r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2567
Expires: Fri, 24 Mar 2023 16:22:59 GMT
Date: Fri, 24 Mar 2023 15:40:12 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4361
Expires: Fri, 24 Mar 2023 16:52:53 GMT
Date: Fri, 24 Mar 2023 15:40:12 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18172
Expires: Fri, 24 Mar 2023 20:43:04 GMT
Date: Fri, 24 Mar 2023 15:40:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Mar 2023 15:27:38 GMT
content-type: application/json
age: 754
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 163bVQWygz7hph8W/BjFlg5qQwQkUgiMq1luGQP8EIZM/xKYfXOrS0vHTk8JrIJtQsmJjiISMTngoZQpcFgSQQ==
x-amz-request-id: PW66YMGYHFKB5ESW
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Mar 2023 14:54:32 GMT
age: 2740
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 15:40:12 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
giannobile.eu/
185.81.4.195301 Moved Permanently 0 B IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 24 Mar 2023 15:40:12 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.giannobile.eu/
Content-Length: 0
Keep-Alive: timeout=1, max=100
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 66e759604764d625d78f0f29614c54cd
87762ff1782714a541aeb65051603e4e41f68bc1
1f64a6702d18cf96ea245a1a7e21dfd6a974cf4acceb1ddc43fb0cc2a2f23b78
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F64A6702D18CF96EA245A1A7E21DFD6A974CF4ACCEB1DDC43FB0CC2A2F23B78"
Last-Modified: Thu, 23 Mar 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Fri, 24 Mar 2023 21:39:24 GMT
Date: Fri, 24 Mar 2023 15:40:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 24 Mar 2023 15:14:33 GMT
age: 1540
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 050ca4dc2182e0a27573b0d9f32b7834
bec14dc5af0d0b32210470673511acd8db404308
b6129b9d1848f75265dca4446c5399927bdaf15c7b49c083765847b0fe276eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2622
Expires: Fri, 24 Mar 2023 16:23:55 GMT
Date: Fri, 24 Mar 2023 15:40:13 GMT
Connection: keep-alive
push.services.mozilla.com/
54.184.15.26101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.184.15.26:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RbNl7SX7jvvsi9a3bzRIsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wWMpPiXtOhcWjObAUP7ioGZ/Gcw=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4907
Expires: Fri, 24 Mar 2023 17:02:01 GMT
Date: Fri, 24 Mar 2023 15:40:14 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4907
Expires: Fri, 24 Mar 2023 17:02:01 GMT
Date: Fri, 24 Mar 2023 15:40:14 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4907
Expires: Fri, 24 Mar 2023 17:02:01 GMT
Date: Fri, 24 Mar 2023 15:40:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6bf7d96-8563-4612-89c2-6d00db18f9f6.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6bf7d96-8563-4612-89c2-6d00db18f9f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d733019c5326d4617096c74ae22fdffd
72bc0b2a19ca257ac974460f81af47fcfa2fee24
6746fcedbf4aad5c94582162e343d160fdc7d127bae807d1a97a9d7a231c9a70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6bf7d96-8563-4612-89c2-6d00db18f9f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6721
x-amzn-requestid: bf32e1c8-cac1-4f04-abe6-fba2e9e824f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK89vHbyoAMFc7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa857-5d84ed861375c4ba04a2ae30;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:03:51 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 60VbucTVJnuo0rLzrTvbdbQOIMQmhDMQT8st-Y49_plnM_akqw_V4w==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 04:01:18 GMT
age: 41936
etag: "72bc0b2a19ca257ac974460f81af47fcfa2fee24"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8f2a5e3-1443-4c66-9b07-bbc789ebd9ab.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8f2a5e3-1443-4c66-9b07-bbc789ebd9ab.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d6ed667dad0c17b3f1697f6ad5f1dd2
9eff2b1900bc9788dfbff11fce69cc7c944b1fc1
ec0f7b928c7efd46d2679477acd9f3bf0b335f31b9739c4e925b23bd5cd16a05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc8f2a5e3-1443-4c66-9b07-bbc789ebd9ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8385
x-amzn-requestid: 70d658a2-706c-428d-b232-d4a343556e55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8IUHv7IAMF8BQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b73ce-4288c6f05be90c543a5adb5a;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:31:58 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 00pLSzTvmnnvhdLG4rOtVPVM_F2rfQXus98AyXsY129ejW-1Y-UblQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 01:36:32 GMT
age: 50622
etag: "9eff2b1900bc9788dfbff11fce69cc7c944b1fc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63daf6ae-a4e7-49b4-8e18-aea9506a9ae6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63daf6ae-a4e7-49b4-8e18-aea9506a9ae6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 725b558c5b217b40ec923c072a764dc9
f3a16cf007c5793b3abc4978fe023f60d375315b
543d159b2fe8680fcaebd19ed567ea7725030f8c564784be0c542deed456144d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63daf6ae-a4e7-49b4-8e18-aea9506a9ae6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10649
x-amzn-requestid: 5789339a-0c84-4805-ae9b-9ccd5666504d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEZKKEYaIAMFQww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641808a7-202a369d06f020b75249c576;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:17:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: dw4sTr1VAlmuXmLkzSTZrsNSZDjEW0gRx37HO6KuTWOE8GnsDWW3zQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 17:04:27 GMT
age: 81347
etag: "f3a16cf007c5793b3abc4978fe023f60d375315b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9bb55b1044454d0db2324a4af956cd51
5aa34545aa2274453b301c74a083034273177cbd
fb7fa8b91ff7374ac6be2df05e1e98194f2adf3ce728b02a66323993145975ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d9f0256-f2a3-48d2-9cbe-230433c09812.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7405
x-amzn-requestid: 9865b715-ff9b-498d-95b3-c728fd3430be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPt7E46oAMF1Fg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc658-78b66faf317a7aaf689de782;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:36:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: EI1picNm6z4XmZxnCmqbdZv4ok9AqXNvYGy8CtENrRkWLuuLUuETlg==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:43:19 GMT
etag: "5aa34545aa2274453b301c74a083034273177cbd"
content-type: image/jpeg
age: 64615
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4aeb81c-baed-41b0-91c6-0a3439c6f3aa.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4aeb81c-baed-41b0-91c6-0a3439c6f3aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6cdbc190c56cfc889845d881cf88fed4
106075aa275beeaa40d4fa0587c3cee93b763bcf
5959109c9d987617bdcbb6e1ca8553d970b365390140906d41ff9a84462f1b2b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4aeb81c-baed-41b0-91c6-0a3439c6f3aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4970
x-amzn-requestid: d55dee06-0562-4a17-8109-595ec62cc440
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPHzHu2IAMFgfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc564-2f3b14aa47db00ba68b963b8;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:32:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: Dzf09PcQ1jc16E3V0kY1OcG4BipVgcvIVi3jtrv2rkllCed-6QnxFg==
via: 1.1 ec27e2bbc77d9805bead471453d2094c.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 22:15:05 GMT
etag: "106075aa275beeaa40d4fa0587c3cee93b763bcf"
content-type: image/jpeg
age: 62709
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: vOBDFA2LzOIp_0dMXApotrithfiToWtpM2xMRyx1pWAE86olKT6EpQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 02:36:43 GMT
age: 47011
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.giannobile.eu/wp-includes/css/classic-themes.min.css?ver=1
185.81.4.195200 OK 217 B URL HTTP/2 www.giannobile.eu/wp-includes/css/classic-themes.min.css?ver=1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Nov 2022 02:23:07 GMT
etag: "3380324-d9-5ec87a349e95a"
accept-ranges: bytes
content-length: 217
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
185.81.4.195200 OK 2.7 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:31:15 GMT
etag: "34010cb-aab-5ee90448576ab"
accept-ranges: bytes
content-length: 2731
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ee90ddfbbe80c960f79e4dc02fc0262b
94bce2b76308d2135544dfccf31bd0d9f88af4d9
ed01967238a15bca10092d62913e416eb931674b86469648973caa1d13912274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ee90ddfbbe80c960f79e4dc02fc0262b
94bce2b76308d2135544dfccf31bd0d9f88af4d9
ed01967238a15bca10092d62913e416eb931674b86469648973caa1d13912274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.giannobile.eu/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
185.81.4.195200 OK 95 kB URL HTTP/2 www.giannobile.eu/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Nov 2022 02:26:46 GMT
etag: "33c1a8f-172a9-5ed8d34426859"
accept-ranges: bytes
content-length: 94889
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6
185.81.4.195200 OK 3.1 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash 20e8490fab0dcf7557a5c8b54494db6f
285db746dfc0d43b9ca42f8d65b69c908ff72ca5
fbe820b6140ad28e86f34ffae507d807cf591a22697a05b71958f2014e96a9e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.6 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:31:17 GMT
etag: "3420296-c22-5ee9044a4d250"
accept-ranges: bytes
content-length: 3106
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ee90ddfbbe80c960f79e4dc02fc0262b
94bce2b76308d2135544dfccf31bd0d9f88af4d9
ed01967238a15bca10092d62913e416eb931674b86469648973caa1d13912274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.giannobile.eu/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6
185.81.4.195200 OK 27 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash 359aca8a88b2331aa34ac505acad9911
800a4f56bb87049e1f0d45cf93c4e8ef79144b45
655ae452d922f501b62c7028fc35e238138de989387381cc1ed9cea9085864db
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.6 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:31:17 GMT
etag: "3420298-6a71-5ee9044a4d638"
accept-ranges: bytes
content-length: 27249
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.15
185.81.4.195200 OK 60 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.15
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 7f1d3cdee6e67c584ec3df2772391f2b
a5a8f3a0942914d0db18e574742f5b5ad85bd77d
8215fb8f99029767d8081516dd5c245f65f3a5c3bd78fdec0d9889b0f549703f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.15 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 17:03:03 GMT
etag: "33e0801-ea2a-5e686f4587fc0"
accept-ranges: bytes
content-length: 59946
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0
185.81.4.195200 OK 31 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (30855), with CRLF line terminators
Hash 27dc6bf6c0bf71a70f3910eeb2dfe8e7
aeb8553011faafc83939c174836ea021ccffcfa4
582c413cbd7988d2047f667ccda947fcb5b1df3505ff0506fe9fd90188236b1b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "3363363-793f-5e6803ef50280"
accept-ranges: bytes
content-length: 31039
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ca3a2cc88f5c8a7669812ec7af0e14bf
fbb85820ada745d1e030c13874f96b14f8544884
d61b12522a039a526703bd7f747ae3614b660f1bc001044585c3c72907568d83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.giannobile.eu/wp-content/themes/soledad/css/penci-icon.css?ver=8.0.1
185.81.4.195200 OK 5.9 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/css/penci-icon.css?ver=8.0.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (5938), with no line terminators
Hash 52ad6e02aedbe07f48b899fddaf6142c
6ae14230528b483be5b1f0a25c73731ff7af657b
72494c660f00ccb96bc935eda95058ad14e16c61947e13de6c7eab3818b3c6cf
GET /wp-content/themes/soledad/css/penci-icon.css?ver=8.0.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "3363368-1732-5e6803ef50280"
accept-ranges: bytes
content-length: 5938
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/css/weather-icon.swap.css?ver=2.0
185.81.4.195200 OK 1.3 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/css/weather-icon.swap.css?ver=2.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (1218), with CRLF line terminators
Hash 62ed523657bd32db433f2451f217a8e5
d90f0fc500c6c787e94c4fee021c6a84fa624950
2ab07a1e0cc7ae9a58af3aec47b945353d1fca8f4f5c1816416c82dfa1cf543b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/css/weather-icon.swap.css?ver=2.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "336335f-51a-5e6803ef50280"
accept-ranges: bytes
content-length: 1306
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/gsap/2.1.3/TweenMax.min.js
104.17.24.14200 OK 35 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/gsap/2.1.3/TweenMax.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (32037)
Hash 8ec306b76e7dc20e47d5f986b68d5932
6bc2204b8061f8d54f416b0d1df1343c2f42521a
9b623920be3228e50eabb5af38e599acdbdc4fce6b2f1d7eb884cf3bb0245d7c
GET /ajax/libs/gsap/2.1.3/TweenMax.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 15:40:15 GMT
content-type: application/javascript; charset=utf-8
content-length: 34868
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e71-1c604"
last-modified: Mon, 04 May 2020 16:10:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 69476
expires: Wed, 13 Mar 2024 15:40:15 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dlW%2FLg71Z1GOFiGoSNGnx7KgWEarMX23SefQT789oOsCfcFABMvuDldThHo4FVFbSOZZO%2Fb%2BD4CcUfoKbD8%2FjBHApAwrp4tc6jg2Qj5Sr1cRE3j%2BcMYrd6u25EjBehebhD5z9jOx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ad002f1eff9b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-168355314-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-168355314-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash 7e6627b85757a67b8cae7b0a2dcc9152
1dfad4522fd86b6f8cfc9b1aa6a9e2d92e25e767
6e18c2956b3c464f7373da991d67f3bdfdd211bda9bea7e1031bcc9be417c1e8
GET /gtag/js?id=UA-168355314-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 24 Mar 2023 15:40:15 GMT
expires: Fri, 24 Mar 2023 15:40:15 GMT
cache-control: private, max-age=900
last-modified: Fri, 24 Mar 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44761
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/style.css?ver=8.0.1
185.81.4.195200 OK 727 B URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/style.css?ver=8.0.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Hash 5003b824459125ef3a2ebab0c71f79ba
7aaa4d328cc22cedb792e048449c893d84027458
b64555957fa092fc6192a310b5a11813133d511f1f3ced1a1655978c06e9730c
GET /wp-content/themes/soledad/style.css?ver=8.0.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "336335a-2d7-5e6803ef50280"
accept-ranges: bytes
content-length: 727
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/css/social-counter.css?ver=8.0.1
185.81.4.195200 OK 4.4 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/css/social-counter.css?ver=8.0.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash 02e90e545e4be371b8549be507fab078
2b9af0d998a50169b8f5216c77d797deb2bc70eb
7873ef043aed77bb98070e33d312db10715f24ccd97d6771f901a7cc9ffd62b4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/css/social-counter.css?ver=8.0.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "3363366-113e-5e6803ef50280"
accept-ranges: bytes
content-length: 4414
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
185.81.4.195200 OK 17 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (16591)
Hash 02f5d3618a9ca5e3063527265d39fbae
827b9d475645ae6891f427b3b20ce084444cca60
c6c2559bbfbd75165fa07056d46bf0403d126ed4cdb71e6de2e624b534a3bcd7
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0d91-40fc-5e68061f1eb40"
accept-ranges: bytes
content-length: 16636
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/main.css?ver=8.0.1
185.81.4.195200 OK 807 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/main.css?ver=8.0.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Size 807 kB (807106 bytes)
Hash c401cfededffc69c1f2034d95e5990f6
037797ee4ce41638ee10e6b1bdec7930e528ee3f
3fca959d4c55bce4666a26af806bc7a6b9069b26a85dfe846cfbe8738b24dec9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/main.css?ver=8.0.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "3363371-c50c2-5e6803ef50280"
accept-ranges: bytes
content-length: 807106
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16
185.81.4.195200 OK 18 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (10019)
Hash 4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.16 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0e04-4824-5e68061f1eb40"
accept-ranges: bytes
content-length: 18468
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ee90ddfbbe80c960f79e4dc02fc0262b
94bce2b76308d2135544dfccf31bd0d9f88af4d9
ed01967238a15bca10092d62913e416eb931674b86469648973caa1d13912274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ca3a2cc88f5c8a7669812ec7af0e14bf
fbb85820ada745d1e030c13874f96b14f8544884
d61b12522a039a526703bd7f747ae3614b660f1bc001044585c3c72907568d83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.giannobile.eu/wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.51
185.81.4.195200 OK 6.0 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.51
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash 777b44d7801d7bf0d7a157c917d8c1cb
6ddb605fc6f690acdd01ec14e9dd12b72fc18d1b
c4ded3c265363be5a70e7cbaeb2d21ebe8718af639b13575c2c0efde2cc13c7b
GET /wp-content/plugins/elementor-extras/assets/lib/nicons/css/nicons.css?ver=2.2.51 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:13:22 GMT
etag: "33c141e-175f-5e68064a09080"
accept-ranges: bytes
content-length: 5983
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/elementor/css/post-8.css?ver=1660813825
185.81.4.195200 OK 1.1 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/elementor/css/post-8.css?ver=1660813825
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (1117), with no line terminators
Hash 86260c336d08b259c7ba2f5b0216f572
e5f71f3fd57f2e06f23bd2b2f5c40a156ea724e6
af796b5afc82063de93d0ff5457b58891ca2766609d424ee036ac405975b9e88
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-8.css?ver=1660813825 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:10:25 GMT
etag: "3360cfe-45d-5e6805a13c240"
accept-ranges: bytes
content-length: 1117
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16
185.81.4.195200 OK 3.9 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (3815)
Hash d310dc62e303c9679bae433ff59dafbb
37df27d919b1b1f851a19f5568ede15b11547000
1d69d06efd74af0e065864c46749e40a7017173291957f8e5a67009a1944a291
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.16 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0e51-f0f-5e68061f1eb40"
accept-ranges: bytes
content-length: 3855
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/elementor/css/global.css?ver=1660813825
185.81.4.195200 OK 9.5 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/elementor/css/global.css?ver=1660813825
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (6697)
Hash a07c23e4f73d3f04890298ab831e650f
2ca899cf5246e6fcbcf2b6e8e4ae4354a0561706
7b64a84c219d901e94b497f2374a5eabfa89a26b3c2891c774979dea81bb66d4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/global.css?ver=1660813825 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:10:25 GMT
etag: "3360d02-2503-5e6805a13c240"
accept-ranges: bytes
content-length: 9475
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/penci-recipe/css/recipe.css?ver=3.3
185.81.4.195200 OK 23 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/penci-recipe/css/recipe.css?ver=3.3
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Hash c66070d15a76808fed69a090e96f2f69
a3fbec16d53f6d01289846d422583290be5a1bdd
834619f071e37fd4b396c70c32c74d00f2b7e92f8c1839b7e09093157784d64c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-recipe/css/recipe.css?ver=3.3 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:04:07 GMT
etag: "33c1881-5962-5e680438befc0"
accept-ranges: bytes
content-length: 22882
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/elementor/css/post-6.css?ver=1662588687
185.81.4.195200 OK 21 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/elementor/css/post-6.css?ver=1662588687
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (11662)
Hash 08c25858de5a17c1f2a25fa7521bfa13
3c9fe9f605d8a13e4360abc0c06368a6502d91e3
018dedf6e72847669dbb2b0bc9ee236cce31b1ab42877cbd1f90ef8b0da89c97
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/elementor/css/post-6.css?ver=1662588687 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 22:11:27 GMT
etag: "3361b78-52b9-5e81d981b4de1"
accept-ranges: bytes
content-length: 21177
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
185.81.4.195200 OK 56 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (55567)
Hash fc6ece0b999d414f53c25c3999397fee
c114a2225aa88cdd1bd3f6f58e22047709eab086
8a814f594ba0f0aa1b298a89c192f7afe2e7d22bfa6b5016d01fce2ce2941996
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0dfb-d9c9-5e68061f1eb40"
accept-ranges: bytes
content-length: 55753
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
185.81.4.195200 OK 668 B URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (482)
Hash 4b4de5890dbbbc878e3880b889700398
e8ef2b69dce7639803d32b9b9220fc4c5718de26
8470c7e9d2da39dfb4ba8e3efaa267cd19bf71d2f9b2ac0840758f1fa44dd943
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0dff-29c-5e68061f1eb40"
accept-ranges: bytes
content-length: 668
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
185.81.4.195200 OK 11 kB URL HTTP/2 www.giannobile.eu/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "33e1590-2bd8-5b45debe27b80"
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
185.81.4.195200 OK 19 kB URL HTTP/2 www.giannobile.eu/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: "33e13fb-48b9-5dc6eb878efc0"
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/2022/08/giannobile-text.png
185.81.4.195200 OK 4.2 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/2022/08/giannobile-text.png
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 800 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 89880f2d2d3390b4e603425c15b860a7
8133385b509538891009deb2a3a8326e440c4682
783d0639d732b26c4dbe67a7b3e25eff8639348582e7d3ccc69f162c98121373
GET /wp-content/uploads/2022/08/giannobile-text.png HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:53:36 GMT
etag: "33618d5-1059-5e680f4834800"
accept-ranges: bytes
content-length: 4185
content-type: image/png
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16
185.81.4.195200 OK 112 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (65496)
Size 112 kB (112213 bytes)
Hash 30f12f11c39052d2cfdac5a625cf7071
b1061f27eff3012b7fb117ab6ab8808d592976ed
594c96b05f3fa16b438bd80956b27577f9df00f68100be9dcd0853365fccbe33
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.16 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0e36-1b655-5e68061f1eb40"
accept-ranges: bytes
content-length: 112213
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6
185.81.4.195200 OK 34 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash dffa195b546cf1dfd52f2206955eb892
a3d48e8f126eb96d12191d76ed71ad2bc8651d59
6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.6 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:31:17 GMT
etag: "342029a-8583-5ee9044a4da20"
accept-ranges: bytes
content-length: 34179
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
185.81.4.195200 OK 90 kB URL HTTP/2 www.giannobile.eu/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Nov 2022 02:23:08 GMT
etag: "33e1598-15e54-5ec87a34d19ca"
accept-ranges: bytes
content-length: 89684
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.15
185.81.4.195200 OK 322 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.15
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (56675)
Size 322 kB (322398 bytes)
Hash df671f7b78717f7917683bf0c1a56424
971da4df5d88437e56f88fb4ac481e9efd0732a9
c858fbbfa5cf62866ee7dd26fbebbf51dc179c174ffde3da61e49311d6c6eead
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.15 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 17:03:03 GMT
etag: "33e07fb-4eb5e-5e686f4587fc0"
accept-ranges: bytes
content-length: 322398
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/2022/08/u-960x550-1.jpg
185.81.4.195200 OK 115 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/2022/08/u-960x550-1.jpg
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 960x550, components 3\012- data
Size 115 kB (115199 bytes)
Hash b4c83cbb3d5979a8f5e5259c13fc4a95
4c864a649aabedcbd017ddbe9155c71d4fed6188
4a788538f8b0924a8fc514ac71b1872fabca4cf2f9bb16ec64a5268333cdbab4
GET /wp-content/uploads/2022/08/u-960x550-1.jpg HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 15:46:54 GMT
etag: "33617cf-1c1ff-5e685e4031780"
accept-ranges: bytes
content-length: 115199
content-type: image/jpeg
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.6
185.81.4.195200 OK 6.1 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.6
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (401)
Hash 26b4f0c3c1bcf76291fa4952fb7f04fb
e5f3d41d8dbe3c4a2b36cf9cb4722496e7d6797e
2e2f2336b5e6698b628afc75fa9a24c67b73d5872c1d4af99ca436064f636ee0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.6 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:31:17 GMT
etag: "3420297-17e1-5ee9044a4d250"
accept-ranges: bytes
content-length: 6113
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/2022/08/btn_donateCC_LG.gif
185.81.4.195200 OK 2.6 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/2022/08/btn_donateCC_LG.gif
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type GIF image data, version 89a, 128 x 47\012- data
Hash fa7b2d3e824fcbea10c50fd457a45f74
4e70a585719e11bac2e3e64ee6f62e5e3cc8f638
ed51be890b17a4c8d1391f98df27f01a5ea9a26454135510572ea3d012cb955e
GET /wp-content/uploads/2022/08/btn_donateCC_LG.gif HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 14:54:55 GMT
etag: "3360f91-a16-5e69947f24dc0"
accept-ranges: bytes
content-length: 2582
content-type: image/gif
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/images/penci-holder.png
185.81.4.195200 OK 125 B URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/images/penci-holder.png
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 6 x 4, 8-bit colormap, non-interlaced\012- data
Hash 39e5ebeccbad32a5f86755ab32bcb536
28010c803b52aec8f3b68bf5ffef0961996fccac
5afae4fdead31c173a0ae121f7cb84909b3f7729fd7235930f22758f297910f2
GET /wp-content/themes/soledad/images/penci-holder.png HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:49 GMT
etag: "3361f94-7d-5e6803ee5c040"
accept-ranges: bytes
content-length: 125
content-type: image/png
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/2022/08/webcam-lucio.jpg
185.81.4.195200 OK 16 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/2022/08/webcam-lucio.jpg
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 85x85, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=3, copyright=Felice Giannobile Photo], baseline, precision 8, 150x150, components 3\012- data
Hash a6d518cf007bb0cac4fe82d764bc8bcb
58c224ff2aa46823925501f233ef8ec137c7392e
7e0728f788bc6068d82ce6e7896a7dbf27899de91d834436fbc24b4a316fee79
GET /wp-content/uploads/2022/08/webcam-lucio.jpg HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 14:36:04 GMT
etag: "3360e6f-403b-5e69904889d00"
accept-ranges: bytes
content-length: 16443
content-type: image/jpeg
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/2022/08/img-bn-1024x1024.jpg
185.81.4.195200 OK 183 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/2022/08/img-bn-1024x1024.jpg
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1272, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1024x1024, components 3\012- data
Size 183 kB (183222 bytes)
Hash 09c9c71a81b3417389d26951e44e7777
5b204ffbf6579b40df5d9fa6f982bb479071027e
336f36d8f59ea9339a4afd86829c6e668b7c391a355798f5d2929e6b7628aac0
GET /wp-content/uploads/2022/08/img-bn-1024x1024.jpg HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 20:22:54 GMT
etag: "3361542-2cbb6-5e689bf10a380"
accept-ranges: bytes
content-length: 183222
content-type: image/jpeg
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/penci-review/js/review.js?ver=1.0
185.81.4.195200 OK 789 B URL HTTP/2 www.giannobile.eu/wp-content/plugins/penci-review/js/review.js?ver=1.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash 138f50212db62f22d59f42caa411b85e
e5ca597bcd93b10f897334fd9bd33e69d2c7a574
26b5a9446c18da1563178cd30d379a3b569420d1ab17f8f8282430de8b8482b6
GET /wp-content/plugins/penci-review/js/review.js?ver=1.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:04:08 GMT
etag: "33e0a7e-315-5e680439b3200"
accept-ranges: bytes
content-length: 789
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
185.81.4.195200 OK 9.9 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (9937), with no line terminators
Hash dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:31:15 GMT
etag: "34010fa-26d1-5ee904485e7f4"
accept-ranges: bytes
content-length: 9937
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/penci-shortcodes/assets/play.js?ver=1.0
185.81.4.195200 OK 415 B URL HTTP/2 www.giannobile.eu/wp-content/plugins/penci-shortcodes/assets/play.js?ver=1.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash 6fc0fceef2d317be0162313814d4bc39
9e9563e1a73e0cee9b7b3d141fc64a1277e680d9
1f85dab3cd1a342bf26134fd9c422cd3bee58230c8c3fbad9b035d2ac02c8175
GET /wp-content/plugins/penci-shortcodes/assets/play.js?ver=1.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:03:59 GMT
etag: "33c108e-19f-5e6804311ddc0"
accept-ranges: bytes
content-length: 415
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
185.81.4.195200 OK 12 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 23:31:15 GMT
etag: "34010d2-3016-5ee9044858263"
accept-ranges: bytes
content-length: 12310
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0
185.81.4.195200 OK 4.0 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (3765)
Hash eac43429f465cc28ab77b033b7e0686e
add547d05e8c9ce8d3ddab731a133421416bb30b
f73f452b5961dbe04bffdc40586dc8c689e172c2dcbfa90353d92acb7a08c444
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-review/js/jquery.easypiechart.min.js?ver=1.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:04:08 GMT
etag: "33e0a7c-f96-5e680439b3200"
accept-ranges: bytes
content-length: 3990
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/js/post-like.js?ver=8.0.1
185.81.4.195200 OK 1.1 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/js/post-like.js?ver=8.0.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Hash d0ed44f72c84972b9a0be09fadd87e34
5cf54cfe4e9c3f6eb32d28af9f6a534719dfcfab
012f916c0da7df9f2f60c07ecac0fb5112fca218ae271b22f976aeb4ae811d02
GET /wp-content/themes/soledad/js/post-like.js?ver=8.0.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "336334f-459-5e6803ef50280"
accept-ranges: bytes
content-length: 1113
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/webcam/monteferrante2.jpg
185.81.4.195200 OK 394 kB URL HTTP/2 www.giannobile.eu/webcam/monteferrante2.jpg
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1080x810, components 3\012- data
Size 394 kB (393958 bytes)
Hash cbe8d1caa1edda81be9b75bf7122aeee
0d46f9941fcc24e548d3bb1a3369c47b6482d50e
5cdc8e2bea912618ebe54070f005abd3d0c6df32938d349961f8db6ab31ba569
GET /webcam/monteferrante2.jpg HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 24 Mar 2023 15:39:06 GMT
etag: "3360aef-602e6-5f7a7318dc44e"
accept-ranges: bytes
content-length: 393958
content-type: image/jpeg
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/js/main.js?ver=8.0.1
185.81.4.195200 OK 86 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/js/main.js?ver=8.0.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash b72d89ef4952f7b90546cbd2827f5b65
1bcfd0a92fb71e07ea8c95bb94dd8fa3b61754db
ca9a69d8b52ffed3510e04df12f1f5e498d25762188707023cd31fc398e46106
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/js/main.js?ver=8.0.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "3363344-14dee-5e6803ef50280"
accept-ranges: bytes
content-length: 85486
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/
185.81.4.195200 OK 307 kB IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (27021), with CRLF, LF line terminators
Size 307 kB (307340 bytes)
Hash 5bb517f22ca3b56a8d3de5f838a2cee6
f2aac44e1e6d41c7f6828bdf7d265b7b4b6fc7f5
5b9f5b54d7b8a5444f459b53684f0efb8cc2458f3127a0145c8c23546bdc7f65
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://www.giannobile.eu/wp-json/>; rel="https://api.w.org/", <https://www.giannobile.eu/wp-json/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://www.giannobile.eu/>; rel=shortlink
content-type: text/html; charset=UTF-8
date: Fri, 24 Mar 2023 15:40:13 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.3
185.81.4.195200 OK 1.2 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.3
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with CRLF line terminators
Hash 0a4a8d65fbcc93b183941518310089f7
996c9e9bce19c6b7cd2442402ad5fd11f13e6e7f
e7a9aaef125713e5b57733e89b419b2dc7145efb1301fadc6eb312f21fbe0838
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-recipe/js/rating_recipe.js?ver=3.3 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:04:07 GMT
etag: "33c187e-4cc-5e680438befc0"
accept-ranges: bytes
content-length: 1228
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.9
185.81.4.195200 OK 6.6 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.9
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (6595), with no line terminators
Hash e16a8821e5f099c3a619889ea7cf0399
a38e0c736aaf0b019b29b63b00e68c1381502217
a48dea362116d7516a2cf97066a32758d353760ee02dbf900ddff86b02a16473
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.9 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:58 GMT
etag: "33c0710-19c3-5e68063325a80"
accept-ranges: bytes
content-length: 6595
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.3
185.81.4.195200 OK 9.2 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.3
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (9050)
Hash 08fd62b88edd0a34d794624736d3c9d3
25ce9945d8023fc8e3a7e41cda05270dfca8dea0
b5d02f2185ebaa449c168561a1900a1540c68aee0241feadb3c75a545900fff7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/penci-recipe/js/jquery.rateyo.min.js?ver=3.3 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:04:07 GMT
etag: "33c187f-23c4-5e680438befc0"
accept-ranges: bytes
content-length: 9156
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-includes/js/comment-reply.min.js?ver=6.1.1
185.81.4.195200 OK 3.0 kB URL HTTP/2 www.giannobile.eu/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (2946)
Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2
db36a77f6aaa2063bfbec02c2c0e967438c5a245
e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
etag: "33e15c4-ba5-5dc2a2438e980"
accept-ranges: bytes
content-length: 2981
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0
185.81.4.195200 OK 1.2 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash 7a72bd3b79f3909aaca6d99c90c28ede
af6ce757184c050b79b237c4685d8d1d6fec6926
32e092aeb78ab1755b68404b12f3e60807633957e2847d89793a57cf123d3668
GET /wp-content/plugins/penci-portfolio/js/penci-portfolio.js?ver=1.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:04:06 GMT
etag: "33c0f29-4b0-5e680437cad80"
accept-ranges: bytes
content-length: 1200
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
185.81.4.195200 OK 21 kB URL HTTP/2 www.giannobile.eu/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Nov 2022 02:23:08 GMT
etag: "33e1589-53c0-5ec87a34d15e2"
accept-ranges: bytes
content-length: 21440
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16
185.81.4.195200 OK 64 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (47306), with LF, NEL line terminators
Hash 877841998ac57f6f0490f387baa7805c
7074c470cf9c8e6ba721bdf57f3de95de1f876de
acbcfa9ee0409566b89fe478514f29028b660f9dfb86de730f1246ae0879e32b
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.16 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0e15-fa7a-5e68061f1eb40"
accept-ranges: bytes
content-length: 64122
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.9
185.81.4.195200 OK 188 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.9
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type Unicode text, UTF-8 text, with very long lines (47738), with LF, NEL line terminators
Size 188 kB (188443 bytes)
Hash e75a8ee1d082f47329282cb7ffdbe6d4
29c437b49b8bb873eb972482cbbe919df2673e06
5a6217137430616363bc2a7917d1ebfda0a6fe2bb0b33b7eb0443367a9009c77
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.9 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:58 GMT
etag: "33c0723-2e01b-5e68063325a80"
accept-ranges: bytes
content-length: 188443
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
185.81.4.195200 OK 12 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0da9-2fa6-5e68061f1eb40"
accept-ranges: bytes
content-length: 12198
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
185.81.4.195200 OK 11 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (10725)
Hash 58baf0f238d7afc7ab926b8d51e5b559
8515e5f578269e29c048450f78c107935d325dff
2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0dcd-2a6f-5e68061f1eb40"
accept-ranges: bytes
content-length: 10863
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16
185.81.4.195200 OK 2.6 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (2577)
Hash 9bb8540493a7fe11b229870eb37be165
d77f17cb9057dc8f622b8c0bf23f6acb739b3b8e
4a7ee62eb33f3bbb66c2151e5cac6bf4904e28302efc36128f3e3ccae6fde580
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.16 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0dbc-a12-5e68061f1eb40"
accept-ranges: bytes
content-length: 2578
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0
185.81.4.195200 OK 2.7 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (2696), with no line terminators
Hash b6a39bacaedbeeac4c21501785f16182
65aea0a92e26e880dc42409b46db280b1d5b3f78
c476e6f50bcdac993f7866f8c656be00c28ab8e0b58822b57851c96ba7ecb1b9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-extras/assets/lib/parallax-gallery/parallax-gallery.min.js?ver=1.0.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:13:22 GMT
etag: "33c1480-a88-5e68064a09080"
accept-ranges: bytes
content-length: 2696
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.51
185.81.4.195200 OK 77 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.51
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (31998)
Hash 8a73d12bfc87e54e84ab0a91df62b828
d7c179fe6d63390c51cc79a8c00e0f677c1971b5
9e516df56ca886c82d46363368bd55d467f59a2a5602fa32b98969376f600ffb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-extras/assets/js/frontend.min.js?ver=2.2.51 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:13:22 GMT
etag: "33c148b-12ca3-5e68064a09080"
accept-ranges: bytes
content-length: 76963
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0
185.81.4.195200 OK 8.1 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type ASCII text, with very long lines (8108), with no line terminators
Hash 7781db3f183c7577260debce5d990f5e
1d3a35d4021d4388440fa47c9f12e6275894f53e
785dbdb3babeade31a72d1b50c0456ffb07b55dfdac90590845e69526dd77c78
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-extras/assets/lib/hotips/hotips.min.js?ver=1.1.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:13:22 GMT
etag: "33c1411-1fac-5e68064a09080"
accept-ranges: bytes
content-length: 8108
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/2022/08/fotografo.jpg
185.81.4.195200 OK 157 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/2022/08/fotografo.jpg
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1500x1000, components 3\012- data
Size 157 kB (156988 bytes)
Hash 5a3d4b892eeeca0d699f7d855c492f09
e1459ce76259031b5bea73266ebff5dabbfc6955
949cb624e60bfd8179791039de273ce3d04d4a6830654233f097e5e57ad4a822
GET /wp-content/uploads/2022/08/fotografo.jpg HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/wp-content/uploads/elementor/css/post-6.css?ver=1662588687
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 20:32:28 GMT
etag: "33611cd-2653c-5e689e1472f00"
accept-ranges: bytes
content-length: 156988
content-type: image/jpeg
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ac8d4dabc0044d3f9300e6f09b86bc68
331a761e7d051c94831a30254ca3ce25b2e7dd2d
05ef2753d9e9b8cd1f09c88eb1cc42ee88ffd4db561c9a05e069373c24112d60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.giannobile.eu/wp-content/uploads/2022/08/1-1536x864-1.jpg
185.81.4.195200 OK 500 kB URL HTTP/2 www.giannobile.eu/wp-content/uploads/2022/08/1-1536x864-1.jpg
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=15, height=955, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1697], baseline, precision 8, 1536x864, components 3\012- data
Size 500 kB (500512 bytes)
Hash d2fbcd98d42a018f87632b92543f6ae8
46a4ef3512ad896bafc90f5e80eef13599a659ba
e73ad6d0d5ef8c3c396f9e7394471c072398ab2b674e080b0c06f88145687b98
GET /wp-content/uploads/2022/08/1-1536x864-1.jpg HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/wp-content/uploads/elementor/css/post-6.css?ver=1662588687
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:19:49 GMT
etag: "336155e-7a320-5e6807bb1b740"
accept-ranges: bytes
content-length: 500512
content-type: image/jpeg
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a5974456d5b0e7b60127595d497e7105
301f44b5137d00ec286c36869a5ae233b6da8881
67e273220b1367d1001f870bdefca145c98dbf6cbe4d0c5e8dcb8f184018d5a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.giannobile.eu/wp-content/themes/soledad/fonts/weathericons.woff2
185.81.4.195200 OK 45 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/fonts/weathericons.woff2
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type Web Open Font Format (Version 2), TrueType, length 44720, version 1.6553\012- data
Hash 1cd48d78f06d33973d9d761d426e69bf
718dd740e8340888352129e592fed085409e891e
9327647771c09df82095dba3591c77cca41a9cedca948ae01e7fb70c690dcbd5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/fonts/weathericons.woff2 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.giannobile.eu/wp-content/themes/soledad/css/weather-icon.swap.css?ver=2.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "33632a7-aeb0-5e6803ef50280"
accept-ranges: bytes
content-length: 44720
content-type: font/woff2
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a5974456d5b0e7b60127595d497e7105
301f44b5137d00ec286c36869a5ae233b6da8881
67e273220b1367d1001f870bdefca145c98dbf6cbe4d0c5e8dcb8f184018d5a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
185.81.4.195200 OK 76 kB URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type Web Open Font Format (Version 2), TrueType, length 76084, version 330.-16253\012- data
Hash f6121be597a72928f54e7ab5b95512a1
b2c74520c3f506efbfefca867918e5ae28bd5222
787d76ad6deab67ccf8bac1b584260205e114f508fc5542b612e3f75d49a34e4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.giannobile.eu/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0de0-12934-5e68061f1eb40"
accept-ranges: bytes
content-length: 76084
content-type: font/woff2
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/fonts/fontawesome-webfont.woff2?v=4.7.0
185.81.4.195200 OK 77 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.giannobile.eu/wp-content/themes/soledad/css/font-awesome.4.7.0.swap.min.css?ver=4.7.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "336331d-12d68-5e6803ef50280"
accept-ranges: bytes
content-length: 77160
content-type: font/woff2
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/themes/soledad/fonts/penciicon.ttf
185.81.4.195200 OK 44 kB URL HTTP/2 www.giannobile.eu/wp-content/themes/soledad/fonts/penciicon.ttf
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, flaticonRegularflaticonflaticonVersion 1.0flaticonGenerated by svg2ttf from Fontello project.htt\012- data
Hash 43ba83997ac64f18ce98815afa3d80ae
c30922d0980dbf3b43a08991967db78a7dd1ef9e
a032266797173d27f483e30c85f46209de0b69036ded476bee65f4eda7360ce3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/soledad/fonts/penciicon.ttf HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/wp-content/themes/soledad/css/penci-icon.css?ver=8.0.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:02:50 GMT
etag: "33632a9-aa08-5e6803ef50280"
accept-ranges: bytes
content-length: 43528
content-type: font/ttf
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a5974456d5b0e7b60127595d497e7105
301f44b5137d00ec286c36869a5ae233b6da8881
67e273220b1367d1001f870bdefca145c98dbf6cbe4d0c5e8dcb8f184018d5a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.giannobile.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 18814
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.giannobile.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:48 GMT
expires: Sat, 23 Mar 2024 10:26:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 18807
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.227200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 33868, version 1.0\012- data
Hash a55fefd02b25a2cb141efe2d17776d60
ba132269410be55bbd81032011d5904ceb33bc64
e5b4655e2fac9e5887dfc63e54a5ea312f8779ad2a4316765a690c5177ef1acc
GET /s/rubik/v26/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.giannobile.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33868
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:46 GMT
expires: Sat, 23 Mar 2024 10:26:46 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Mar 2023 21:37:56 GMT
content-type: font/woff2
age: 18809
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.giannobile.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 18813
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a5974456d5b0e7b60127595d497e7105
301f44b5137d00ec286c36869a5ae233b6da8881
67e273220b1367d1001f870bdefca145c98dbf6cbe4d0c5e8dcb8f184018d5a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ac8d4dabc0044d3f9300e6f09b86bc68
331a761e7d051c94831a30254ca3ce25b2e7dd2d
05ef2753d9e9b8cd1f09c88eb1cc42ee88ffd4db561c9a05e069373c24112d60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2587852184232847
142.250.74.162200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2587852184232847
IP 142.250.74.162:0
File type ASCII text, with very long lines (3599)
Hash a9130dbe5cc831996eebb8422c129641
117fad6f8c4b5855c7ea840cdbb4ba3c6b4f3a8b
8901d607dca5dfaaca1f7b967e2a3e05c5b23f76165df3829d28cca5879198b9
GET /pagead/js/adsbygoogle.js?client=ca-pub-2587852184232847 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.giannobile.eu
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 24 Mar 2023 15:40:15 GMT
expires: Fri, 24 Mar 2023 15:40:15 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8022233839172614568
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48772
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash af767a0f38aa932dc23106c403e9b5f3
5a5662e147f43d1561ba78517738f6be86eb2cde
359fea0fbdd5740a613795d4491c534ebf14e2ffb55edf78c80dc0dde78c42e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:44 GMT
expires: Sat, 23 Mar 2024 10:26:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 18811
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:45 GMT
expires: Sat, 23 Mar 2024 10:26:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 18810
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20230322/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.5 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230322/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3205)
Hash bad17ab9662318e8927e5009c83c2ad1
53ded630f95abe04b7b77d43076bf71b9ea71c02
68da39270ebfa6d17f4b765cbe004797a736611585ff0c53213d91f78f13c260
GET /pagead/html/r20230322/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4549
x-xss-protection: 0
date: Fri, 24 Mar 2023 12:50:23 GMT
expires: Fri, 07 Apr 2023 12:50:23 GMT
cache-control: public, max-age=1209600
age: 10192
etag: 2378337311435320485
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.giannobile.eu/favicon.ico
185.81.4.195302 Found 0 B URL HTTP/2 www.giannobile.eu/favicon.ico
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
link: <https://www.giannobile.eu/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
location: https://www.giannobile.eu/wp-includes/images/w-logo-blue-white-bg.png
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-includes/images/w-logo-blue-white-bg.png
185.81.4.195200 OK 4.1 kB URL HTTP/2 www.giannobile.eu/wp-includes/images/w-logo-blue-white-bg.png
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.giannobile.eu/
Connection: keep-alive
Cookie: cookielawinfo-checkbox-necessary=yes; cookielawinfo-checkbox-functional=no; cookielawinfo-checkbox-performance=no; cookielawinfo-checkbox-analytics=no; cookielawinfo-checkbox-advertisement=no; cookielawinfo-checkbox-others=no; _ga_2LF2VT1QKD=GS1.1.1679672426.1.0.1679672426.0.0.0; _ga=GA1.2.1228982479.1679672427; _gid=GA1.2.154546336.1679672427; _gat_gtag_UA_168355314_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Nov 2021 00:04:01 GMT
etag: "33e0b11-1017-5d0dca9a37e40"
accept-ranges: bytes
content-length: 4119
content-type: image/png
date: Fri, 24 Mar 2023 15:40:16 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 908a8567a4a8cd14eee25e0cc2db9916
52232f08a2f58cf84d7d0c7fc7bf3503d5d671de
e2a79aa6dec9c0a269888cf7263c624aa90ca81802a1c78ceaed35dc9f15366f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.giannobile.eu&callback=_gfp_s_&client=ca-pub-2587852184232847
142.250.74.34200 OK 253 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.giannobile.eu&callback=_gfp_s_&client=ca-pub-2587852184232847
IP 142.250.74.34:0
File type ASCII text, with very long lines (393), with no line terminators
Hash 670c2cc62feeb2da6c41218c23ac29c1
8b65f13d31c4928db124f3bd160dc1b871ac6a3b
bf063a2633f85f2747cebc5a8f0598f35912ae4242b4ca7fe6005b8f04d84f10
GET /gampad/cookie.js?domain=www.giannobile.eu&callback=_gfp_s_&client=ca-pub-2587852184232847 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 24 Mar 2023 15:40:16 GMT
server: cafe
cache-control: private
content-length: 253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b0ed7d316212efa2b3ef7d98d24b9125
2f2078419c164074981bb5451e5c8e0de4fe17ec
99584b096bb7545bb0fdd5f435b4444c7c3ad6c42a86844fb39ea8228bc6a21f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=www.giannobile.eu
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.giannobile.eu
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.giannobile.eu HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 24 Mar 2023 15:40:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.giannobile.eu
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.giannobile.eu
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.giannobile.eu HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 24 Mar 2023 15:40:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 908a8567a4a8cd14eee25e0cc2db9916
52232f08a2f58cf84d7d0c7fc7bf3503d5d671de
e2a79aa6dec9c0a269888cf7263c624aa90ca81802a1c78ceaed35dc9f15366f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b0ed7d316212efa2b3ef7d98d24b9125
2f2078419c164074981bb5451e5c8e0de4fe17ec
99584b096bb7545bb0fdd5f435b4444c7c3ad6c42a86844fb39ea8228bc6a21f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fa363658b10afd87af493d2c443e3106
6d1f5da75206662432381be4dd22e72fb3cb968a
f0d0e2a38e51f762415e65b7f49f2acd09b4651b5c111875ff9184a58f0cc8f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 15:35:11 GMT
expires: Fri, 24 Mar 2023 15:50:11 GMT
cache-control: public, max-age=900
age: 305
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-2LF2VT1QKD>m=45je33m0&_p=1056346648&gdid=dZTNiMT&cid=1228982479.1679672427&ul=en-us&sr=1280x1024&_s=1&sid=1679672426&sct=1&seg=0&dl=https%3A%2F%2Fwww.giannobile.eu%2F&dt=Home%20-%20Giannobile.eu&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-2LF2VT1QKD>m=45je33m0&_p=1056346648&gdid=dZTNiMT&cid=1228982479.1679672427&ul=en-us&sr=1280x1024&_s=1&sid=1679672426&sct=1&seg=0&dl=https%3A%2F%2Fwww.giannobile.eu%2F&dt=Home%20-%20Giannobile.eu&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2LF2VT1QKD>m=45je33m0&_p=1056346648&gdid=dZTNiMT&cid=1228982479.1679672427&ul=en-us&sr=1280x1024&_s=1&sid=1679672426&sct=1&seg=0&dl=https%3A%2F%2Fwww.giannobile.eu%2F&dt=Home%20-%20Giannobile.eu&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.giannobile.eu
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.giannobile.eu
date: Fri, 24 Mar 2023 15:40:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 35cd7a5cd81e754cc3eeee790b256d66
c2a1720c701d6828742ef283bd6ce8ea5a439c68
0f37de80a2984b67ff881ef5dccb772374fc71a33edf041efff64882a626ba3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 24 Mar 2023 15:40:16 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 7a0963349f365304d9cc4b9c39aa0136
daff60b70d56e3baa99268996dfdf143a582909e
2d33bdaae1e2947bf979ea174350d7040b49732e4fb7e548cebd7758a2d38221
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 24 Mar 2023 15:40:16 GMT
server: ESF
cache-control: private
content-length: 31357
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1e2d53d4be6f2f37cf0eda71c5aa8402
8a32fed3183cfea78a4c9bc1feb04ff70be47596
ea9445f8ad7d445632abd0dd04808ea5d1f8822a577badbaeb17d16f35fdc339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/embed/kebJL64Ie8M?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&rel=0&modestbranding=0
216.58.207.238200 OK 161 kB URL HTTP/2 www.youtube.com/embed/kebJL64Ie8M?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&rel=0&modestbranding=0
IP 216.58.207.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58644)
Size 161 kB (160621 bytes)
Hash 73f24d34a0eb3de3283d9ba19c3df1d0
82e9562793449b9a121056798a6a8e8b71622692
e6e15593d9a06dda1312f0eacb7a9ef07f4bced696b2dbb0cbcd2301b584626b
GET /embed/kebJL64Ie8M?feature=oembed&start&end&wmode=opaque&loop=0&controls=1&mute=0&rel=0&modestbranding=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 24 Mar 2023 15:40:15 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=2uszRg27f_E; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=DsB3bLbE2hU; Domain=.youtube.com; Expires=Wed, 20-Sep-2023 15:40:15 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+654; expires=Sun, 23-Mar-2025 15:40:15 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9b762efe5751eb25cd26ca67ad6dcf22
661f1247ecc842236957d05747967ec4f20835a2
c51c54e54ffc33cc7643bb0a64da2265f93efaf38838351ec0f2a2fe102efa2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1e2d53d4be6f2f37cf0eda71c5aa8402
8a32fed3183cfea78a4c9bc1feb04ff70be47596
ea9445f8ad7d445632abd0dd04808ea5d1f8822a577badbaeb17d16f35fdc339
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a229e13ab0262306e8233705569c7866
d389ff1fc114c031f85a57a9ebf1845ead515e38
9865a8767eed63858b778ab5774d5ae48fc46d0adcb1693c76eabb9ad9e81bc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/yh64qGL6cJWuaIuBylQ3olHoN540yfVTMqcwVUx5bOA.js
216.58.207.228200 OK 14 kB URL HTTP/2 www.google.com/js/th/yh64qGL6cJWuaIuBylQ3olHoN540yfVTMqcwVUx5bOA.js
IP 216.58.207.228:0
File type ASCII text, with very long lines (35852)
Hash c04e188747c48fdcfbd7562bdddf0162
337ef2ae722120c9c1363ea431d25df576b7292c
4abb4ce4fae3a9f7e426b9e7ce45b8a970b3567bbeac266ef9e04419a343656c
GET /js/th/yh64qGL6cJWuaIuBylQ3olHoN540yfVTMqcwVUx5bOA.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14197
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Mar 2023 22:43:44 GMT
expires: Fri, 22 Mar 2024 22:43:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 60993
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yt3.ggpht.com/20OheegCCCR0LpBg-mFnJifEGT53Gf3I07HxieOoRa2RRWpk9kOWynhvz9SnAL7wI0TMuWziCO8=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.1 kB URL HTTP/2 yt3.ggpht.com/20OheegCCCR0LpBg-mFnJifEGT53Gf3I07HxieOoRa2RRWpk9kOWynhvz9SnAL7wI0TMuWziCO8=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash f5e2dbade2521d19a1dd28ed19fe1d34
deffa7b0c99272b793930104316b5d06f719ebc6
9da4c763ae451e06c8ed5afc300987e69041c0eaab3ebc3c5471f51ec8fc93d7
GET /20OheegCCCR0LpBg-mFnJifEGT53Gf3I07HxieOoRa2RRWpk9kOWynhvz9SnAL7wI0TMuWziCO8=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2138
x-xss-protection: 0
date: Fri, 24 Mar 2023 15:40:17 GMT
expires: Mon, 20 Mar 2023 21:27:30 GMT
cache-control: public, max-age=86400, no-transform
etag: "v2"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 24 Mar 2023 15:40:17 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5b97d01040037771435bd9e03aeaff8e
2f12a86e3ca84fd46f2042af6213e1db94f9be7f
4cc26413c74a692a28c28e45051d0118e0ac5c3120a411fa8b54104291ba8c29
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1160
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 24 Mar 2023 15:40:17 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cf48841270b3c2c701416f889467dd82
16ed2bb81ccd7f4cec1e3977e02ef5a5f243467c
787f503afabac84b90c6573c8860d6bb0150c69f38b8e86825381e08816423aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 841a9e83001df31f2843a898213cfd44
b005873904a76b8454888c7855d149d285bc7acd
f4e18142f858d31e441cea8321fe71dce1e1f0453d18f8c54615dfa0c66b7e90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 15:40:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.65200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.65:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 24 Mar 2023 15:40:17 GMT
expires: Fri, 24 Mar 2023 15:40:17 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.65200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Mar 2023 02:02:12 GMT
expires: Fri, 22 Mar 2024 02:02:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 135485
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.15
185.81.4.195200 OK 514 B URL HTTP/2 www.giannobile.eu/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.15
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
File type gzip compressed data\012- data
Hash 20e540b812d937144c4a981d62e9f680
2f5516c932c23b354c3353bc19daf6bfac824523
6acb4210086973d0095f5563cdbe31954b021da84a1f8871846b664bfb8c9134
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.15 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 17:03:03 GMT
etag: "33e07f9-1d25a-5e686f4587fc0"
accept-ranges: bytes
content-length: 119386
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
185.81.4.195200 OK 0 B URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0d9d-21f91-5e68061f1eb40"
accept-ranges: bytes
content-length: 139153
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Serif%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPlayfair+Display+SC%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CMontserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CRubik%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=1.0
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=PT+Serif%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPlayfair+Display+SC%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CMontserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CRubik%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=1.0
IP 142.250.74.74:0
GET /css?family=PT+Serif%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CPlayfair+Display+SC%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CMontserrat%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C700%2C700italic%2C800%2C800italic%7CRubik%3A300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%26subset%3Dlatin%2Ccyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin-ext&display=swap&ver=1.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Mar 2023 15:40:15 GMT
date: Fri, 24 Mar 2023 15:40:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16
185.81.4.195200 OK 0 B URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.16 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:37 GMT
etag: "33c0e2e-1d5a1-5e68061f1eb40"
accept-ranges: bytes
content-length: 120225
content-type: application/javascript
date: Fri, 24 Mar 2023 15:40:15 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/webcam/monteferrante.jpg
185.81.4.195200 OK 0 B URL HTTP/2 www.giannobile.eu/webcam/monteferrante.jpg
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
GET /webcam/monteferrante.jpg HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 24 Mar 2023 15:39:58 GMT
etag: "3360087-b79ea-5f7a734add083"
accept-ranges: bytes
content-length: 752106
content-type: image/jpeg
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.1.1
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.1.1
IP 142.250.74.74:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Mar 2023 15:40:15 GMT
date: Fri, 24 Mar 2023 15:40:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.9
185.81.4.195200 OK 0 B URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.9
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.9 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:12:58 GMT
etag: "33c0727-33811-5e68063325a80"
accept-ranges: bytes
content-length: 210961
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A400&display=swap&ver=6.1.1
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald%3A400&display=swap&ver=6.1.1
IP 142.250.74.74:0
GET /css?family=Oswald%3A400&display=swap&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Mar 2023 15:40:15 GMT
date: Fri, 24 Mar 2023 15:40:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/uploads/2022/08/drone-1024x683.jpg
185.81.4.195200 OK 0 B URL HTTP/2 www.giannobile.eu/wp-content/uploads/2022/08/drone-1024x683.jpg
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
GET /wp-content/uploads/2022/08/drone-1024x683.jpg HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 19 Aug 2022 09:01:43 GMT
etag: "3361536-18105-5e69458ce0bc0"
accept-ranges: bytes
content-length: 98565
content-type: image/jpeg
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2
www.giannobile.eu/wp-content/plugins/elementor-extras/assets/css/frontend.min.css?ver=2.2.51
185.81.4.195200 OK 0 B URL HTTP/2 www.giannobile.eu/wp-content/plugins/elementor-extras/assets/css/frontend.min.css?ver=2.2.51
IP 185.81.4.195:0
ASN #52030 Server Plan S.r.l.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor-extras/assets/css/frontend.min.css?ver=2.2.51 HTTP/1.1
Host: www.giannobile.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.giannobile.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Aug 2022 09:13:22 GMT
etag: "33c148f-322e9-5e68064a09080"
accept-ranges: bytes
content-length: 205545
content-type: text/css
date: Fri, 24 Mar 2023 15:40:14 GMT
server: Apache
X-Firefox-Spdy: h2