r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10831
Expires: Fri, 03 Feb 2023 01:18:44 GMT
Date: Thu, 02 Feb 2023 22:18:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8769
Expires: Fri, 03 Feb 2023 00:44:22 GMT
Date: Thu, 02 Feb 2023 22:18:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 21:36:07 GMT
content-type: application/json
age: 2526
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8220
Expires: Fri, 03 Feb 2023 00:35:13 GMT
Date: Thu, 02 Feb 2023 22:18:13 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +Tp8wNCtOUapff9CqGJI8XPG6S8Q4wd8PvvWBR4RC35Wt8IUu2S3CcxxLYfgHkLj3O3mpEdDvNw=
x-amz-request-id: YRDGTBNWZA5FQGXA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 21:23:16 GMT
age: 3297
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 22:18:13 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
residenzabistrotdevenise.com/xdce/xles/host/login.php
51.38.245.10301 Moved Permanently 0 B URL HTTP/1.1 residenzabistrotdevenise.com/xdce/xles/host/login.php
IP 51.38.245.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /xdce/xles/host/login.php HTTP/1.1
Host: residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 22:18:13 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 0
Keep-Alive: timeout=5, max=150
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 22:07:19 GMT
age: 655
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16014
Expires: Fri, 03 Feb 2023 02:45:08 GMT
Date: Thu, 02 Feb 2023 22:18:14 GMT
Connection: keep-alive
www.residenzabistrotdevenise.com/xdce/xles/host/login.php
51.38.245.10404 Not Found 54 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/xdce/xles/host/login.php
IP 51.38.245.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash e85f4bd87115be1f40dc409659dcf1d2
10a14df705a0b62ec904d97a0b389de847018684
65655d481db2a19bd212f66089399d9abae773959647d4ec3172536ee28ecca8
Analyzer Verdict Alert fortinet Phishing
GET /xdce/xles/host/login.php HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.residenzabistrotdevenise.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=150
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.residenzabistrotdevenise.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
51.38.245.10200 OK 12 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 51.38.245.10:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Wed, 16 Nov 2022 00:39:57 GMT
ETag: "172a9-5ed8bb641652d-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 12518
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-includes/css/classic-themes.min.css?ver=1
51.38.245.10200 OK 189 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/css/classic-themes.min.css?ver=1
IP 51.38.245.10:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 25 Oct 2022 13:45:16 GMT
ETag: "d9-5ebdc1e39f300-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 189
Keep-Alive: timeout=5, max=150
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
51.38.245.10200 OK 5.0 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 51.38.245.10:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
ETag: "48b9-5dc6eb878efc0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 5009
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5
51.38.245.10200 OK 953 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5
IP 51.38.245.10:0
Hash c503abd9f9fe09d22b59cb1fb0a292a8
a75f1bde1d2da3a4696a8e027eeaae4e96d21fec
56ea4b514650d10a9c4756a2eb1e4d292d138725164eec8c8ef004ceda2fece7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.5 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 07 Nov 2022 08:03:17 GMT
ETag: "c22-5ecdcdb22bb40-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 953
Keep-Alive: timeout=5, max=150
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/fontello/css/fontello.css?ver=1667808199
51.38.245.10200 OK 1.3 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/fontello/css/fontello.css?ver=1667808199
IP 51.38.245.10:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 34d949be5198db63b2dcd09bd9284657
3460268e0e426aa797c9fa6a7cb0ed11971e0066
1b90d961e7dd189de01437555b2f5755aea6ff2c13e121a6c949dd26e8a34d47
GET /wp-content/themes/kreativa/css/fonts/fontello/css/fontello.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:04 GMT
ETag: "1241-5eb4ad4367800-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1307
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
51.38.245.10200 OK 972 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 51.38.245.10:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 08:03:15 GMT
ETag: "aab-5ecdcdb0436c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 972
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.min.css?ver=1
51.38.245.10200 OK 535 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.min.css?ver=1
IP 51.38.245.10:0
File type ASCII text, with very long lines (1716), with no line terminators
Hash 7a33a4ed255811c86959f0619dc602e2
af62f29a6ab9856daa46c81d38249b90b0fd48d8
3652e0086805a32ec3557dd39b9d22ba37ce66ba48fd43e7afa572df570ca00a
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/style.min.css?ver=1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 07 Nov 2022 08:32:38 GMT
ETag: "6b4-5ecdd44197580-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 535
Keep-Alive: timeout=5, max=150
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.1
51.38.245.10200 OK 12 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.1
IP 51.38.245.10:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 4d1fdb294899532f13e6fac871f81774
cbcf39d1d6b3d960e67eae53e72047a4f6f065c0
3ff5f2f1445c8d4b86d5db0ad49335f85fa1c8e70cac2bc5807c79622b1f3f21
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.1.1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 17 Oct 2022 15:15:01 GMT
ETag: "d5ed-5eb3c70778740-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 11647
Keep-Alive: timeout=5, max=150
Content-Type: text/css
fonts.googleapis.com/css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CNunito%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CPT+Mono&ver=1.0.0
142.250.74.106200 OK 1.6 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CNunito%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CPT+Mono&ver=1.0.0
IP 142.250.74.106:0
Hash b38f32476bb5f76eb1f0ad76e858eb7f
fc74d7fd9b1fa821341ff54902a0f70a288ecfd9
f4abf0e05370170a62bcf303e1c1bc38d301ae63151e308c8cb6d7769bf40510
GET /css?family=Open+Sans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%7CNunito%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CPT+Mono&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 02 Feb 2023 22:18:14 GMT
Date: Thu, 02 Feb 2023 22:18:14 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.residenzabistrotdevenise.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.min.css?ver=1
51.38.245.10200 OK 318 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.min.css?ver=1
IP 51.38.245.10:0
File type ASCII text, with very long lines (907)
Hash 7069bf4cc8dca7a09fc9c2d5f0ea33e8
9b00b8c4c084470e238b66d86392ec554a36551c
a3e23eaf5e307c0df6dc6d7533501173b393d967d562785130228e40a31a3730
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-list-horizontal/style.min.css?ver=1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 08:32:38 GMT
ETag: "38c-5ecdd44197580-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 318
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css?ver=1.5.5
51.38.245.10200 OK 933 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css?ver=1.5.5
IP 51.38.245.10:0
Hash cb13db3c09d0076dc19a1dbf520c7827
c01159a4163902f3dc824ffade25949d3a9a4097
039804219c46536ac7cdc83d30e672a0467df803c5348a5733e18a687dc828b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpml-cms-nav/res/css/cms-navigation-base.css?ver=1.5.5 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 15:13:12 GMT
ETag: "bbc-5eb3c69f85200-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 933
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-includes/css/dashicons.min.css?ver=6.1.1
51.38.245.10200 OK 36 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/css/dashicons.min.css?ver=6.1.1
IP 51.38.245.10:0
File type ASCII text, with very long lines (58981)
Hash 00492d322e5572c7abc3e8701b6c52c1
0802ac2c8280ce7c98af881b1d49ec682acbf314
8bc01632cbc3ab834e04141d444ff82b05a4691444d70a9860477710e330b824
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 03 Mar 2021 21:16:22 GMT
ETag: "e688-5bca85cdbf580-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 35730
Keep-Alive: timeout=5, max=150
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/owlcarousel/owl.carousel.css?ver=1667808199
51.38.245.10200 OK 1.8 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/owlcarousel/owl.carousel.css?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash 4a4f92ef01194662f414633a6d22aa6f
47e1ed42cf4c4454e317acae767dedf9a24fc0a5
a8a037e3ca47137be06bd71dca2864ba6a4f99375e299be87e3e53a131abbece
GET /wp-content/themes/kreativa/css/owlcarousel/owl.carousel.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:12 GMT
ETag: "1dd6-5eb4ad4b08a00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1846
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css?ver=1.5.5
51.38.245.10200 OK 645 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css?ver=1.5.5
IP 51.38.245.10:0
Hash c98f02f1afd562a7288aa2dc828e6186
d0f42b73794b0d3ffb9e3eb2d79218d14c40dc88
9fb5a2a2bea5341dd17ec72403d66f0903278030092ae829fe6bb4e23e6af725
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpml-cms-nav/res/css/cms-navigation.css?ver=1.5.5 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 15:13:12 GMT
ETag: "946-5eb3c69f85200-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 645
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/css/lg-transitions.min.css?ver=1667808199
51.38.245.10200 OK 1.9 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/css/lg-transitions.min.css?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (39108), with no line terminators
Hash 22d029fe1cae2ea0c4ce1c58a04b24b2
1588d288217c52f18c98ee317168c35cd45e0cf5
2fd59850b451f904eac0077bf5268d645d3898f0fd0d4ccbd60415e159104d87
GET /wp-content/themes/kreativa/js/lightbox/css/lg-transitions.min.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:24 GMT
ETag: "98c4-5eb4ad567a500-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1930
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/css/lightgallery.css?ver=1667808199
51.38.245.10200 OK 4.1 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/css/lightgallery.css?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash 86bd3619b75c7510f614eebad4f957a9
8ca6e43b189b05aced96c1216ff9c969db1cce8a
478e30029dc744aa17e24eb68f5b80e9f7e50193fdf023e223f241643f09148c
GET /wp-content/themes/kreativa/js/lightbox/css/lightgallery.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:22 GMT
ETag: "62b7-5eb4ad5492080-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 4117
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/animations.css?ver=1667808199
51.38.245.10200 OK 6.2 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/animations.css?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash 9e8b67b6642f985463dcb74a01b9a12c
d738b0a7d6661547b0563eb4a68ea906c9c82766
85518e20c96054cdc58a520d0260ddb0a97b5d3eefa5d34b9d68fb014e3297ff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/css/animations.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:02 GMT
ETag: "17d1b-5eb4ad417f380-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 6209
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
51.38.245.10200 OK 7.1 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 51.38.245.10:0
File type ASCII text, with very long lines (30837)
Hash 52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 15:30:54 GMT
ETag: "7918-5eb3ca9452780-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 7053
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/ionicons/css/ionicons.min.css?ver=1667808199
51.38.245.10200 OK 8.3 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/ionicons/css/ionicons.min.css?ver=1667808199
IP 51.38.245.10:0
File type Unicode text, UTF-8 text, with very long lines (50806), with CRLF line terminators
Hash fdd8c576841674295fb17a889eb46c93
cd1df0fdae9d94e9a09139c1a10e18e8b17b98fc
2084acf013ffb1ca7aa1e3442bb09aef9a7963d6b83e3fbb3cf4744356e22c45
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/css/fonts/ionicons/css/ionicons.min.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:04 GMT
ETag: "c85f-5eb4ad4367800-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 8293
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
44.240.124.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.124.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PBkJRFg81t+9OW/iO9FpgQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f7hEzh1hhw3NVqy+PiR/LkjBqcE=
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/et-fonts/et-fonts.css?ver=1667808199
51.38.245.10200 OK 1.7 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/et-fonts/et-fonts.css?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (1812), with CRLF line terminators
Hash 995b8d605afa313e2a543699269b2512
6637dfe712af52aef9bc54599a256462fce19050
ade55114553aa2dc418b170ddad2e148c8a9320c1a2beb6e750ecd08086f0cc5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/css/fonts/et-fonts/et-fonts.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:06 GMT
ETag: "1f3e-5eb4ad454fc80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1671
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5
51.38.245.10200 OK 4.4 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5
IP 51.38.245.10:0
Hash 6ccc50d8058f37c03eea10782430638c
f9aced9bc0c8286be877fc48a10ae37fdcc2269c
534cd08c1ea0eaeebe1ba35b004f2a17d329a1d20c0b398785c4714458834b15
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.5 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 08:03:17 GMT
ETag: "6a71-5ecdcdb22bb40-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 4395
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8
51.38.245.10200 OK 825 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8
IP 51.38.245.10:0
Hash 4e5fc2738089cf2f5aac0828bec0c9d1
7595aff2418760fbf85a0cbaba80fdd239b6a090
bf9ee707e334e9fcaf4bab6571b9d99dbbff1bbd9efebdd3afce9532ac0439b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 07:24:31 GMT
ETag: "d0f-5eb49fbab49c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 825
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/feather-webfont/feather.css?ver=1667808199
51.38.245.10200 OK 1.4 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/feather-webfont/feather.css?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash 9da3f5d29806afe5615f76ffc94d88ae
b787a26916f9d76ba93bf53e088fe2c29e42308c
5de448609e2d0d8838a8dde4ea2cc0522b7f9a4eb75ae8a89010fad91081dc02
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/css/fonts/feather-webfont/feather.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:06 GMT
ETag: "224c-5eb4ad454fc80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1406
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/style.css?ver=1667808199
51.38.245.10200 OK 82 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/style.css?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash 3983ed6b0201286377c7ee69df6247c6
715c920880771d98eb5b1b8557af5f426c601dac
2a82938c63c678be2ff15dbf4a58559f18bcebda8c6838d2179b4d2236410dfa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/style.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:24:42 GMT
ETag: "87e8d-5eb4ad2e6c680-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/simple-line-icons/simple-line-icons.css?ver=1667808199
51.38.245.10200 OK 2.3 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/simple-line-icons/simple-line-icons.css?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (3572), with CRLF line terminators
Hash d5a71d90c130953e3fbe98704f7a8403
829c241cc242a561be7fcdde1d1955de026c0f2d
2118f01165739e8a5fc0a438c1d412423ba716dae80391987f2c9130ed163026
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/css/fonts/simple-line-icons/simple-line-icons.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:10 GMT
ETag: "334d-5eb4ad4920580-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 2323
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/responsive.css?ver=1667808199
51.38.245.10200 OK 17 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/responsive.css?ver=1667808199
IP 51.38.245.10:0
File type assembler source, ASCII text, with CRLF line terminators
Hash f0912639e983259626f3ac1bb0c44477
88a0768ed34cb8434f3f3f28a40afffc3e89fb1d
15b83ab31ef8e6e748650fd851e4b45b9b2988e01c6f23060745a49dbe6d1af8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/css/responsive.css?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:02 GMT
ETag: "26c11-5eb4ad417f380-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 16927
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: text/css
www.residenzabistrotdevenise.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
51.38.245.10200 OK 4.2 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 51.38.245.10:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
ETag: "2bd8-5b45debe27b80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 4169
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5
51.38.245.10200 OK 7.5 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5
IP 51.38.245.10:0
Hash 99b4ce14b33b03419e3809847af3fda7
aa0f15bb8b70726fd61c06e61faab08a6c758929
7994c287f4a7d3dfaa71f5eafdec1bd8341955b53b1ae2489772ac36e5f6a825
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.5 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 08:03:17 GMT
ETag: "8583-5ecdcdb22bb40-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 7526
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
51.38.245.10200 OK 51 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0
IP 51.38.245.10:0
File type ASCII text, with very long lines (32005)
Hash 1a8fd8d538b18e0925c0528f33b600b2
8f9f318eb5b1c1e0941912a179a942c01e729ef3
8f8cb24761cb88066f85f24729bfdceae138eb465c4652f3ec96ee443ee6dea5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/revolution.tools.min.js?ver=6.0 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 15:15:01 GMT
ETag: "24b1d-5eb3c70778740-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 50565
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js?ver=1
51.38.245.10200 OK 274 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js?ver=1
IP 51.38.245.10:0
File type ASCII text, with very long lines (409), with no line terminators
Hash 2060dd6c2e71d51ea5c5a9a4da3b8c67
9fe97c6f19329325a1e65e4dab388278a32e62f4
ad314087e79897d44b41bdb2fd4461cc0fae4fbc4aa73e75fd846ff45b0f061c
GET /wp-content/plugins/sitepress-multilingual-cms/templates/language-switchers/legacy-dropdown/script.min.js?ver=1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 08:32:38 GMT
ETag: "199-5ecdd44197580-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 274
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
51.38.245.10200 OK 31 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 51.38.245.10:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 19 Sep 2022 14:16:24 GMT
ETag: "15e54-5e9085b47de00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 30995
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
51.38.245.10200 OK 2.9 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 51.38.245.10:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 8189a6a3f3f0efc64f857fe869d3729b
bc84b1c1e96a26fd6595da0cb024aad989c1f331
e2683386c2d5a8b3280fa9920d22fedb31a33a8bdca8ec494d3fe4df9fc6b337
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 08:03:15 GMT
ETag: "26d1-5ecdcdb0436c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 2937
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
51.38.245.10200 OK 4.0 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 51.38.245.10:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 832eeb1fd498e5839b89bfb5f05a2f0d
cf2d8668aecc5033346ac2906bb8bf7e143cfa4a
35b2b27ba0ba63c065e4c67d15b7cb1878b5868d7f475cc7f6f1724d3988793a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 08:03:15 GMT
ETag: "3016-5ecdcdb0436c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 3957
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/menu/superfish.js?ver=1667808199
51.38.245.10200 OK 2.6 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/menu/superfish.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash a57667baba4f63a959b6d5d5b6a2ca49
b2d25d2aca4aa8a855a6cf6d4016c00597604586
37a1a81f55141e029edf3b6af8d106bcf0a6e94ccaee49209b9e70102233e75f
GET /wp-content/themes/kreativa/js/menu/superfish.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:26 GMT
ETag: "24af-5eb4ad5862980-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 2590
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/menu/verticalmenu.js?ver=1667808199
51.38.245.10200 OK 1.8 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/menu/verticalmenu.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash 0808679a83ab22f3ec683305a125b3b1
1b5924f738998e6bb76e2d11836df472e7866788
222c7ff0357b7422b53deae3b29c5e3808dd0a7f697616fbe4e267ff5a75889e
GET /wp-content/themes/kreativa/js/menu/verticalmenu.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:26 GMT
ETag: "145f-5eb4ad5862980-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1815
Keep-Alive: timeout=5, max=141
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.easing.min.js?ver=1667808199
51.38.245.10200 OK 1.9 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.easing.min.js?ver=1667808199
IP 51.38.245.10:0
File type ISO-8859 text, with very long lines (3601), with CRLF line terminators
Hash 84c016be5115f70f65fe7e4fd86d7533
e719e56611e6d1208626a118b94ece811fa5ee0d
546f325b5ec52aa50b15eac4accb4554469183434d4e9a67d76650284e4e6983
GET /wp-content/themes/kreativa/js/jquery.easing.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:14 GMT
ETag: "1bcc-5eb4ad4cf0e80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1891
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.nicescroll.min.js?ver=1667808199
51.38.245.10200 OK 28 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.nicescroll.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash 608e4a034b433420dea0c55c062a34c7
cbd48d8dc19da6f68b8984f4557fcde3f975d5ac
a351872c1bb52429b2c62b9c88c177b2e3bb3c2a1cb71fa87cf2a3644fddd999
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/jquery.nicescroll.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:14 GMT
ETag: "20e76-5eb4ad4cf0e80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 27607
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/page-elements.js?ver=1667808199
51.38.245.10200 OK 7.7 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/page-elements.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (1997), with CRLF line terminators
Hash 1461fd0a1e623546fea1998d3e93590b
1c325a2386edf0ca274ac1e3698470994ddd6351
66ac892b4cd38ceb1dc94e1e3bc3c206b8614598bf9278a5f4ddbe44028ad9ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/page-elements.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:12 GMT
ETag: "930c-5eb4ad4b08a00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 7654
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.fitvids.js?ver=1667808199
51.38.245.10200 OK 1.2 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.fitvids.js?ver=1667808199
IP 51.38.245.10:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 537404361de0360b600d77e6a6eff49e
974b4c85afc54cf279f6652a7688dd52c11794a5
9f539d2581101af9b613530fc6a373e81af8bee0043acae05dda5aa09bb46158
GET /wp-content/themes/kreativa/js/jquery.fitvids.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:12 GMT
ETag: "cb9-5eb4ad4b08a00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1200
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/waypoints/waypoints.min.js?ver=1667808199
51.38.245.10200 OK 3.8 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/waypoints/waypoints.min.js?ver=1667808199
IP 51.38.245.10:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 46f9d24405b0769e2ba07f9d9fb90682
9a1e443ede9efe474a92ea6729c9e9d960730f61
a1e38bf96674c62d71385decaca87f11ae9c96b56318da71b06cdfa973c4a50d
GET /wp-content/themes/kreativa/js/waypoints/waypoints.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:28 GMT
ETag: "4dcd-5eb4ad5a4ae00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 3753
Keep-Alive: timeout=5, max=140
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
51.38.245.10200 OK 7.1 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 51.38.245.10:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash fc922a895f5f92269c928556b67564f6
8759e1f16a826dd6dd73f4161a65a79a049c4d6f
d7445c88608e9da487d81ef5167866c42ff1099b5f48efda4b5f5ac41aa7d9b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 19:55:30 GMT
ETag: "53c0-5e95d8f5cb080-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 7097
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
51.38.245.10200 OK 706 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 51.38.245.10:0
File type ASCII text, with very long lines (1464)
Hash e26e2ba5d82da6211e981bf0e962fe00
ca7358efdb6852cfb78ec32383eaef15ac6cb61b
400f6ae8a00e7eabb07284d8cd8715579e9a3721fa463e508b5d40b83cde1447
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
ETag: "5db-5dc2a2438e980-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 706
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/owlcarousel/owl.carousel.min.js?ver=1667808199
51.38.245.10200 OK 11 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/owlcarousel/owl.carousel.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (32000), with CRLF line terminators
Hash 4eb0a76cc9de7e42f1218ecb2f3ebadb
d179dcc9e58012f3b921551723f3c6b514d724ee
f86d79afdc65b4913382fbd09ad8db86d9100f1858530fc451c11ea6e4e904af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/owlcarousel/owl.carousel.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:18 GMT
ETag: "a714-5eb4ad50c1780-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 10933
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2
51.38.245.10200 OK 2.2 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2
IP 51.38.245.10:0
File type ASCII text, with very long lines (6004)
Hash e0ca683a27c7b3d90555c2c6437fde48
4778ab08adae7336ea63f585a24e9606208e87a2
547ceacdb3986be2a8d7ac5ca67d424900e05638429d2805b1b5b852bf3b0f33
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 19 Sep 2022 18:04:09 GMT
ETag: "1828-5e90b89c73840-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 2158
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.gridrotator.js?ver=1667808199
51.38.245.10200 OK 5.7 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.gridrotator.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash de8b960c36695264bca06043ba595ea9
8c083d1823ce192888cba8c94305d112a8bf69af
4ba71032551ea477f7423a2e7714c7b9a97885c369bb79581a2529aced904a15
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/jquery.gridrotator.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:14 GMT
ETag: "4eb4-5eb4ad4cf0e80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 5679
Keep-Alive: timeout=5, max=139
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/classie.js?ver=1667808199
51.38.245.10200 OK 690 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/classie.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with CRLF line terminators
Hash 0d51d9d446a7ca9ac883d68645eedd0b
5a739b2e21cf3cfd5a21499a6c1284cb296b9ec1
bb508602293b9ab7463df4559cb5ac2d5540344e7aca310af546066372619890
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/classie.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:14 GMT
ETag: "77b-5eb4ad4cf0e80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 690
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-video.min.js?ver=1667808199
51.38.245.10200 OK 1.7 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-video.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (5486), with CRLF line terminators
Hash 0815779a324ded1ec67d59948e1eaf7a
f84093fa50fd94f30275413ba1e7d8ef8be10071
8cfc666c108b9b07afaa1faccd395f2a58495ff5b42a0adc9957324116f67359
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/lightbox/js/lg-video.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:24 GMT
ETag: "15f3-5eb4ad567a500-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1749
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lightgallery.min.js?ver=1667808199
51.38.245.10200 OK 5.5 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lightgallery.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (17933), with CRLF line terminators
Hash a2ed2648e4d9fb9f9511bd018569822d
4a54f305b5d750d23dd33caad6dc23807342a63a
e946a27b2164eab489c425bfbcfa34e8ec4541bfaf524abdfcf13a6c886bee03
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/lightbox/js/lightgallery.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:24 GMT
ETag: "4697-5eb4ad567a500-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 5464
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jarallax/jarallax.js?ver=1667808199
51.38.245.10200 OK 9.5 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jarallax/jarallax.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (489), with CRLF line terminators
Hash bc6298ca41acc6972ca3fae1e783233b
f5b50f4c0589095b6d078924535ed0f0a615647e
cbf931b882d3b462a830b1dc7a51a00ea4c0b2e7393076fdcb9503de173cb3b9
GET /wp-content/themes/kreativa/js/jarallax/jarallax.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:16 GMT
ETag: "95c1-5eb4ad4ed9300-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 9452
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-autoplay.min.js?ver=1667808199
51.38.245.10200 OK 1.1 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-autoplay.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (2825), with CRLF line terminators
Hash 139b9964745f7a7f1838023782a15b06
b8100c6a74646677a4326c9eb31dc116e36171ba
8d436e3df5cf54c4adba2d1011c7ad79e9d5f24c112ccf7c9c94da4d2641a6dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/lightbox/js/lg-autoplay.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:24 GMT
ETag: "b91-5eb4ad567a500-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 1051
Keep-Alive: timeout=5, max=141
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-zoom.min.js?ver=1667808199
51.38.245.10200 OK 2.1 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-zoom.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (6651), with CRLF line terminators
Hash dfeade4cedadb2031c230aab7d6f9ba3
b5ea68c6c3f408e42fb39dcad54a7a76bfbb50c0
3fea0af0fde45d613411a1bf18197d7fb2c05ca067ff766a959ecb882b9b22a9
GET /wp-content/themes/kreativa/js/lightbox/js/lg-zoom.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:24 GMT
ETag: "1a7f-5eb4ad567a500-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 2092
Keep-Alive: timeout=5, max=138
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/common.js?ver=1667808199
51.38.245.10200 OK 13 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/common.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (1997), with CRLF line terminators
Hash a38dcb62de1592063bdb658d12a2287b
5819ab807d2cb689e304e2ef41d21d3c8ccc9e37
73b5358f3babedfde1ba7c2f757deab8a3b8e405ab9fb03105755c1cda99eb00
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/common.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:14 GMT
ETag: "10aa3-5eb4ad4cf0e80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 12619
Keep-Alive: timeout=5, max=141
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-thumbnail.min.js?ver=1667808199
51.38.245.10200 OK 2.4 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-thumbnail.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (7326), with CRLF line terminators
Hash 9d8a8fdeb84a6683ac5b26e2bec46d93
598b597b98a32c7eaccff4cd9b9697d3c579da0f
b447c72d3a75a8fe4b3952a2c2ca4c93f6b5573d902f652e691678392cdddd04
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/lightbox/js/lg-thumbnail.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:24 GMT
ETag: "1d27-5eb4ad567a500-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 2371
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-fullscreen.min.js?ver=1667808199
51.38.245.10200 OK 717 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/lightbox/js/lg-fullscreen.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (1856), with CRLF line terminators
Hash dc29699d8d09806b0a5730ba16f8deb7
f2ac3988a9b04d1735604e41a8f052b85439b3d6
5e19a4d45eadc836d73ad1d559c7b69d7986ee9f3bf8a6c55ba84f57b029723f
GET /wp-content/themes/kreativa/js/lightbox/js/lg-fullscreen.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:24 GMT
ETag: "7ca-5eb4ad567a500-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 717
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/tilt.jquery.js?ver=1667808199
51.38.245.10200 OK 2.9 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/tilt.jquery.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (340), with CRLF line terminators
Hash 7790c5d7dd632ed9e520921a8beb15be
031b451cf2342d51448ef28630e9b24d67515494
d771b3426927ab9f274bbb35804d9e2b321a0015e352b59702c85c4714543220
GET /wp-content/themes/kreativa/js/tilt.jquery.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:14 GMT
ETag: "2fce-5eb4ad4cf0e80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 2922
Keep-Alive: timeout=5, max=142
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:18:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.residenzabistrotdevenise.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
51.38.245.10200 OK 2.5 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 51.38.245.10:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Mon, 11 Apr 2022 12:04:30 GMT
ETag: "194b-5dc5fbf1e6f80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 2457
Keep-Alive: timeout=5, max=137
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
51.38.245.10200 OK 6.5 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 51.38.245.10:0
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 287748e15cc4a588d0df39da369d9035
b02e10a775f9d6ab54d448acffbc9253e2d9bfb9
742f6e950eecbeaf0c308f5d3877e48d6d57d48b7f8bd458d81875feb4b58654
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Tue, 20 Sep 2022 15:43:29 GMT
ETag: "459f-5e91db08e6a40-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 6532
Keep-Alive: timeout=5, max=140
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
51.38.245.10200 OK 507 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4
IP 51.38.245.10:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 22f32f77e17fa7640cda0a401c2b0844
019765feeed7ea2a9e9e506ce000978ea3ecd171
269c0f075ceb9464731b25afc21ae41536b76ef76bf0cf856c42e3e6311ec6ce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.4 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 08:03:15 GMT
ETag: "3e7-5ecdcdb0436c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 507
Keep-Alive: timeout=5, max=141
Connection: Keep-Alive
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.isotope.min.js?ver=1667808199
51.38.245.10200 OK 9.9 kB URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/js/jquery.isotope.min.js?ver=1667808199
IP 51.38.245.10:0
File type ASCII text, with very long lines (32014), with CRLF line terminators
Hash 236ff5427ceb146b2091a1c821ddbfec
c01c9cce2f8c82aa78be637ec41356b40d691e5c
63098f22d732e465f44979c413739d8ea8a543781409aba527071b025c60673f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/js/jquery.isotope.min.js?ver=1667808199 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2022 08:25:14 GMT
ETag: "89fc-5eb4ad4cf0e80-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Length: 9853
Keep-Alive: timeout=5, max=140
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:18:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:18:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Lf5EM0UAAAAAIoZ7Ldbw0mwu7rGvwT7rQkfMuOL&ver=3.0
216.58.207.228200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lf5EM0UAAAAAIoZ7Ldbw0mwu7rGvwT7rQkfMuOL&ver=3.0
IP 216.58.207.228:0
File type ASCII text, with very long lines (884), with no line terminators
Hash a2ff282fc0d743d8264b769b2242caef
c9079a35d925027482596d5dfb14e8b9194d9b0d
f6ee5e20f0850b3182ffd08020836c89ee821e31b0445bfd7ca5f58eea72a474
GET /recaptcha/api.js?render=6Lf5EM0UAAAAAIoZ7Ldbw0mwu7rGvwT7rQkfMuOL&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 02 Feb 2023 22:18:15 GMT
date: Thu, 02 Feb 2023 22:18:15 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-134062077-1
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-134062077-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash dd35ca0977ea018cc19f28ca97b7d957
9a3af42aa8ef3489ac52cd3df26adf8ea2255d9e
86ce800bf83fe73cade57f628860c068c4e5a1e0f78872f3ec3b11825b1e181e
GET /gtag/js?id=UA-134062077-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 22:18:15 GMT
expires: Thu, 02 Feb 2023 22:18:15 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 21:21:20 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43940
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:18:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:18:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4dd259c96e63bb09d87b91744e316d3d
96e0bb8158e949b9056343f0bba8c57138bd7e44
d87664207ad2d905702b2581d14c3d835db178ba94d2c19d69abd2858ae7c446
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D87664207AD2D905702B2581D14C3D835DB178BA94D2C19D69ABD2858AE7C446"
Last-Modified: Tue, 31 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Fri, 03 Feb 2023 04:17:24 GMT
Date: Thu, 02 Feb 2023 22:18:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4dd259c96e63bb09d87b91744e316d3d
96e0bb8158e949b9056343f0bba8c57138bd7e44
d87664207ad2d905702b2581d14c3d835db178ba94d2c19d69abd2858ae7c446
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D87664207AD2D905702B2581D14C3D835DB178BA94D2C19D69ABD2858AE7C446"
Last-Modified: Tue, 31 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 04:18:15 GMT
Date: Thu, 02 Feb 2023 22:18:15 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:18:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.residenzabistrotdevenise.com/wp-content/uploads/2019/11/residenza-01.png
51.38.245.10200 OK 9.6 kB URL HTTP/2 www.residenzabistrotdevenise.com/wp-content/uploads/2019/11/residenza-01.png
IP 51.38.245.10:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 2c7b7b0d086e8e1c7fae5d08e4424c4a
e3ab0c51da7e9c95cd6b6ffcecde90ea0555a4d7
660a15942227a282f701a49383e6b61fe018d7a709da8e139b6816fa42758067
GET /wp-content/uploads/2019/11/residenza-01.png HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:18:15 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 17 Oct 2022 10:50:43 GMT
etag: "2589-5eb38bf41a6c0"
accept-ranges: bytes
content-length: 9609
cache-control: max-age=172800
expires: Sat, 04 Feb 2023 22:18:15 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
content-type: image/png
X-Firefox-Spdy: h2
www.residenzabistrotdevenise.com/wp-content/uploads/2019/10/logo.png
51.38.245.10200 OK 4.4 kB URL HTTP/2 www.residenzabistrotdevenise.com/wp-content/uploads/2019/10/logo.png
IP 51.38.245.10:0
File type PNG image data, 217 x 142, 8-bit colormap, non-interlaced\012- data
Hash 2907a7f4ba4fc3ddbeff5eb15608fc10
7e84e95f6422280b4372692cbbc6e5cf45880c5e
1b851718a1590f83b69f603cfb143e2af2ea4a018df1d4fef1a99983ca583f80
GET /wp-content/uploads/2019/10/logo.png HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:18:15 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 17 Oct 2022 10:50:38 GMT
etag: "1144-5eb38bef55b80"
accept-ranges: bytes
content-length: 4420
cache-control: max-age=172800
expires: Sat, 04 Feb 2023 22:18:15 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
content-type: image/png
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 232c2344bcca931f5d222bf37730af9f
7b313becb620274cb08647e7c2185f9da7293175
28aa0245821f171589f280e67d6e29e33c18d5196ef229b1504159e2f0baa626
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 00:28:28 GMT
Expires: Wed, 08 Feb 2023 00:28:27 GMT
Etag: "7b313becb620274cb08647e7c2185f9da7293175"
Cache-Control: max-age=439211,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79364d34cef6b51e-OSL
secure.bookingevolution.com/be2secure/be2.js
62.149.228.156200 OK 17 kB URL HTTP/1.1 secure.bookingevolution.com/be2secure/be2.js
IP 62.149.228.156:0
File type ASCII text, with very long lines (318)
Hash 5b5562c2d6311706ec4298a8e37393f3
3c1f2d63846f4a923414bdd0223d02f6dd7e5996
6f21e4b785156b39e0a1a39fa0c6305785090fa5bcc6bb13e96d9a3d03fe67b4
GET /be2secure/be2.js HTTP/1.1
Host: secure.bookingevolution.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Cache-Control: max-age=14400
Expires: Fri, 03 Feb 2023 02:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17212
Keep-Alive: timeout=120, max=2000
Connection: Keep-Alive
Content-Type: text/html; charset=utf-8
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 232c2344bcca931f5d222bf37730af9f
7b313becb620274cb08647e7c2185f9da7293175
28aa0245821f171589f280e67d6e29e33c18d5196ef229b1504159e2f0baa626
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 00:28:28 GMT
Expires: Wed, 08 Feb 2023 00:28:27 GMT
Etag: "7b313becb620274cb08647e7c2185f9da7293175"
Cache-Control: max-age=439211,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79364d34ea3fb518-OSL
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13038
Expires: Fri, 03 Feb 2023 01:55:33 GMT
Date: Thu, 02 Feb 2023 22:18:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13038
Expires: Fri, 03 Feb 2023 01:55:33 GMT
Date: Thu, 02 Feb 2023 22:18:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bc75469-aee4-46b2-9ae0-75869ae8bb2a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bc75469-aee4-46b2-9ae0-75869ae8bb2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 40d4165b4e6dbb637204df196545ada8
a01f74c0c2c3ec1e5e7d6498415df8fbf109ae94
25d54e72b043f2d9553be6a8dedfce3ce39df4ac2b992f7e6d32ef04e96a3266
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bc75469-aee4-46b2-9ae0-75869ae8bb2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8912
x-amzn-requestid: 4fdceb0c-8af7-4ffb-b28b-c0d9e22f2456
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpQ4KGUsoAMFlcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9fb67-68ef58c454f6bd834eb05485;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 05:40:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KqdmB4tt4CIXxWaI0S0Icx_EJiBK5KLgfUJ8K2jlkh-AgYI6S9w4lA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 1814
etag: "a01f74c0c2c3ec1e5e7d6498415df8fbf109ae94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe87e986c62630127a7fdd979c802947
28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf
770a765c927c0f81d0c41acd45a7a24f5799f9497fcc73489cab4fafbf994bdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8458d532-a4e7-4e54-9165-f01ff92729f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5256
x-amzn-requestid: 1bf5f6da-2389-4195-a2de-64ae8cf4f231
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffdtIG2KoAMFj4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d60fed-5a5300bf56a40f40118bafa9;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 06:19:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9bJhQiev2ZT8vgCtaULLUpT3V7XOY6Y3yzmWqC4zbORnOOBknR0vFA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 00:31:47 GMT
age: 78388
etag: "28ce91c8643c4bc4dcc4cd26dfc69dc6219ce5bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
secure.bookingevolution.com/be2secure/be2.css
62.149.228.156200 OK 1.4 kB URL HTTP/1.1 secure.bookingevolution.com/be2secure/be2.css
IP 62.149.228.156:0
Hash d271e12568ba0ad7da9fee243f8039ce
4bee558ad2a421009f03326b71f9d4e62199a123
586c1866cdee19ac775a65c48f0c39643f5b1f17d513ec9f160877433a7fc6c1
GET /be2secure/be2.css HTTP/1.1
Host: secure.bookingevolution.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:15 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 12:34:25 GMT
ETag: "8d6943-1331-5a85aff29b640"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Thu, 09 Feb 2023 22:18:15 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1434
Keep-Alive: timeout=120, max=2000
Connection: Keep-Alive
Content-Type: text/css
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 703c7834618fd34f3d7ce5c82a51abc0
4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c
1f467ce5825e3f8b8f841293d1ce945dc7a577abbe2cb8a2caa16ace165f4857
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3385
x-amzn-requestid: 30717e1a-7a08-4b11-90e7-cd175aa667d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzrEo4oAMF1qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce4-3bc1302b4cf47fa2520e3033;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: M1ueeOY5WmuJwPyf4dPvRrjQfTU5d2G-2T3_6fLfTI4UTjuxZ-U4ow==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:46 GMT
age: 2009
etag: "4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 1814
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a1d6fa4715c4e78250b2f72ddd2706f1
be04ac3a50aa6f1b349a2410ad386d92de3222be
d1c3c1b7016428bf2a085b71ca0d1e215a64b3d31ff15b0ef8bf5a78f11d9ae5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8543
x-amzn-requestid: 3dc0960e-97db-42c8-99ac-623a44e8bb3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuv0wGJhIAMFaTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ceb-5ad3ef033a62559762db42b9;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EKWOeGruQEm9HuSlJMiEEw_gN1p37qTTIhYqaiQ6bFaCF65kUfmMtA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:20 GMT
age: 1255
etag: "be04ac3a50aa6f1b349a2410ad386d92de3222be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpYpcELtIAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 1879
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
216.58.207.227200 OK 36 kB URL HTTP/1.1 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.residenzabistrotdevenise.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 35904
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 04:26:35 GMT
Expires: Sat, 27 Jan 2024 04:26:35 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:34:47 GMT
Content-Type: font/woff2
Age: 582700
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.residenzabistrotdevenise.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 00:41:24 GMT
Expires: Fri, 02 Feb 2024 00:41:24 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
Age: 77811
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/et-fonts/fonts/et-line.ttf
51.38.245.10200 OK 32 kB URL HTTP/2 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/et-fonts/fonts/et-line.ttf
IP 51.38.245.10:0
File type TrueType Font data, 13 tables, 1st "FFTM", 12 names, Macintosh, type 1 string\012- data
Hash 98126e3e1238b0f3b941ad285320ce28
46078417074652890e4f1e167fe3dfbcc79ca6b9
c87236b5783f4fbe582e2122775a8bec52564850060ae17250d7a4265d8d42a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/css/fonts/et-fonts/fonts/et-line.ttf HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.residenzabistrotdevenise.com
Referer: http://www.residenzabistrotdevenise.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:18:15 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 18 Oct 2022 08:25:06 GMT
etag: "7f18-5eb4ad454fc80"
accept-ranges: bytes
content-length: 32536
cache-control: max-age=172800
expires: Sat, 04 Feb 2023 22:18:15 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
content-type: font/ttf
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 21:45:20 GMT
expires: Thu, 02 Feb 2023 23:45:20 GMT
cache-control: public, max-age=7200
age: 1976
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:18:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.residenzabistrotdevenise.com/wp-content/uploads/2019/11/cropped-residenza-01-192x192.png
51.38.245.10200 OK 33 kB URL HTTP/2 www.residenzabistrotdevenise.com/wp-content/uploads/2019/11/cropped-residenza-01-192x192.png
IP 51.38.245.10:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash c98360aed4c7cfe66afc6246ab54ffa0
5e37f33bdc74d84f92916127bba9c0d5967a5b93
6509564131e5832460cb6d285641296564be67fe28c7a85a78e8ccfe78df3ddb
GET /wp-content/uploads/2019/11/cropped-residenza-01-192x192.png HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:18:16 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 17 Oct 2022 10:50:42 GMT
etag: "8065-5eb38bf326480"
accept-ranges: bytes
content-length: 32869
cache-control: max-age=172800
expires: Sat, 04 Feb 2023 22:18:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
content-type: image/png
X-Firefox-Spdy: h2
www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/et-fonts/fonts/et-line.woff
51.38.245.10200 OK 6.8 kB URL HTTP/2 www.residenzabistrotdevenise.com/wp-content/themes/kreativa/css/fonts/et-fonts/fonts/et-line.woff
IP 51.38.245.10:0
File type Web Open Font Format, CFF, length 55220, version 1.0\012- data
Hash f544d6164cc96e0a51fd241dc0fb84fd
d06834ebcd03b78f59068692648b8ccf4f7804da
7d5e54de576b28fc132d78f31b6fdc2df7920a8fcd66ff69828c12ce2a40accd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/kreativa/css/fonts/et-fonts/fonts/et-line.woff HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.residenzabistrotdevenise.com
Referer: http://www.residenzabistrotdevenise.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:18:15 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 18 Oct 2022 08:25:06 GMT
etag: "d7b4-5eb4ad454fc80"
accept-ranges: bytes
content-length: 55220
cache-control: max-age=172800
expires: Sat, 04 Feb 2023 22:18:15 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
content-type: font/woff
X-Firefox-Spdy: h2
www.residenzabistrotdevenise.com/wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0
51.38.245.10200 OK 98 kB URL HTTP/2 www.residenzabistrotdevenise.com/wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0
IP 51.38.245.10:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.residenzabistrotdevenise.com
Referer: http://www.residenzabistrotdevenise.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:18:15 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 17 Oct 2022 15:30:55 GMT
etag: "17ee8-5eb3ca95469c0"
accept-ranges: bytes
content-length: 98024
cache-control: max-age=172800
expires: Sat, 04 Feb 2023 22:18:15 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
content-type: font/woff
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
216.58.207.227200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 216.58.207.227:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.residenzabistrotdevenise.com
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 277722
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 22:18:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.residenzabistrotdevenise.com/wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0
51.38.245.10200 OK 99 kB URL HTTP/2 www.residenzabistrotdevenise.com/wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0
IP 51.38.245.10:0
File type TrueType Font data, 13 tables, 1st "FFTM"\012- data
Hash 153fa43e696d851edf337a3d978866ab
8701b3d06b7de00f447865d997d328edc6cfc5dc
01f618f8de48596ee96810c97b6da71c9942b6167d3313639b48f15a2c8b0df0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.residenzabistrotdevenise.com
Referer: http://www.residenzabistrotdevenise.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:18:16 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 17 Oct 2022 15:30:55 GMT
etag: "286ac-5eb3ca95469c0"
accept-ranges: bytes
content-length: 165548
cache-control: max-age=172800
expires: Sat, 04 Feb 2023 22:18:16 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
content-type: font/ttf
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 1813
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 16:40:43 GMT
expires: Fri, 02 Feb 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 20253
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a53e95-81db-4f71-84bc-169a72e11b24.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a53e95-81db-4f71-84bc-169a72e11b24.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4242d4999b7b033873b81a482c319c2
bc4c004065ce9f558f210d508844c123a85737a1
ab35a5c1a7c1a0a548aee3b9c301893799680ec1922c13e7a16d44ca457cd91d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91a53e95-81db-4f71-84bc-169a72e11b24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7237
x-amzn-requestid: f6aa0d26-8df4-40fe-8984-1aac7c76097e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVr4jEdeIAMFTYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2269c-58a038d6491d8f461e9168d4;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:07:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XNO6ArxsjiZTxcoSn1Fmhso5bpWNIvzT9nplF6UGTiHVxXlJiv7bJA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:58:40 GMT
age: 1182
etag: "bc4c004065ce9f558f210d508844c123a85737a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display:400,400i,700|Cormorant+Garamond:400,600&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display:400,400i,700|Cormorant+Garamond:400,600&display=swap
IP 142.250.74.106:0
GET /css?family=Playfair+Display:400,400i,700|Cormorant+Garamond:400,600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 22:18:15 GMT
date: Thu, 02 Feb 2023 22:18:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.residenzabistrotdevenise.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.1
51.38.245.10200 OK 0 B URL HTTP/1.1 www.residenzabistrotdevenise.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.1
IP 51.38.245.10:0
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.1.1 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.residenzabistrotdevenise.com/xdce/xles/host/login.php
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 22:18:14 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 15:15:02 GMT
ETag: "415b1-5eb3c7086c980-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=172800
Expires: Sat, 04 Feb 2023 22:18:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.residenzabistrotdevenise.com/wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
51.38.245.10200 OK 0 B URL HTTP/2 www.residenzabistrotdevenise.com/wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 51.38.245.10:0
GET /wp-content/plugins/types/vendor/toolset/toolset-common/res/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.residenzabistrotdevenise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.residenzabistrotdevenise.com
Referer: http://www.residenzabistrotdevenise.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 22:18:15 GMT
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 17 Oct 2022 15:30:55 GMT
etag: "12d68-5eb3ca95469c0"
accept-ranges: bytes
content-length: 77160
cache-control: max-age=172800
expires: Sat, 04 Feb 2023 22:18:15 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
content-type: font/woff2
X-Firefox-Spdy: h2