFjMRJ7GRqbpGcl21aaUsIdOdJPQjXHHhpFsxc=
x-amz-request-id: JGMX2BACVDZDBRHZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 15:45:05 GMT
age: 1150
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 16:04:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp06.actalis.it/VA/AUTHDV-G3
109.70.240.114200 3.9 kB URL HTTP/1.1 ocsp06.actalis.it/VA/AUTHDV-G3
IP 109.70.240.114:0
Hash 92063f1073af4682e7b677451d24ff77
62063a778ffa59015ecf712e2b4712d61b5ad7d2
6529e6b94dead2df41c79daa28f95f0229113c6f4627a4d1aec4582f059f192d
POST /VA/AUTHDV-G3 HTTP/1.1
Host: ocsp06.actalis.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Mon, 28 Nov 2022 16:04:15 GMT
Content-Type: application/ocsp-response
Content-Length: 3926
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 14:39:55 GMT
Expires: Tue, 29 Nov 2022 14:39:54 GMT
ETag: "62063a778ffa59015ecf712e2b4712d61b5ad7d2"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 15:08:55 GMT
cache-control: public,max-age=3600
age: 3320
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4088
Cache-Control: max-age=151847
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:16 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:15:03 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.216.88.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.88.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: msBbzR2Bw+xBtIAZ8vY8sg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EekeGv9Gi30QVft7crnlaAu2fYo=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8991
Expires: Mon, 28 Nov 2022 18:34:08 GMT
Date: Mon, 28 Nov 2022 16:04:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8991
Expires: Mon, 28 Nov 2022 18:34:08 GMT
Date: Mon, 28 Nov 2022 16:04:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8991
Expires: Mon, 28 Nov 2022 18:34:08 GMT
Date: Mon, 28 Nov 2022 16:04:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 64951
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 64951
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:42:14 GMT
age: 66123
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I6egDH0h7D08HhaoQHQ0vgghBhPfje2lGIbnWD-t7p4txzHsFxmZfg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:31:22 GMT
age: 19975
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:13:33 GMT
age: 21044
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78e81d9-dbc4-4911-9711-219f64026531.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78e81d9-dbc4-4911-9711-219f64026531.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e586c141835f4ac8819c55dcb811b4d
a23fd98701ac35cd8740d1f7a832118c770e20c8
4296f391f755a649897a2211f9072c69a0510e43a313674908bb0a771b12650e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa78e81d9-dbc4-4911-9711-219f64026531.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10944
x-amzn-requestid: 8f48c27c-bbec-46f5-9c08-1cc804b9aff7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIbJ_FyvIAMFhrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63800bd9-2ffa8521241a5e5b0afc0935;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 00:27:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4YiBUU3kS0VrcVOwKXUHgIRygLLeXGp1TjBYDi6WwWWm6WMKktzfHg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:55:16 GMT
age: 65341
etag: "a23fd98701ac35cd8740d1f7a832118c770e20c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e8864674933b39029cfebb5295cec568
ab88f2142fc26d5dfa91e95f500264553fe3176e
915cf81e0a18f50aeeb5ab12a791be52b604f8c56d3fcd7745a7e13dc54f8a84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-64836479-4
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-64836479-4
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 98f27875f19f40c93e916f6d2bb7383f
69325afacb6263047074822552ef678d04946bfd
3f94bbe193d320981960d42878839c646245209496b16ab819b926d63894067f
GET /gtag/js?id=UA-64836479-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 28 Nov 2022 16:04:18 GMT
expires: Mon, 28 Nov 2022 16:04:18 GMT
cache-control: private, max-age=900
last-modified: Mon, 28 Nov 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43609
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-auto-ads-0.1.js
216.58.211.1200 OK 7.6 kB URL HTTP/2 cdn.ampproject.org/v0/amp-auto-ads-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (24963)
Hash 7e4f71cee27b658812e9889473a0204b
6f6e9597e974b5bcc9a59763f1002e8a1864520f
7f3733840227a357ecad89fa1d9de64d0f78f90c9509db2bb6fd30b8ac36a1ed
GET /v0/amp-auto-ads-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 7578
date: Mon, 28 Nov 2022 16:04:18 GMT
expires: Mon, 28 Nov 2022 16:04:18 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "1ef491f2ce412f6e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.saporicondivisi.com/wp-content/uploads/2021/07/decantami.png
89.46.110.20200 OK 7.7 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2021/07/decantami.png
IP 89.46.110.20:0
File type PNG image data, 728 x 90, 8-bit colormap, non-interlaced\012- data
Hash 5bf69f86d81ca74fbcfa15ad405fe4b9
c283a191bcf41bffa1c485af14691a48f988deed
15fcab96b5de2acce0adc3aa81d52c4e12166c6bd75a0df980b9e9cac872323a
GET /wp-content/uploads/2021/07/decantami.png HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: image/png
content-length: 7658
last-modified: Mon, 05 Jul 2021 13:20:43 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2021/09/locandina_laboratori_7_9_21-696x986.jpeg
89.46.110.20200 OK 90 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2021/09/locandina_laboratori_7_9_21-696x986.jpeg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 696x986, components 3\012- data
Hash 359a0a20f31996e12b72476f1879e0f0
1eac7ac7fc80c2cc1c5e1eca46160eb35f410b1d
bf941269697568777153248a6279d15a519b01dc4cae39908970a8304ba892cb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2021/09/locandina_laboratori_7_9_21-696x986.jpeg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: image/jpeg
content-length: 90513
last-modified: Mon, 06 Sep 2021 10:44:13 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e8864674933b39029cfebb5295cec568
ab88f2142fc26d5dfa91e95f500264553fe3176e
915cf81e0a18f50aeeb5ab12a791be52b604f8c56d3fcd7745a7e13dc54f8a84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.saporicondivisi.com/wp-content/uploads/2020/06/SAPORI-1.jpg
89.46.110.20200 OK 106 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2020/06/SAPORI-1.jpg
IP 89.46.110.20:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, software=ACD Systems Digital Imaging, datetime=2020:06:01 19:36:34], baseline, precision 8, 1164x450, components 3\012- data
Size 106 kB (105966 bytes)
Hash 0cf337625b9f8c9816fd2e17f817796b
7ad15f93ad9faea581bdaaf08ec3fcfed875e8f2
1e51575c97cdaf9f573649731a76f12f2fe52245c42e048fa2988473e168cfe2
GET /wp-content/uploads/2020/06/SAPORI-1.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.saporicondivisi.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: image/jpeg
content-length: 105966
last-modified: Tue, 02 Jun 2020 08:34:00 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/images/sprite/elements.png
89.46.110.20200 OK 4.1 kB URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/images/sprite/elements.png
IP 89.46.110.20:0
File type PNG image data, 90 x 2100, 8-bit colormap, non-interlaced\012- data
Hash be2df2724b9e7f4c7eb78bf6bc57d9e2
5ba841b8b7cf210ada1a45d80bfb5c6d12ff2b81
277c84697b5039a7583a843ba2e6b784354925898a15056c8d975b696d2e7c2c
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/images/sprite/elements.png HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=a658a28d2ec596dae36323688c6c3eb8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:19 GMT
content-type: image/png
content-length: 4149
last-modified: Fri, 23 Oct 2020 23:30:32 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
89.46.110.20200 OK 1.5 kB URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0
IP 89.46.110.20:0
Hash ae04fecc3d682852a7201852e9f4d182
cf0f232948cf5b073a47c8e3f3348a8100b63c2c
b639b7e48b0dfc6472c161ae27000f5c93b7c83859a09af9b8357b7090044387
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.7.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:21 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
saporicondivisi.com/wp-content/uploads/2020/06/SAPORI-1.jpg
89.46.110.20301 Moved Permanently 640 B URL HTTP/2 saporicondivisi.com/wp-content/uploads/2020/06/SAPORI-1.jpg
IP 89.46.110.20:0
Hash a0cfd69a2d44714a95020b7a33fbea1e
0a301de4d7cafea1a8551b9a05a61572f5c8daaa
97ad517fa6e7acb0ed9bad6180075d18ae073741f2b3a5be0bd68239428b146d
GET /wp-content/uploads/2020/06/SAPORI-1.jpg HTTP/1.1
Host: saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 301 Moved Permanently
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/html
location: https://www.saporicondivisi.com/wp-content/uploads/2020/06/SAPORI-1.jpg
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
89.46.110.20200 OK 1.5 kB URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0
IP 89.46.110.20:0
Hash a0860baa017bcd525bf1adf51080799c
cd3473e72a20d4a02b707d116e02c1d8a652013b
779d4a6cf0df2994ea9479c595a40be74032eea921481a70d4eb646b3d5cafc9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.7.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:21 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 382888
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:48:50 GMT
expires: Thu, 23 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 411329
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&j=1%3A10.6&blog=74100170&post=34108&tz=2&srv=www.saporicondivisi.com&host=www.saporicondivisi.com&ref=&fcp=0&rand=0.20123959667552715
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1%3A10.6&blog=74100170&post=34108&tz=2&srv=www.saporicondivisi.com&host=www.saporicondivisi.com&ref=&fcp=0&rand=0.20123959667552715
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A10.6&blog=74100170&post=34108&tz=2&srv=www.saporicondivisi.com&host=www.saporicondivisi.com&ref=&fcp=0&rand=0.20123959667552715 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 16:04:19 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=10.3.7
89.46.110.20200 OK 75 kB URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=10.3.7
IP 89.46.110.20:0
Hash f43f90a3dc9692367009d43fa32d8253
84e87106e280e2eeaa82051bfac6e52d362e4127
fc0685fde6e4984741778872eae39adc3aaf792f4977b16a0e12f2341ece11db
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=10.3.7 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 23 Oct 2020 23:30:37 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 439007
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2
216.58.207.195200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 22476, version 1.0\012- data
Hash c221fd7b9d189773de5e54745a6dc28c
9a58a6bd08f6cda6acbfaaa160375d3e1c5c93f0
aee4051a20e975b9bb6fdc20984a091eb1f55c35ea87abe441db4cdbe8c116d0
GET /s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 22:34:57 GMT
expires: Wed, 22 Nov 2023 22:34:57 GMT
cache-control: public, max-age=31536000
age: 494962
last-modified: Tue, 19 Apr 2022 19:19:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 421830
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: VymdaAYsRSPkInvjP9sBWH8h4/ZK7cBN8mHs41IWtWe9yuQntZY6l9FX8Cgq1133/Q4bEkiMblq9Ks0cNOBLuA==
content-length: 0
date: Mon, 28 Nov 2022 16:04:19 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.saporicondivisi.com/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=53f7b7675c3127e69efacf5620821cc8
89.46.110.20200 OK 2.4 kB URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=53f7b7675c3127e69efacf5620821cc8
IP 89.46.110.20:0
Hash bd09b040a24221d5b25ed83dc8ca219a
cb919d315c00d4875f41bfba897a28a6f617a14f
bad9d91a29c64cb3bfea2b36183631298183eb30e240c4947ab4aa4028f62c52
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=53f7b7675c3127e69efacf5620821cc8 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 24 Oct 2020 08:53:51 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 28 Nov 2022 14:41:08 GMT
expires: Mon, 28 Nov 2022 16:41:08 GMT
cache-control: public, max-age=7200
age: 4991
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-3181376993241138
142.250.74.98200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-3181376993241138
IP 142.250.74.98:0
File type ASCII text, with very long lines (4885)
Hash 535db39c3ba2b03235ba88923fc54824
54ab289ac5dcc40585922d497ec37ff3c4ddba68
f34f354ee81fa764d289af4f9f36fef49cee4592dd07b9730c4606dd329d8943
GET /pagead/js/adsbygoogle.js?client=ca-pub-3181376993241138 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 28 Nov 2022 16:04:19 GMT
expires: Mon, 28 Nov 2022 16:04:19 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8017628665797476869
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49387
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
216.58.211.2200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Mon, 28 Nov 2022 05:11:33 GMT
expires: Mon, 12 Dec 2022 05:11:33 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
age: 39167
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=www.saporicondivisi.com
172.217.21.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.saporicondivisi.com
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.saporicondivisi.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 16:04:20 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.saporicondivisi.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.saporicondivisi.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.saporicondivisi.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 16:04:20 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a857eec26a095f97806facc4251f4048
21bcf238687fd5f4fbefaf9704786f7c498f305e
b44b50b7e234fd05080699152a9bc0055a703a93ec2642ecb6b1f717effe7933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.saporicondivisi.com&callback=_gfp_s_&client=ca-pub-3181376993241138&gpid_exp=1
172.217.21.162200 OK 259 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.saporicondivisi.com&callback=_gfp_s_&client=ca-pub-3181376993241138&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (405), with no line terminators
Hash e2a38f3735e4af64beda603a9c73931a
cd0645210085645b16bc4a4f1be580dff94a3d2c
3e78b37c7888f9b140bd835eb694c06cabd490ce5ca458db2022d307371c444d
GET /gampad/cookie.js?domain=www.saporicondivisi.com&callback=_gfp_s_&client=ca-pub-3181376993241138&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 16:04:21 GMT
server: cafe
cache-control: private
content-length: 259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a857eec26a095f97806facc4251f4048
21bcf238687fd5f4fbefaf9704786f7c498f305e
b44b50b7e234fd05080699152a9bc0055a703a93ec2642ecb6b1f717effe7933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.saporicondivisi.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.saporicondivisi.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.saporicondivisi.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 16:04:21 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash afdcfc5f3bd741d114596300d607f4cc
e82ea5829078ad9268cdf9c576c780b1c40c3696
1c80e7d28c6303b65a17bfa822163c5af3d6d5c480ee9f2e404b23119520eeb5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash afdcfc5f3bd741d114596300d607f4cc
e82ea5829078ad9268cdf9c576c780b1c40c3696
1c80e7d28c6303b65a17bfa822163c5af3d6d5c480ee9f2e404b23119520eeb5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1540)
Hash d22e40b1bc4f1b0f1727b96a0f32f7dd
57030c5040f0013120cca1e77fe38af35d4610e0
6f6d3797f9b19ffcd2f416a7566a58cf70fd4fb0ab17dec03fa5b690c6939494
GET /pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7458
x-xss-protection: 0
date: Mon, 28 Nov 2022 05:12:02 GMT
expires: Mon, 12 Dec 2022 05:12:02 GMT
cache-control: public, max-age=1209600
etag: 16870613375306414947
content-type: text/javascript; charset=UTF-8
age: 39139
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1596)
Hash 6b277303de172776fc303dfc195982ef
fe6c6af5791742485ae21c4dc02edbee2b426886
c536ada7aa8f4679e0e4f0b99703aab79f6fe32659d777f9c01a7785aa06a36d
GET /pagead/js/r20221110/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 9428
x-xss-protection: 0
date: Mon, 28 Nov 2022 05:12:02 GMT
expires: Mon, 12 Dec 2022 05:12:02 GMT
cache-control: public, max-age=1209600
etag: 246362764157784863
content-type: text/javascript; charset=UTF-8
age: 39139
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.saporicondivisi.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.saporicondivisi.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.saporicondivisi.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 16:04:21 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:21 GMT
expires: Thu, 23 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 419401
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.163200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (1921)
Hash 48a3f12d2425ba123d53524adc123834
c8f4ecbe239261b944879c18ec1a353d0cc674ba
632e1fbd2bba00a95491c806cdf850014b1b617323f698c492272d917603e20b
GET /mysidia/f7733d2b54a65c984752ab0a98c7def9.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 14118
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 10:43:31 GMT
expires: Mon, 20 Feb 2023 10:43:31 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 14 Nov 2022 13:59:16 GMT
content-type: text/javascript
age: 537651
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 03ad9fc0b00b5df3165dc2fb1e3b0a3e
f8243335a8bc24d989bddd346048a055e1d0bdeb
366b28d491f7fd632e31c1ce97f939555f7dcee14bb6875737ed2d3e96fa32ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 16:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/mysidia/92d0eacbdd534f81de4b06016912d49f.js?tag=client_fast_engine_2019
142.250.74.163200 OK 4.1 kB URL HTTP/2 www.gstatic.com/mysidia/92d0eacbdd534f81de4b06016912d49f.js?tag=client_fast_engine_2019
IP 142.250.74.163:0
File type ASCII text, with very long lines (1586)
Hash 80fbf96872e868af5f861ca4de459f1f
153a1de7a30f0954548c0472d0d2520d0c21a0f2
bde0c7573bd842638f62e296d16fc1af1a15880376de1604396da448c6f8e829
GET /mysidia/92d0eacbdd534f81de4b06016912d49f.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4142
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 10:51:34 GMT
expires: Mon, 20 Feb 2023 10:51:34 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 14 Nov 2022 13:59:16 GMT
content-type: text/javascript
age: 537168
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/71e59f4e7c1ff3257428cb688bf08820.js?tag=text/vanilla_highlight
142.250.74.163200 OK 4.4 kB URL HTTP/2 www.gstatic.com/mysidia/71e59f4e7c1ff3257428cb688bf08820.js?tag=text/vanilla_highlight
IP 142.250.74.163:0
File type C++ source, ASCII text, with very long lines (1794)
Hash 29e90adf2d6ed05b483b2df4a50d80df
840eff2559bb08b94682a73c8c2d8f111981627f
ec6e90cdcecd4ba4b490216be0b5e25f689aa98736e153fd20d11e003a951f84
GET /mysidia/71e59f4e7c1ff3257428cb688bf08820.js?tag=text/vanilla_highlight HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4402
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 12:20:26 GMT
expires: Tue, 21 Feb 2023 12:20:26 GMT
cache-control: public, max-age=7776000
last-modified: Mon, 14 Nov 2022 13:59:16 GMT
content-type: text/javascript
age: 445436
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaTNCc0CJpjteJpy17c5qswsufFB9MzHyWLKTFtfL5nXQqd3y4FJvEuCr_vo4MaPSpz97-O4gcvdscwiOEFyapOt0jSB6w
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaTNCc0CJpjteJpy17c5qswsufFB9MzHyWLKTFtfL5nXQqd3y4FJvEuCr_vo4MaPSpz97-O4gcvdscwiOEFyapOt0jSB6w
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaTNCc0CJpjteJpy17c5qswsufFB9MzHyWLKTFtfL5nXQqd3y4FJvEuCr_vo4MaPSpz97-O4gcvdscwiOEFyapOt0jSB6w HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 28 Nov 2022 16:04:22 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.saporicondivisi.com/?wc-ajax=get_refreshed_fragments
89.46.110.20200 OK 228 B URL HTTP/2 www.saporicondivisi.com/?wc-ajax=get_refreshed_fragments
IP 89.46.110.20:0
File type JSON data\012- , ASCII text, with very long lines (503), with no line terminators
Hash ebe9884cd78e68bd7afc3aff8ffafc9c
04f38660547efc9b0c59387f08f65d874d68d39a
c9841e454ccaf1e69cd80b3388680665ec09a5f3b9752bb4b4b0e8c7e6732d8d
Analyzer Verdict Alert fortinet Malware
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding, Origin
access-control-allow-origin: https://www.saporicondivisi.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/01-324x160.jpg
89.46.110.20200 OK 22 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/01-324x160.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=3648, bps=0, compression=none, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS-1D X Mark II, orientation=upper-left, width=5472], baseline, precision 8, 324x160, components 3\012- data
Hash ce2a9f73c0e34c056e135487e752524b
c8cbc00bfbb280960e54d84a2d672ac3e60809f0
78f4970591e5c0ef4206faea63014d59441bcfa429504314e19d3154136262d8
GET /wp-content/uploads/2022/11/01-324x160.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 21788
last-modified: Mon, 28 Nov 2022 14:59:12 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/eur-lex-olio-campania-324x160.jpg
89.46.110.20200 OK 20 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/eur-lex-olio-campania-324x160.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.2 (Windows), datetime=2022:11:25 20:13:48], baseline, precision 8, 324x160, components 3\012- data
Hash e69b0afd01de3a6f20e492f0aad45dcf
ab3701082b1c196e8e15cdbdfc9b2598fd451332
5fce653de5f1adb11fdbb34673900b0028f7192730f956c107def9d743e983bf
GET /wp-content/uploads/2022/11/eur-lex-olio-campania-324x160.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 19589
last-modified: Sat, 26 Nov 2022 15:26:17 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/01-218x150.jpg
89.46.110.20200 OK 21 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/01-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=3648, bps=0, compression=none, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS-1D X Mark II, orientation=upper-left, width=5472], baseline, precision 8, 218x150, components 3\012- data
Hash ed477ba55032832097fb9ad0a3a35cde
7984c1e3f11bb3da2bf492d70e9cff3231513857
6bee1548bc1dbf276f423fc11000f6890bc46f1efa612b94df3310cb42712d4d
GET /wp-content/uploads/2022/11/01-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 21280
last-modified: Mon, 28 Nov 2022 14:59:11 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/galbani002-218x150.jpg
89.46.110.20200 OK 8.4 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/galbani002-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 218x150, components 3\012- data
Hash ce450a142053253186cc36d9f8e70285
838f50c5f7ba73001bd6b75129125be2cf2b98d0
c07f71ca99bc0fdeb5378c5bb6bf136a49896500c678561915a18e217a97c7eb
GET /wp-content/uploads/2022/11/galbani002-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 8422
last-modified: Fri, 25 Nov 2022 16:36:10 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/abbi-218x150.png
89.46.110.20200 OK 32 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/abbi-218x150.png
IP 89.46.110.20:0
File type PNG image data, 218 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f12748ca6823b3a231686d2ef8b74db
261b82a9a63c832e5a68335d04ed4bbf41ce1083
64b2ebc240fe09f4ec1cf528c4fc6b5600a0097c9aebe6003dab991ac163bd63
GET /wp-content/uploads/2022/11/abbi-218x150.png HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/png
content-length: 32284
last-modified: Fri, 25 Nov 2022 10:22:56 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/yTeLfnJv-218x150.jpeg
89.46.110.20200 OK 4.8 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/yTeLfnJv-218x150.jpeg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 218x150, components 3\012- data
Hash 4eb300697da182bc80dcc7142cd0a83d
639bce60da31a4562a755c54abde6aec01683129
383152893f830819d948a272c2208bbd84f033a850eac6ba6b32d32b5851881b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/yTeLfnJv-218x150.jpeg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 4840
last-modified: Tue, 22 Nov 2022 14:21:28 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/limpia_bere_secondo_natura-218x150.jpg
89.46.110.20200 OK 10 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/limpia_bere_secondo_natura-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=5], baseline, precision 8, 218x150, components 3\012- data
Hash 52daab901dd2390f74794ac55f0afe90
562bcd444eb4e972ae383bc065d2ba45afbf4e0c
b917e6dfddfa97fc626ebada515c627e8c0af0fbe1bb222517db38b3a6784f90
GET /wp-content/uploads/2022/11/limpia_bere_secondo_natura-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 10151
last-modified: Sat, 19 Nov 2022 09:21:59 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/10/e-218x150.jpg
89.46.110.20200 OK 14 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/10/e-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 218x150, components 3\012- data
Hash 8f166dc109bbd9f1fa4a9c517a2dfb7d
cbe04dd98d36cd65347525630bf08c9bef92396b
6be0bd2e2f36f57d87ce674b710c52275a8c9b1c8dd70d076a95e5ae79d29cb3
GET /wp-content/uploads/2022/10/e-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 13491
last-modified: Mon, 31 Oct 2022 01:18:28 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/10/ge-218x150.jpg
89.46.110.20200 OK 14 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/10/ge-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Picasa], baseline, precision 8, 218x150, components 3\012- data
Hash 076ddae1b0e5574353a405403da81bc8
7c3ee1f338c2e42e18d8c25c44c70f13476aab99
1699fb46114d80ace5256109d830302b4ae2a9681e31d636cd917b3187e69aae
GET /wp-content/uploads/2022/10/ge-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 14241
last-modified: Sun, 16 Oct 2022 00:22:17 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/09/Pubblicazione-articolo-Spaghetti-con-ammarielli-218x150.png
89.46.110.20200 OK 35 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/09/Pubblicazione-articolo-Spaghetti-con-ammarielli-218x150.png
IP 89.46.110.20:0
File type PNG image data, 218 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 3102f6050b6117f4a21e7be7d9aaf2f3
d14f34e4e7c844ac52364d20c3bf7c254d00a5fe
d6b449a37659bc173f74de2bed481f0b2a02b63fe56bd0793e29a9f2dec3c0f9
GET /wp-content/uploads/2022/09/Pubblicazione-articolo-Spaghetti-con-ammarielli-218x150.png HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/png
content-length: 34568
last-modified: Mon, 12 Sep 2022 14:43:39 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/09/unnamed-218x150.png
89.46.110.20200 OK 56 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/09/unnamed-218x150.png
IP 89.46.110.20:0
File type PNG image data, 218 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash f257e625a39916431fc39e67821e8fd3
c0ad4873eae3fc4b25784bd8cd87443ffbe9301b
9e274363111be896115037275d4f8897186a378966c4675f3d54ee9cc26afc86
GET /wp-content/uploads/2022/09/unnamed-218x150.png HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/png
content-length: 55687
last-modified: Mon, 12 Sep 2022 00:15:14 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/image_6483441b2JPG-218x150.jpg
89.46.110.20200 OK 10 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/image_6483441b2JPG-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 218x150, components 3\012- data
Hash 79a93982312ecaff0db6f424f8f0356f
b2220a3e9e28ff106a7cf00e00ddcf25bcfd70d5
1621f9dccba78ceedeca22892efd63f873263e401046e85a1f2364a23d18736a
GET /wp-content/uploads/2022/11/image_6483441b2JPG-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 10308
last-modified: Mon, 21 Nov 2022 18:27:36 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/wanm1-218x150.png
89.46.110.20200 OK 65 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/wanm1-218x150.png
IP 89.46.110.20:0
File type PNG image data, 218 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 4567c97dad5edec87ed2cdf11e38e97e
5e56a9e10839c4e33f36fca7af2ff44a0f661b73
666c4c7c127abd3db45a565c500f0bc81de4c79701985ed09664c8eb4d18d9bb
GET /wp-content/uploads/2022/11/wanm1-218x150.png HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/png
content-length: 65237
last-modified: Thu, 17 Nov 2022 13:51:40 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/DB802460-9529-410A-A65C-358F292CF36A-218x150.jpeg
89.46.110.20200 OK 7.7 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/DB802460-9529-410A-A65C-358F292CF36A-218x150.jpeg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 218x150, components 3\012- data
Hash 532fa5aca4ce69b6379a28305346dd5a
a1b4a2a8371ced4524ef1dd42afcf051def4439f
ee6888d815ef9a82e2aa96ae3760f3767ddeac9cc351615f1f764184d0e064f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/DB802460-9529-410A-A65C-358F292CF36A-218x150.jpeg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 7696
last-modified: Wed, 16 Nov 2022 13:32:41 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/favicon.ico
89.46.110.20302 Found 0 B URL HTTP/2 www.saporicondivisi.com/favicon.ico
IP 89.46.110.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.saporicondivisi.com/wp-includes/images/w-logo-blue-white-bg.png
link: <https://www.saporicondivisi.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/cavalierireggia-218x150.jpg
89.46.110.20200 OK 12 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/cavalierireggia-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 218x150, components 3\012- data
Hash b1084579d04933ce7d63fd440701555d
3affe4161b524282e95b46fe2d35fcc0cfb1e86f
0b77c257e21bf02a711b28aee399ac7ae8357c8f6eac8222625b3b861291d986
GET /wp-content/uploads/2022/11/cavalierireggia-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 11980
last-modified: Tue, 15 Nov 2022 11:41:39 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/haller-218x150.jpg
89.46.110.20200 OK 9.5 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/haller-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 218x150, components 3\012- data
Hash bcb58b6f153dcd9ced89b7d5d7c757d8
14e70761f26c00d4c2a29019e482e2eb5860b42f
69ece01097a9284c5dba6eb349de8fbc90047adb9ce6fe9a549e308d2d8a1856
GET /wp-content/uploads/2022/11/haller-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 9490
last-modified: Mon, 14 Nov 2022 15:38:23 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/Alessandra-e-Claudio-Quarta-218x150.jpeg
89.46.110.20200 OK 8.0 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/Alessandra-e-Claudio-Quarta-218x150.jpeg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 218x150, components 3\012- data
Hash fe54ddb35ad9cd33d2582f544e84dede
ed318facc1a28605b00e3249e5176d7ed3bc45d1
dc0b8c1a986ca5e004b99ba7e21856ef97842852c7480c17dc981819e53be4e0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/Alessandra-e-Claudio-Quarta-218x150.jpeg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 7954
last-modified: Fri, 25 Nov 2022 09:42:01 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/panza-citta-del-vino-218x150.jpg
89.46.110.20200 OK 8.8 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/panza-citta-del-vino-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 218x150, components 3\012- data
Hash e018118e4da7ded738e77027d3ae04f0
c29d749515214fd8530989df580679848ddd1c52
c1a0c9bffbfd8f07c924dd260914cbfb265bd7c1fdfc4ff14e399897934391e2
GET /wp-content/uploads/2022/11/panza-citta-del-vino-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 8827
last-modified: Mon, 21 Nov 2022 12:12:15 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/ws_100_2-218x150.jpg
89.46.110.20200 OK 8.0 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/ws_100_2-218x150.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 218x150, components 3\012- data
Hash 5c4610a7fb891fb439a1b4b2e60acae0
9bb26a7f6ae5e046482981ebb0b8dfc8049236ac
84a5e77d075c1cb7044bd109f3e1098c7d54acc2095aa76faf6bea1580952bac
GET /wp-content/uploads/2022/11/ws_100_2-218x150.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 7966
last-modified: Fri, 18 Nov 2022 13:59:18 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/Aminea-winery_cantine-aperte-san-martino_Avellino-218x150.jpeg
89.46.110.20200 OK 11 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/Aminea-winery_cantine-aperte-san-martino_Avellino-218x150.jpeg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 218x150, components 3\012- data
Hash a6e158eb582118ebed80b37f603395bb
d3cb6f659cd75c4b7bfb566e6ca8fd21f6e0cedb
12998ac3ce9e0f0100b82614ea0ae59fb05c49d73f4813fb9a17844c9471c824
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/Aminea-winery_cantine-aperte-san-martino_Avellino-218x150.jpeg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 10997
last-modified: Wed, 09 Nov 2022 16:43:29 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/y9D5HHS4-218x150.jpeg
89.46.110.20200 OK 9.8 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/y9D5HHS4-218x150.jpeg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 218x150, components 3\012- data
Hash d93c5254387c9ed2ceee3e76b554baa2
536ecb00d78556c97fc121de5e0b13bc64a94d12
9c8c0666f27668ca68590c47a3b23a425b8306a34bcce817840fde7e5a32fcbd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/11/y9D5HHS4-218x150.jpeg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 9812
last-modified: Fri, 04 Nov 2022 13:26:20 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/galbani002-324x160.jpg
89.46.110.20200 OK 12 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/galbani002-324x160.jpg
IP 89.46.110.20:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 324x160, components 3\012- data
Hash 37d1ab4b7a91cfb1bc49231b5271a324
d4d26ed33caef0fa81fef59873bc64f7a46958de
48ce0eaddfefd61c1ab977a3f1adba684f2c3c06851802c9e6c9a045142ce713
GET /wp-content/uploads/2022/11/galbani002-324x160.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/jpeg
content-length: 12167
last-modified: Fri, 25 Nov 2022 16:36:10 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/uploads/2022/11/abbi-324x160.png
89.46.110.20200 OK 42 kB URL HTTP/2 www.saporicondivisi.com/wp-content/uploads/2022/11/abbi-324x160.png
IP 89.46.110.20:0
File type PNG image data, 324 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash 5321ef02fe1fffa10bc3ce8e1478cded
0e26048870408d0044e16884fea2cdc249cef5d4
cfef80ffebac0f2660d29a1b4887a77045902e45f06911e6fc65952be1267d69
GET /wp-content/uploads/2022/11/abbi-324x160.png HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: image/png
content-length: 41984
last-modified: Fri, 25 Nov 2022 10:22:57 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env
142.250.74.98200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env
IP 142.250.74.98:0
File type JSON data\012- , ASCII text, with very long lines (14846), with no line terminators
Hash 510d669b3c0c0d35db1bf4402640d88d
369a27c0510e26f896a989076a236f5ed71505c0
733a11a5c02ea04266e1fd2819cd63758a3753e1501d523b3d4199709eb84899
GET /getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Mon, 28 Nov 2022 16:04:23 GMT
server: cafe
content-length: 11207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/images/w-logo-blue-white-bg.png
89.46.110.20200 OK 4.1 kB URL HTTP/2 www.saporicondivisi.com/wp-includes/images/w-logo-blue-white-bg.png
IP 89.46.110.20:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Connection: keep-alive
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22; _ga=GA1.2.1431303484.1669651459; _gid=GA1.2.399366812.1669651459; _gat_gtag_UA_64836479_4=1; __gads=ID=c62f66f7ab4299b9-22e9b438f2d7005d:T=1669651461:RT=1669651461:S=ALNI_MYdJevx7F86XsumRqnx0stez95xAQ; __gpi=UID=00000b895bcd2b60:T=1669651461:RT=1669651461:S=ALNI_MbZhLEMuMm0UPEMPwiGADin4Sh5AA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:23 GMT
content-type: image/png
content-length: 4119
last-modified: Thu, 11 Jun 2020 09:03:28 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvuu20Hmdn2gXN2rf2LcyzVCpv_T-qw_87kQ4t-GJUKdzyYXfQkYeNznoZIQi9DznBZa0B1eobkYMh0CH7-B1ILNayttJRoR-vv7ZJz49zOXWIWuTKUpr0EN0EC8unOWQbIR9MhdA&sai=AMfl-YQ5kp1Mybkx8EIzLxmEaxY9sls47bOIhJnNASbfQaiutJFMDVdpP2IIRYCGVjOKOAAZLx67E9_2Y7bbWT4&sig=Cg0ArKJSzEKEyEl9g5GSEAE&cid=CAQSGwDq26N9eef2rS__BlIvxnznbpyeK_RcrUfKPxgBIBM&id=lidar2&mcvt=1002&p=0,0,124,1005&mtos=0,833,1002,1002,1002&tos=0,833,169,0,0&v=20221110&bin=7&avms=nio&bs=0,0&mc=0.76&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1669651461309&rpt=418&met=mue&wmsd=0&pbe=0
142.250.74.98200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvuu20Hmdn2gXN2rf2LcyzVCpv_T-qw_87kQ4t-GJUKdzyYXfQkYeNznoZIQi9DznBZa0B1eobkYMh0CH7-B1ILNayttJRoR-vv7ZJz49zOXWIWuTKUpr0EN0EC8unOWQbIR9MhdA&sai=AMfl-YQ5kp1Mybkx8EIzLxmEaxY9sls47bOIhJnNASbfQaiutJFMDVdpP2IIRYCGVjOKOAAZLx67E9_2Y7bbWT4&sig=Cg0ArKJSzEKEyEl9g5GSEAE&cid=CAQSGwDq26N9eef2rS__BlIvxnznbpyeK_RcrUfKPxgBIBM&id=lidar2&mcvt=1002&p=0,0,124,1005&mtos=0,833,1002,1002,1002&tos=0,833,169,0,0&v=20221110&bin=7&avms=nio&bs=0,0&mc=0.76&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1669651461309&rpt=418&met=mue&wmsd=0&pbe=0
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsvuu20Hmdn2gXN2rf2LcyzVCpv_T-qw_87kQ4t-GJUKdzyYXfQkYeNznoZIQi9DznBZa0B1eobkYMh0CH7-B1ILNayttJRoR-vv7ZJz49zOXWIWuTKUpr0EN0EC8unOWQbIR9MhdA&sai=AMfl-YQ5kp1Mybkx8EIzLxmEaxY9sls47bOIhJnNASbfQaiutJFMDVdpP2IIRYCGVjOKOAAZLx67E9_2Y7bbWT4&sig=Cg0ArKJSzEKEyEl9g5GSEAE&cid=CAQSGwDq26N9eef2rS__BlIvxnznbpyeK_RcrUfKPxgBIBM&id=lidar2&mcvt=1002&p=0,0,124,1005&mtos=0,833,1002,1002,1002&tos=0,833,169,0,0&v=20221110&bin=7&avms=nio&bs=0,0&mc=0.76&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1669651461309&rpt=418&met=mue&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Mon, 28 Nov 2022 16:04:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b24e349e9d22fb30fbc80497b512cead
c033d1ecdb9e7640f3df044e39053bed8292fcbc
2d77e3c39c60a3563613b1ba97ec0b1a256f41ad09936ba49b23d8cf22f8a7a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6263
x-amzn-requestid: 5c3da401-eb9e-4904-a7e9-5e74648b8b77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KFfWoAMF99A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3110d65625e883502a5078a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X6t2ucU4VTXi5XIRLVpmTMxEW3MtinOQs3mIHIhgeW6aK6kN53dWEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:18 GMT
age: 65586
etag: "c033d1ecdb9e7640f3df044e39053bed8292fcbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/js/vendors/woocommerce-add-to-cart.js?ver=6.2.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sun, 17 May 2020 09:17:49 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/js/comment-reply.min.js?ver=5.8.6
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/js/comment-reply.min.js?ver=5.8.6
IP 89.46.110.20:0
GET /wp-includes/js/comment-reply.min.js?ver=5.8.6 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 12:04:17 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 06 Nov 2021 09:41:36 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
saporicondivisi.com/web/wp-content/uploads/2020/05/bg.jpg
89.46.110.20301 Moved Permanently 0 B URL HTTP/2 saporicondivisi.com/web/wp-content/uploads/2020/05/bg.jpg
IP 89.46.110.20:0
GET /web/wp-content/uploads/2020/05/bg.jpg HTTP/1.1
Host: saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 301 Moved Permanently
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/html
location: https://www.saporicondivisi.com/web/wp-content/uploads/2020/05/bg.jpg
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A400%7CDroid+Serif%3A400%7COpen+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=10.3.7
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins%3A400%7CDroid+Serif%3A400%7COpen+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=10.3.7
IP 142.250.74.10:0
GET /css?family=Poppins%3A400%7CDroid+Serif%3A400%7COpen+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=10.3.7 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 16:04:18 GMT
date: Mon, 28 Nov 2022 16:04:18 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 06 Nov 2021 09:41:36 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 89.46.110.20:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 06 Nov 2021 09:41:36 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0
IP 89.46.110.20:0
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.7.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:21 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0
IP 89.46.110.20:0
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.7.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:21 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
IP 89.46.110.20:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 06 Nov 2021 09:41:36 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 06 Nov 2021 09:41:35 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=6.7.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:20 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_woocommerce.css?ver=5.8.6
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_woocommerce.css?ver=5.8.6
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_woocommerce.css?ver=5.8.6 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 23 Oct 2020 23:30:31 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-cloud-library/assets/css/tdb_less_front.css?ver=53f7b7675c3127e69efacf5620821cc8
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-cloud-library/assets/css/tdb_less_front.css?ver=53f7b7675c3127e69efacf5620821cc8
IP 89.46.110.20:0
GET /wp-content/plugins/td-cloud-library/assets/css/tdb_less_front.css?ver=53f7b7675c3127e69efacf5620821cc8 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 24 Oct 2020 08:53:51 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-admin/admin-ajax.php?td_theme_name=Newspaper&v=10.3.7
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-admin/admin-ajax.php?td_theme_name=Newspaper&v=10.3.7
IP 89.46.110.20:0
POST /wp-admin/admin-ajax.php?td_theme_name=Newspaper&v=10.3.7 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 51
Origin: https://www.saporicondivisi.com
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Origin
access-control-allow-origin: https://www.saporicondivisi.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.8.3 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:33 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=a658a28d2ec596dae36323688c6c3eb8
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=a658a28d2ec596dae36323688c6c3eb8
IP 89.46.110.20:0
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=a658a28d2ec596dae36323688c6c3eb8 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 23 Oct 2020 23:30:31 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=403b2dc7f9eb8aa26884edcb2afa1fce
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=403b2dc7f9eb8aa26884edcb2afa1fce
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=403b2dc7f9eb8aa26884edcb2afa1fce HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 24 Oct 2020 08:56:07 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.6
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.6
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=10.6 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 02 Feb 2022 18:35:34 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=53f7b7675c3127e69efacf5620821cc8
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=53f7b7675c3127e69efacf5620821cc8
IP 89.46.110.20:0
GET /wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=53f7b7675c3127e69efacf5620821cc8 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 24 Oct 2020 08:53:51 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/web/wp-content/uploads/2020/05/bg.jpg
89.46.110.20404 Not Found 0 B URL HTTP/2 www.saporicondivisi.com/web/wp-content/uploads/2020/05/bg.jpg
IP 89.46.110.20:0
GET /web/wp-content/uploads/2020/05/bg.jpg HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.saporicondivisi.com/
Connection: keep-alive
Cookie: tk_or=%22%22; tk_r3d=%22%22; tk_lr=%22%22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 404 Not Found
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:22 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.saporicondivisi.com/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
X-Firefox-Spdy: h2
stats.wp.com/s-202248.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /s-202248.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-2494"
content-encoding: br
expires: Mon, 27 Nov 2023 17:55:51 GMT
cache-control: max-age=31536000
x-nc: HIT arn
X-Firefox-Spdy: h2
stats.wp.com/e-202248.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202248.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Mon, 20 Nov 2023 01:50:03 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=6.7.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:20 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/themes/Newspaper/style.css?ver=10.3.7
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/themes/Newspaper/style.css?ver=10.3.7
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Newspaper/style.css?ver=10.3.7 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 23 Oct 2020 23:30:10 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/js/underscore.min.js?ver=1.13.1
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/js/underscore.min.js?ver=1.13.1
IP 89.46.110.20:0
GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 06 Nov 2021 09:41:36 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=6.7.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:20 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/themes/Newspaper/images/icons/newspaper.woff?19
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/themes/Newspaper/images/icons/newspaper.woff?19
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Newspaper/images/icons/newspaper.woff?19 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.saporicondivisi.com/wp-content/themes/Newspaper/style.css?ver=10.3.7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:19 GMT
content-type: font/woff
content-length: 125164
last-modified: Fri, 23 Oct 2020 23:30:09 GMT
accept-ranges: bytes
x-servername: ipvsproxy209.ad.aruba.it
X-Firefox-Spdy: h2
www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/ HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-pingback: https://www.saporicondivisi.com/xmlrpc.php
link: <https://www.saporicondivisi.com/wp-json/>; rel="https://api.w.org/", <https://www.saporicondivisi.com/wp-json/wp/v2/posts/34108>; rel="alternate"; type="application/json", <https://www.saporicondivisi.com/?p=34108>; rel=shortlink
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 08 Jun 2019 00:15:02 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/includes/demos/recipes/demo_style.css?ver=10.3.7
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-composer/legacy/Newspaper/includes/demos/recipes/demo_style.css?ver=10.3.7
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/td-composer/legacy/Newspaper/includes/demos/recipes/demo_style.css?ver=10.3.7 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 23 Oct 2020 23:30:35 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0
IP 89.46.110.20:0
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.7.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:21 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
IP 89.46.110.20:0
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:19:01 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3
IP 89.46.110.20:0
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.8.3 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 18 Jul 2022 17:20:33 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=a658a28d2ec596dae36323688c6c3eb8
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=a658a28d2ec596dae36323688c6c3eb8
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=a658a28d2ec596dae36323688c6c3eb8 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 23 Oct 2020 23:30:38 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/themes/Newspaper/style-woocommerce.css?ver=10.3.7
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/themes/Newspaper/style-woocommerce.css?ver=10.3.7
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Newspaper/style-woocommerce.css?ver=10.3.7 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 23 Oct 2020 23:30:10 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.2.0 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sun, 17 May 2020 09:17:49 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
www.saporicondivisi.com/wp-includes/js/wp-embed.min.js?ver=5.8.6
89.46.110.20200 OK 0 B URL HTTP/2 www.saporicondivisi.com/wp-includes/js/wp-embed.min.js?ver=5.8.6
IP 89.46.110.20:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.8.6 HTTP/1.1
Host: www.saporicondivisi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saporicondivisi.com/made-in-irpinia-la-pasta-a-mano-e-la-tarantella-di-montemarano-martedi-7/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Mon, 28 Nov 2022 16:04:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 15 Apr 2021 12:04:17 GMT
x-servername: ipvsproxy209.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2