Report - santorotto.it/

Report Overview

Submitted URL
santorotto.it/
IP
46.37.14.198
ASN
#31034 Aruba S.p.A.
Submitted
2022-12-01 14:06:54
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
58

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	69 kB	142.250.74.35
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	707 B	2.1 kB	142.250.74.164
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	68 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	746 B	142.250.74.106
maps.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	71 kB	142.250.74.3
santorotto.it	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	24 kB	1.9 MB	46.37.14.198
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.149.156.115
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	santorotto.it/	Malware
2022-12-01	medium	santorotto.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.15	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-includes/js/comment-reply.min.js?ver=5.1.15	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/css/base.css?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.8.1	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/css/layout.css?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/css/responsive.css?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/css/shortcodes.css?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8	Malware
2022-12-01	medium	santorotto.it/	Malware
2022-12-01	medium	santorotto.it/wp-includes/js/jquery/jquery.js?ver=1.12.4	Malware
2022-12-01	medium	santorotto.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4	Malware
2022-12-01	medium	santorotto.it/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=1.8.1	Malware
2022-12-01	medium	santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3	Malware
2022-12-01	medium	santorotto.it/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4	Malware
2022-12-01	medium	santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.8.1	Malware
2022-12-01	medium	santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-content/themes/betheme/style.css?ver=21.1.4	Malware
2022-12-01	medium	santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.8.1	Malware
2022-12-01	medium	santorotto.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (53)

	URL	Size	First Seen	Last Seen
	santorotto.it/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.8.1	22 kB	2023-03-07	2024-02-13
Pretty URL santorotto.it/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.8.1 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2024-02-13 22:07:51 Times Seen79 Hash e0cc4fea1baecf0777c25d60e8aaac5a 7cb8b8e954d9e8a5fbc0e93651939a71d50af33b f0dc5a104ad07a87dec3f36b5ff8eb24b974cf484e1d378fdf7d4578ea9f4b9d Loading...

	santorotto.it/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4	6.8 kB	2023-03-07	2024-04-15
Pretty URL santorotto.it/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-15 15:38:28 Times Seen2032 Hash 2fb11e1fba920ce6191aaf65473894ff 858e35ea212ce2c331f6f2b4980b55fa5bac29f5 1b4f1024fa4887b47765e2ad4db9bc1f6ea96335f77fd44c62b8538d75e7190c Loading...

	santorotto.it/	1.4 kB	2023-03-08	2023-03-11
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:36:59 Last Seen2023-03-11 23:36:48 Times Seen1 Hash 8e09a1a330d814adab54f6fac92cb2d2 f70aadb3ca9633a87ca5c4b8a4740ec4e063c388 4abb2e0ded86d005d0d5bae107b0503a1263bfa6d6d7d7cac2230358f9c2f0b5 Loading...

	santorotto.it/	763 B	2023-03-07	2024-04-14
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-14 23:43:22 Times Seen1664 Hash c291ddfafe8b815d28e02482f1251b5e 4501ffc2d31f0231d4eee4aad85578597c753ce7 371ffe791a9a08bddf8a965e60dbe84e817edd8cb480f731d05e791eff5b35af Loading...

	santorotto.it/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.1.4	4.6 kB	2023-03-07	2024-04-16
Pretty URL santorotto.it/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.1.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-16 13:45:31 Times Seen455 Hash c8feb4a3ca1a5e40d7503ff010bf4128 37121bb9d0bafde2b38e0fc5058d62b8178be10b f25f13e58a8709b8aa0bd7ebaa2d8f17fdfe165c55ccb8b96d862fe8f8caa90f Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d40.0334882630375&2d1.201004647891125&2m2&1d46.23867894380831&2d22.21858598598581&2u8&4sit&5e0&6sm%40628000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._4g33xa&client=google-maps-embed&token=34186	40 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d40.0334882630375&2d1.201004647891125&2m2&1d46.23867894380831&2d22.21858598598581&2u8&4sit&5e0&6sm%40628000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._4g33xa&client=google-maps-embed&token=34186 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:36:48 Last Seen2023-03-11 23:36:48 Times Seen1 Hash ef51deecc7c09416a738483aa85c7faf 40cac38048c96c4a6b4cdbc943cfbaa3f23568fa 9479e1a8eb1582625bc3914ce74333b67f7f4f1f52cf5582a5fd822f906587cc Loading...

	santorotto.it/	2.0 kB	2023-03-08	2023-03-11
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:36:59 Last Seen2023-03-11 23:36:48 Times Seen1 Hash 423c1b9574b90c2d00609112d6b31adf ca2e9bf7283d6cebb195a1804ca25494dd5ad5ac 2cb327e41785537884d93e83faa6fafb8b6f212fdd6eafbbc07c04525187f093 Loading...

	santorotto.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4	8.6 kB	2023-03-07	2024-04-14
Pretty URL santorotto.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-14 23:43:23 Times Seen1335 Hash a0b8589edef2f5b85ccf152816269a7d 93173c4b95691e08075a54531891463cc1fb7b5d 96b656700f9b4784f69af925f46ecc91caa7f444b3168ecbb64afe06f8fc4c99 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7s55hmvx&10e1&11b0&callback=_xdc_._w1p09z&client=google-maps-embed&token=34695	62 B	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7s55hmvx&10e1&11b0&callback=_xdc_._w1p09z&client=google-maps-embed&token=34695 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:36:48 Last Seen2023-03-11 23:36:48 Times Seen1 Hash dc97e02709bb86dbe270383f3d61375a c6c05a5649ead59b3c309cc6ee810297ad64243a 49a1ce18ca3f5d4aca785f0722763dcc54ce2df696633b254ae4c13480ec0bde Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7s55hnb8&10e1&11b0&callback=_xdc_._ueki3q&client=google-maps-embed&token=117991	62 B	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7s55hnb8&10e1&11b0&callback=_xdc_._ueki3q&client=google-maps-embed&token=117991 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:36:48 Last Seen2023-03-11 23:36:48 Times Seen1 Hash 38fd29f538b0a4dca31f2877b6137f6c f26bc6956e6f131739682d11c54d6f7cb4872c66 8142d88c6880afc3718080551322beec1d531b2144afebd427ab79ca04b67cb5 Loading...

	santorotto.it/	1.4 kB	2023-03-08	2023-03-11
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:36:59 Last Seen2023-03-11 23:36:48 Times Seen1 Hash e0035e5f1d23fe1998babe8e420d0bff d4996279f4d6d15eb561de4af9b8a5460f64887c 90318efabefcb2317ebb394fccdab433edbee269a0adeedb95465fb57c5db647 Loading...

	santorotto.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4	3.1 kB	2023-03-07	2024-04-15
Pretty URL santorotto.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-15 15:38:28 Times Seen1874 Hash 412416b5df69805b1e084e50d4283c2f b8c47463c0793854638a8981cfad35503f393297 7e8d54d6c6a4ebd0237786d41ff5d205096eda696f2a5b591e074fe94ba3b3af Loading...

	santorotto.it/	260 B	2023-03-07	2024-04-16
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:00:31 Last Seen2024-04-16 13:45:30 Times Seen38 Hash bd2587e133d51f8a01bd5b08838e0907 94f7d12d3d98d9b220843ebba155e84210bb65e2 1edc3cb37a4085a23757bf5a80ee3b0c42c9f5dceac9d055630a053cdaed0534 Loading...

	maps.gstatic.com/maps-api-v3/embed/js/51/2/intl/it_ALL/init_embed.js	228 kB	2023-03-08	2023-03-11
Pretty URL maps.gstatic.com/maps-api-v3/embed/js/51/2/intl/it_ALL/init_embed.js IP 142.250.74.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:23 Last Seen2023-03-11 23:36:48 Times Seen1 Hash 8f42c7aaef8dfef53bc467feff35881e a518a4784eb60b7a714f9be5c124d17f3e105f5b a2a6a1b6ea3c771deaf53915719c5566a9f3a01b681051a706e2ec8bc10692b9 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/map.js	73 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:23 Last Seen2023-03-11 23:36:48 Times Seen1 Hash e70b9d909266e76fefe9593176cef066 f1df02b5255557679318787740e781c65584902e 3399362934c2b01d2aa708a081c7b23941ff45e7c713d7c134784035a79ce9fd Loading...

	santorotto.it/	56 B	2023-03-08	2024-01-23
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:26:28 Last Seen2024-01-23 23:03:31 Times Seen17 Hash e1866adf06d10b1c920a0f5bf44981f1 b98da7fc460abce8508811d7967a00508dcfbf4a b69f7b1989fc74996d186cbac7cc6cb821f38d6ce09ea1fc8b683f85e597e487 Loading...

	santorotto.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4	12 kB	2023-03-07	2024-04-14
Pretty URL santorotto.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-14 23:43:23 Times Seen947 Hash f2c8bed453ea6a55cad903c5e367bc4f 96323cb37f985657f8133dfbc452c189e277c2f1 b91aab00697781a1fb184945cd6e7602db0d45458fa58a53156110945f2b71be Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=129268	62 B	2023-03-08	2023-08-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=129268 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:25:00 Last Seen2023-08-17 14:45:14 Times Seen1761 Hash ac206f9aca43cbd08f77ebff219bad68 a8f70e30f06a72933f89c350b8fcc8e77280ff5d 5da1360295132675024820ab37f9bc1c658f6b900180906ec44125f8127f762e Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/controls.js	90 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:23 Last Seen2023-03-11 23:36:48 Times Seen1 Hash 0234eb751dc0f32cff37067b69202a60 b23094ebea1822af717f90a528eba7add0fb9d5c 1d8bfa91044702093f0e4dda5680152f150728baf1ff56f018468e6f7416c3f6 Loading...

	santorotto.it/	380 B	2023-03-07	2024-04-12
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2024-04-12 19:43:31 Times Seen1613 Hash dd76b7be95a3fec972a9b9d6f71c5a1f ffafb2d79886453f55c177ce760a730c6c82ed9a 593c2f5d3a6d9e788f3eebb00ca3a1b41570599d885fc617ed89f1c48e4f02ba Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/onion.js	27 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:23 Last Seen2023-03-11 23:36:48 Times Seen1 Hash daf0ecf47b6e10972c82cef211f735e6 0dde5a8aaa6364d6cf43c685682158b80f582e43 1151ad82692f3d4f4c19e34a241db6ec634b95e33964fd3037100ec1bf4de9a2 Loading...

	santorotto.it/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.1.4	1.8 kB	2023-03-07	2024-04-16
Pretty URL santorotto.it/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.1.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:28 Last Seen2024-04-16 13:45:31 Times Seen459 Hash f662d7c2a751894e22407051cfafd27f 378a621ef6affa9bf4ea74b778c2cbd4eac7a97d 602797e80613c3623325594e96463093c626554dff563622e8fbc3e795d283e0 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=it&region=it&callback=onApiLoad	174 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=it&region=it&callback=onApiLoad IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:36:48 Last Seen2023-03-11 23:36:48 Times Seen1 Hash b49fb295186d1b46bcda212635258124 b0e9c87a3193b2719240b1d7d5e19df895fea5e8 03d6d5f6d3a5c0d88e2d7e8f103153c37e32acd0f0fce5116c99e61d5101f6c4 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/common.js	255 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:36:01 Last Seen2023-03-11 23:36:48 Times Seen1 Hash d0d28261239b916e6da0e4a9b12700fb fee7114537803a0665e9114e1352f89a6f80ad25 b11e806b13330d86b06782cfce8d5ce29197f2749c87544b40a9750aad6467e0 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d39.431271691994674&2d6.571878615332445&2m2&1d46.976761954043035&2d16.794800905849584&2u4&4sit&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._9ag6s0&client=google-maps-embed&token=56556	12 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d39.431271691994674&2d6.571878615332445&2m2&1d46.976761954043035&2d16.794800905849584&2u4&4sit&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._9ag6s0&client=google-maps-embed&token=56556 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:36:59 Last Seen2023-03-11 23:36:48 Times Seen1 Hash 0630f6d74791c4fb38951fa47a1811b8 1a9ae78f6c2b2771ccaf3f7b8a01287a187a84fe 60d1861bbdd999dae462589ceca560923cbaabc9b5a8e1ae3932ea8f187daf62 Loading...

	santorotto.it/	163 B	2023-03-08	2023-03-11
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:36:59 Last Seen2023-03-11 23:36:48 Times Seen1 Hash f3abfc8d912b670566c5fd63e55f37f1 fee104fc9f60e6033a6a7e69baee6ff7eec44a76 f1595ccde78243a5a5c8e27d241fc7b0932b807a30200af63b704b5735c0b0f7 Loading...

	santorotto.it/wp-content/themes/betheme/js/menu.js?ver=21.1.4	2.4 kB	2023-03-07	2024-04-16
Pretty URL santorotto.it/wp-content/themes/betheme/js/menu.js?ver=21.1.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-16 13:45:31 Times Seen847 Hash d2acee736603de298edf90c0c64694c5 7299c74c02a6363cf24dd55e27c7dd2351b33ba4 c22005bbdf738de61a4c2ee99c2b3c4fe52f336dfc8aa274860c58c845027d50 Loading...

	www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d744382.1918873474!2d11.193374576926434!3d43.21488080542298!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x132be1ad3e70e70d%3A0x6770b4ccd7c74897!2sHotel+Santorotto!5e0!3m2!1sit!2sit!4v1558702609816!5m2!1sit!2sit	2.7 kB	2023-03-11	2023-03-11
Pretty URL www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d744382.1918873474!2d11.193374576926434!3d43.21488080542298!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x132be1ad3e70e70d%3A0x6770b4ccd7c74897!2sHotel+Santorotto!5e0!3m2!1sit!2sit!4v1558702609816!5m2!1sit!2sit IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:36:48 Last Seen2023-03-11 23:36:48 Times Seen1 Hash 1c10533ea1dd8bbc065c6dad4286740e 13ffc0740ed0b267a565715e14207fcb9ab970e9 6e8929e84ad510a0ebfa82bdba77cf8ccbc3f4e6fe77136f0ea7ec20d9cc902a Loading...

	santorotto.it/	11 kB	2023-03-08	2024-04-21
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:56 Last Seen2024-04-21 19:09:08 Times Seen48 Hash 3c6ef422095f53bc18bed8d4f765c288 0f6a5524dc487dbda0805a812b606ed05dde3288 0d2fdfd87272d07d4c874ce1fa26613a5e888d3a10938d494d2e169b02d005be Loading...

	santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.8.1	125 kB	2023-03-08	2023-12-13
Pretty URL santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.8.1 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:36:59 Last Seen2023-12-13 22:11:16 Times Seen26 Hash a0288207469d9159527ad96dd6cda5d5 6828391505a61e83a9686bfe52066368d619bc38 6fa52377e808df676e34441beea1b24f01e9ba5032d42009b46efc0d42746e00 Loading...

	santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3	111 kB	2023-03-07	2024-04-21
Pretty URL santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2024-04-21 14:32:36 Times Seen4631 Hash 67a9644e880e7a471d49c73bb7621932 2ac89b145da02402ce1877c580850e08076c5109 a1dff8b0c66227748951c4ff891f146f49c5a382ac8e3d6e3c2e9cf8aa560dc8 Loading...

	santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0	118 kB	2023-03-07	2024-04-21
Pretty URL santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-21 14:32:37 Times Seen1312 Hash 150324e55a09a90e1eface0a7faed270 0fe9f52c3c351c06f5cdb80f86d1aa70a52c4140 dfc519eb2d0e5ac0e8cdbe86fef355135280c643df14fa9a8e6abd5820d01159 Loading...

	santorotto.it/wp-content/themes/betheme/js/plugins.js?ver=21.1.4	194 kB	2023-03-07	2024-02-05
Pretty URL santorotto.it/wp-content/themes/betheme/js/plugins.js?ver=21.1.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:46 Last Seen2024-02-05 19:57:06 Times Seen116 Hash 11ba80cc7cb54181594b6f6944dce1cd 714bbe1e157565b01e0efbd23163c1b1a4e19787 9fa6485c9703675e0ec1675558e3b9a02bb7b9d862f2680cf546f5656eee2203 Loading...

	santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.8.1	24 kB	2023-03-07	2024-04-21
Pretty URL santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.8.1 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-21 14:32:34 Times Seen500 Hash 11c35109ea6d2f84352091094f7faf4f 0fef4cbec913fdd09ab0389af8499454ecb8948a e60fbf0bdc14cbc9e44557e622bdd1864f5556b72b7d9f46e0f039aed2f4840a Loading...

	santorotto.it/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.1.4	53 kB	2023-03-07	2024-04-16
Pretty URL santorotto.it/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.1.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:02 Last Seen2024-04-16 13:45:31 Times Seen486 Hash c578e81bc7f05e3f9e428f609d731a57 89d075b4d678662b7d16a10af2933dbf9d523b4e c36a1d5b71cce2b22a63e9593f75c0170f2620ed7bbad0bc12739accd84d38ce Loading...

	santorotto.it/wp-content/themes/betheme/js/scripts.js?ver=21.1.4	68 kB	2023-03-07	2024-03-08
Pretty URL santorotto.it/wp-content/themes/betheme/js/scripts.js?ver=21.1.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:26 Last Seen2024-03-08 10:10:33 Times Seen80 Hash 21397a244d0d87eff80bfe0b4e4811ab 2a0c497c2ec419b298135a918405f84f11580b9c f2db61a5423dca0b69d0a6ca8c2ea8b23fa41473a53a2b5f2cb6b6430cd41f0d Loading...

	santorotto.it/	3.1 kB	2023-03-08	2023-09-19
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:57 Last Seen2023-09-19 08:28:03 Times Seen67 Hash 59a06745892ad8536234b14bb9530739 670f4b93300d08e5b415325840c746a7e37a7119 919607492e7997c0fa13a3989b94da9f9eacfdc110a9c9a8d3bbbf236c749097 Loading...

	santorotto.it/wp-includes/js/jquery/jquery.js?ver=1.12.4	97 kB	2023-03-07	2024-04-20
Pretty URL santorotto.it/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-20 09:49:39 Times Seen17722 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	santorotto.it/wp-includes/js/wp-embed.min.js?ver=5.1.15	1.4 kB	2023-03-07	2024-04-23
Pretty URL santorotto.it/wp-includes/js/wp-embed.min.js?ver=5.1.15 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-23 05:14:55 Times Seen2986 Hash 570ae0f3c201604926ea599d3d1f6c04 2c29243a73660964d4712b969d2a15e27777bc14 5138d39633dc69fcd0ed7f33a5e38dc339123f682fa7f5242066879c2bbc8c9b Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/search_impl.js	2.8 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/search_impl.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:23 Last Seen2023-03-11 23:36:49 Times Seen1 Hash f728409d3f83f343d467738f251c3af5 27be77b16cc3d320fba7a0d08e6982ce7952c4f3 f6f51e406f311d249699650fce481a28518c46d460535a2174d0b6b0057dad09 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/overlay.js	3.6 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/overlay.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:23 Last Seen2023-03-11 23:36:49 Times Seen1 Hash 670f9363ac55c7a8b6fd34ff894a730a be2394f373fb5c1bbdc8905f01d8c9fed93b2ce5 f564089c9ba2fb9e345d71b644167a26d9036b2d08a6d7a5593d107ddfc73843 Loading...

	santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3	65 kB	2023-03-07	2024-04-21
Pretty URL santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-21 14:32:36 Times Seen3720 Hash e1223af8dbcd0552f6f6dc540431451e c01d6134f72ae04cb327a86918f3e88a63684e90 27ead7f47a3fb4d1e7cbef0c68e28bde7ea18923cf41d8ca82ba13584eebc710 Loading...

	santorotto.it/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4	3.9 kB	2023-03-07	2024-04-11
Pretty URL santorotto.it/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:26 Last Seen2024-04-11 16:14:22 Times Seen424 Hash 4465b90ef439b67caeedd504a82af68c 6b88b224a0da4525df2375f0caab58678edf3433 c8509588d94b47c1b1be041388997dd8ce06f9302b20679203005da08fbcc2c0 Loading...

	santorotto.it/	29 B	2023-03-07	2024-02-23
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-02-23 23:54:49 Times Seen94 Hash d5735d0679b354b10dbfb48b6f1419c2 ae6468d1089c0f063b140400541ca1e8efadc52a 193c8f39efe6b9c0dd57ade9f31cda1f497f6b1847058d75f2a5e2a40419bfbe Loading...

	santorotto.it/	1.1 kB	2023-03-07	2024-04-21
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-21 14:32:34 Times Seen3311 Hash b36955bf11fd2b943745960d036901e5 d9b5403fee4ae8ec7ad7a3cc6ed747bb62aacf6e 5f82f0ebcd0edef1c37dcba00935d90b65c18d2b0834fce752efe5960e532de3 Loading...

	santorotto.it/wp-includes/js/comment-reply.min.js?ver=5.1.15	2.2 kB	2023-03-07	2024-04-18
Pretty URL santorotto.it/wp-includes/js/comment-reply.min.js?ver=5.1.15 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:33 Last Seen2024-04-18 16:58:36 Times Seen724 Hash 9a4179bd53e9fbc78f27855cfcc1c29c 2fcfd1cb9da823e8a4f260a42c616473580f1c1c aeb40c559d97e7bbb79841388a3b9a371c1d23ad07f69499ffd0f4625c35ec61 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/util.js	170 kB	2023-03-08	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/2/intl/it_ALL/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:23 Last Seen2023-03-11 23:36:49 Times Seen1 Hash 58b7c73a49912a14e54b8145590c7b06 d3f1b64d931f01a34572659bd4347115b859b2d5 95dbc41b62f3f6e8158b74472a386269eadab9431dc608f84a343dcebc05d676 Loading...

	santorotto.it/	3.5 kB	2023-03-08	2023-11-10
Pretty URL santorotto.it/ IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:37:56 Last Seen2023-11-10 04:27:01 Times Seen44 Hash 1ae8b66d8b707c6262aa703fcdf5c045 aa639e061221fc8fe68c3db3e101d6afbaffaa3c 8cf6c3bd05e99775e6b9c17aa20ad5a2b02e2b85d4bfa44c0362810d0dbc9bb0 Loading...

	santorotto.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-23
Pretty URL santorotto.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 46.37.14.198 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-23 05:14:55 Times Seen37149 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3a15fdf632cd75a684de311897cf30d3	51 kB	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-21 14:32:34 Times Seen1161 Hash 3a15fdf632cd75a684de311897cf30d3 96fe9f5c57184ee30d1be2896f2bff11717a7fbf 2626f69586429e55dcd345b157a84d3956e2ee556ebf54c6a64ca939f88dda04 Loading...

	#2 Eval - 10f428f59d120bf8adbc39b86d547a2f	29 kB	2023-03-07	2024-04-17
Pretty Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-17 05:54:00 Times Seen2211 Hash 10f428f59d120bf8adbc39b86d547a2f fe92af104d1ca10761ec932fdd2da77f759286d4 e0a244f4ace8e695c3aa03697b9dd349f5f1abbae8974d87e879274808305595 Loading...

	#3 Eval - 332f88f5bd8a2101d8b14fda7bca9f4b	208 kB	2023-03-08	2024-02-05
Pretty Observations First Seen2023-03-08 01:26:28 Last Seen2024-02-05 23:39:42 Times Seen18 Hash 332f88f5bd8a2101d8b14fda7bca9f4b fd4b75dbc044f5ee334048bbda31bbf413b25cc4 43fb7e52a8ac7fc2ddf2ff0de10ba222453827e90bda2eca5fd01d59defffab1 Loading...

		Size	First Seen	Last Seen
	#1 Write - ec5e667d2dbbf48a211736c6b4fa8931	3.5 kB	2023-03-08	2024-04-21
Pretty Observations First Seen2023-03-08 19:37:56 Last Seen2024-04-21 19:09:08 Times Seen48 Hash ec5e667d2dbbf48a211736c6b4fa8931 1c613494580633f89a13e7e65045e92ac0eee45d f9dff83947afab1be20810aa04dcdf4c0d6a711a990bda2ba42c8a45da9c96b5 Loading...

HTTP Transactions (88)

URL IP Response Size

santorotto.it/

46.37.14.198

301 Moved Permanently

162 B

URL HTTP/1.1
santorotto.it/
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 14:06:42 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://santorotto.it/

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7350
Expires: Thu, 01 Dec 2022 16:09:12 GMT
Date: Thu, 01 Dec 2022 14:06:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17088
Expires: Thu, 01 Dec 2022 18:51:30 GMT
Date: Thu, 01 Dec 2022 14:06:42 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: AssD/dcvR/wQbyCL1ZBUiG41H8W59QrHB53p/YDw1k3EuvZysFNTGMMFyoQQsY4IhyRJagyf4yo=
x-amz-request-id: C8H7MEG9TK2PYANV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 13:46:17 GMT
age: 1225
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2688
Cache-Control: max-age=162558
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:06:42 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:16:00 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 13:18:08 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2914
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
adbf3b43e92a70fcbf50b2c6cc0eb201
fb789c16557133680ef48b19a60bcf38eb52bc2d
03fe1aebb36660aac6c0a2cd69343446e7c2d3a60be6c8f57c2a239b67a82528

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03FE1AEBB36660AAC6C0A2CD69343446E7C2D3A60BE6C8F57C2A239B67A82528"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Thu, 01 Dec 2022 20:05:54 GMT
Date: Thu, 01 Dec 2022 14:06:42 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 13:11:15 GMT
cache-control: public,max-age=3600
age: 3327
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2685
Cache-Control: max-age=157491
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:06:43 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:51:34 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.149.156.115

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.156.115:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vHUGOJUb0+JNjf3aaPLUsQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ShU/IhPBzCKPxJK8UbtQjkumh1U=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

santorotto.it/wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png

46.37.14.198

200 OK

600 B

URL HTTP/2
santorotto.it/wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
600 B (600 bytes)
Hash
2878f64a0217a154e531853f6a822c65
ac7a53e9f53b9de8a344c38222e217d50d559b83
3f47c75fa68e49b1cdca50c61e9cd6603b57c521e5e6809df59a4a15e291a4ef

HTTP Headers

GET /wp-content/plugins/sitepress-multilingual-cms/res/flags/en.png HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: image/png
content-length: 600
x-accel-version: 0.01
last-modified: Thu, 12 Mar 2020 13:14:45 GMT
etag: "258-5a0a822fa407e"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/sitepress-multilingual-cms/res/flags/it.png

46.37.14.198

200 OK

267 B

URL HTTP/2
santorotto.it/wp-content/plugins/sitepress-multilingual-cms/res/flags/it.png
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
267 B (267 bytes)
Hash
9c6287bdf64843201af93ff1afbfac6c
a31d1f6a6dc624c02a6e7767bd9d5ad894c7cddb
85d05871f6315412de38a72c7164fd4917efba135ba06ed9972c502c1fd811ff

HTTP Headers

GET /wp-content/plugins/sitepress-multilingual-cms/res/flags/it.png HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: image/png
content-length: 267
x-accel-version: 0.01
last-modified: Thu, 12 Mar 2020 13:14:45 GMT
etag: "10b-5a0a822fae877"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2

santorotto.it/wp-content/uploads/2019/04/sinalunga-hotel-ristorante-santorotto-val-di-chiana.jpg

46.37.14.198

301 Moved Permanently

162 B

URL HTTP/1.1
santorotto.it/wp-content/uploads/2019/04/sinalunga-hotel-ristorante-santorotto-val-di-chiana.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /wp-content/uploads/2019/04/sinalunga-hotel-ristorante-santorotto-val-di-chiana.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 14:06:43 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://santorotto.it/wp-content/uploads/2019/04/sinalunga-hotel-ristorante-santorotto-val-di-chiana.jpg

santorotto.it/wp-content/uploads/2019/04/camere-hotel-santorotto-valdichiana-sinalunga-business.jpg

46.37.14.198

301 Moved Permanently

162 B

URL HTTP/1.1
santorotto.it/wp-content/uploads/2019/04/camere-hotel-santorotto-valdichiana-sinalunga-business.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /wp-content/uploads/2019/04/camere-hotel-santorotto-valdichiana-sinalunga-business.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 14:06:43 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://santorotto.it/wp-content/uploads/2019/04/camere-hotel-santorotto-valdichiana-sinalunga-business.jpg

santorotto.it/wp-content/uploads/2019/04/ristorante-hotel-santorotto-valdichiana-sinalunga-business.jpg

46.37.14.198

301 Moved Permanently

162 B

URL HTTP/1.1
santorotto.it/wp-content/uploads/2019/04/ristorante-hotel-santorotto-valdichiana-sinalunga-business.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /wp-content/uploads/2019/04/ristorante-hotel-santorotto-valdichiana-sinalunga-business.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 14:06:43 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://santorotto.it/wp-content/uploads/2019/04/ristorante-hotel-santorotto-valdichiana-sinalunga-business.jpg

santorotto.it/wp-content/uploads/2019/05/SANTOROTTO-logo.png

46.37.14.198

301 Moved Permanently

162 B

URL HTTP/1.1
santorotto.it/wp-content/uploads/2019/05/SANTOROTTO-logo.png
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /wp-content/uploads/2019/05/SANTOROTTO-logo.png HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 14:06:43 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://santorotto.it/wp-content/uploads/2019/05/SANTOROTTO-logo.png

santorotto.it/wp-content/uploads/2015/02/hotel_about.jpg

46.37.14.198

301 Moved Permanently

162 B

URL HTTP/1.1
santorotto.it/wp-content/uploads/2015/02/hotel_about.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /wp-content/uploads/2015/02/hotel_about.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 14:06:43 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://santorotto.it/wp-content/uploads/2015/02/hotel_about.jpg

santorotto.it/wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-camera.jpg

46.37.14.198

200 OK

247 kB

URL HTTP/2
santorotto.it/wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-camera.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1800x1301, components 3\012- data
Size
247 kB (247013 bytes)
Hash
b092ec371c3252723ef97d7d9bfe1e05
437290840b33d3e0cf2945454f3a73973a9fb16c
d1a0fb36e1ee99362526fa758398723fdfc0d7a8c5383ccee3953d42ea03c454

HTTP Headers

GET /wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-camera.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: image/jpeg
content-length: 247013
last-modified: Thu, 12 Mar 2020 13:14:37 GMT
etag: "5e6a35bd-3c4e5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

santorotto.it/wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business.jpg

46.37.14.198

200 OK

438 kB

URL HTTP/2
santorotto.it/wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1800x1213, components 3\012- data
Size
438 kB (437857 bytes)
Hash
9e41c855cb5e2917e43bfabe3d9aa097
1bff2eba4c070fb15aaace47785f9822c0c32685
b934ff2f513c3da70b428d61696b62cfd1cac6fc0ff7efc77e338049ea88c20f

HTTP Headers

GET /wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: image/jpeg
content-length: 437857
last-modified: Thu, 12 Mar 2020 13:14:37 GMT
etag: "5e6a35bd-6ae61"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

santorotto.it/wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-colazione.jpg

46.37.14.198

200 OK

490 kB

URL HTTP/2
santorotto.it/wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-colazione.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1800x1254, components 3\012- data
Size
490 kB (490345 bytes)
Hash
40ea30adefa4abcccf44e872e4e6649c
ab2b24e7c86f44b5097d1d22338b105277bcfa8b
9b67aa5e374d543b1d32529772f020c6d11eaa935b6a63d632f8d3f8d1ff0975

HTTP Headers

GET /wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-colazione.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: image/jpeg
content-length: 490345
last-modified: Thu, 12 Mar 2020 13:14:37 GMT
etag: "5e6a35bd-77b69"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

santorotto.it/wp-content/uploads/2019/04/sinalunga-hotel-ristorante-santorotto-val-di-chiana.jpg

46.37.14.198

200 OK

92 kB

URL HTTP/2
santorotto.it/wp-content/uploads/2019/04/sinalunga-hotel-ristorante-santorotto-val-di-chiana.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x350, components 3\012- data
Size
92 kB (91689 bytes)
Hash
84a9ae6b0c4e51d147ee0e17743fada3
181f5793c6952d42f9d294bdb11d6a50c3c22af5
ec373de7d7503cd59ee54683593c48458902e65fe71954e322a467d40b481965

HTTP Headers

GET /wp-content/uploads/2019/04/sinalunga-hotel-ristorante-santorotto-val-di-chiana.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: image/jpeg
content-length: 91689
last-modified: Thu, 12 Mar 2020 13:14:37 GMT
etag: "5e6a35bd-16629"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.15

46.37.14.198

200 OK

4.5 kB

URL HTTP/2
santorotto.it/wp-includes/js/wp-emoji-release.min.js?ver=5.1.15
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (9071)
Size
4.5 kB (4517 bytes)
Hash
4a640e6f28eae325947ea8121cfdcd27
3361c638ac49da119b710dd21cc6351f3f6b0b0a
bf54cc547e4112dbcfadb45577a75394ec27f13c622a1c33d5cb796285565af4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.15 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-2eaf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.1.4

46.37.14.198

200 OK

82 kB

URL HTTP/2
santorotto.it/wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text
Size
82 kB (82405 bytes)
Hash
6b2ca8b9bb4df429ddeafd176b42a211
1f333e04bcc79e11a492c8da5e1037f4be4b8524
01be52b83e5902f687ddc5b4dabf6440a40ab713c43b814bdf2d353b1d1f8038

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/js/parallax/translate3d.js?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:34 GMT
etag: W/"5e6a35ba-1228"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/comment-reply.min.js?ver=5.1.15

46.37.14.198

200 OK

17 kB

URL HTTP/2
santorotto.it/wp-includes/js/comment-reply.min.js?ver=5.1.15
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (2160), with no line terminators
Size
17 kB (16675 bytes)
Hash
39fed08ad1048e787c14c3ef85605b18
32dd1582693dcb8c9bf202d320e3196ee14f96f2
c7d4a5303cb2db753ee416e73e1e42c42971611742ba0085f7fa3fd61063e095

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=5.1.15 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-870"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:06:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

santorotto.it/wp-includes/css/dist/block-library/style.min.css?ver=5.1.15

46.37.14.198

200 OK

4.4 kB

URL HTTP/2
santorotto.it/wp-includes/css/dist/block-library/style.min.css?ver=5.1.15
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (25245), with no line terminators
Size
4.4 kB (4427 bytes)
Hash
af1e8491a4a3af99481e02b6dee6c4b8
d326c53c0ff97491287f25e705c48ab343a39a7e
42ad1fe08e310d8e910e05007c7999941f8e9123caf89b61df3c9ae87bea60d2

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.15 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-629d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://santorotto.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 66748
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/js/scripts.js?ver=21.1.4

46.37.14.198

200 OK

26 kB

URL HTTP/2
santorotto.it/wp-content/themes/betheme/js/scripts.js?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text
Size
26 kB (26227 bytes)
Hash
bdd763408451903ab99910cb57f8cdd6
c520e9b980473b1895d7cce76d7302fe63cee78a
358d3e39c5bd05548984ba1e441abe75956f2ba647f41f7aa6976f71791dae2a

HTTP Headers

GET /wp-content/themes/betheme/js/scripts.js?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:34 GMT
etag: W/"5e6a35ba-10971"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

142.250.74.35

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://santorotto.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 07:01:24 GMT
expires: Wed, 29 Nov 2023 07:01:24 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 198319
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://santorotto.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 66748
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:06:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

santorotto.it/wp-includes/js/wp-embed.min.js?ver=5.1.15

46.37.14.198

200 OK

94 kB

URL HTTP/2
santorotto.it/wp-includes/js/wp-embed.min.js?ver=5.1.15
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (1391), with no line terminators
Size
94 kB (94475 bytes)
Hash
659bc054348b6228699031476139c783
f62c36ec92b101cfb005de65628fb5935d945fc7
9b09e589bb651ab6f67e100025ad1ddb6f19b4ecabc3f5bbfb58f21eff049f43

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=5.1.15 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-56f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/uploads/2015/02/hotel_about.jpg

46.37.14.198

200 OK

93 kB

URL HTTP/2
santorotto.it/wp-content/uploads/2015/02/hotel_about.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 780x365, components 3\012- data
Size
93 kB (92785 bytes)
Hash
e648ca332421ee95009f7a4f54cc284d
48bd15cf866c18612c3aa5d75f1bb821f1968f9f
b717c5e8f6e68194371309a57628d6619d204f08d89c8bc7238b010befbe4e0d

HTTP Headers

GET /wp-content/uploads/2015/02/hotel_about.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:44 GMT
content-type: image/jpeg
content-length: 92785
last-modified: Thu, 12 Mar 2020 13:14:35 GMT
etag: "5e6a35bb-16a71"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

santorotto.it/wp-content/uploads/2019/04/camere-hotel-santorotto-valdichiana-sinalunga-business.jpg

46.37.14.198

200 OK

37 kB

URL HTTP/2
santorotto.it/wp-content/uploads/2019/04/camere-hotel-santorotto-valdichiana-sinalunga-business.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x350, components 3\012- data
Size
37 kB (36818 bytes)
Hash
3800acd50b0dc79731a57b9ad3636772
4a93117f7e7b41a343b9e13eb2d646e4f64f3101
6acdb94bb64876c94ca9938af147bd17b423d9115bce70193e0e7969d34bae18

HTTP Headers

GET /wp-content/uploads/2019/04/camere-hotel-santorotto-valdichiana-sinalunga-business.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:44 GMT
content-type: image/jpeg
content-length: 36818
last-modified: Thu, 12 Mar 2020 13:14:36 GMT
etag: "5e6a35bc-8fd2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

santorotto.it/wp-content/uploads/2019/05/SANTOROTTO-logo.png

46.37.14.198

200 OK

5.9 kB

URL HTTP/2
santorotto.it/wp-content/uploads/2019/05/SANTOROTTO-logo.png
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 448 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5883 bytes)
Hash
8b5f0c5f8a4356437cbf3b681ca6d64c
f775b1f2220ea034695a895394f2bc9ced88969b
e1d18da32fb673201d0e5ec8e9536bd6116b1d40fc794b437b8f4e59990eec8e

HTTP Headers

GET /wp-content/uploads/2019/05/SANTOROTTO-logo.png HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:44 GMT
content-type: image/png
content-length: 5883
last-modified: Thu, 12 Mar 2020 13:14:37 GMT
etag: "5e6a35bd-16fb"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/images/favicon.ico

46.37.14.198

200 OK

5.4 kB

URL HTTP/2
santorotto.it/wp-content/themes/betheme/images/favicon.ico
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
5.4 kB (5430 bytes)
Hash
9d1b031ca1395a94a6886087e245cb7b
f3f85d209c8f92593b568197814f0f0fcee45ad7
b47275b5b6878455d8937e95b32301f17c3caf0a233be8e864e9dc07493806f1

HTTP Headers

GET /wp-content/themes/betheme/images/favicon.ico HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:44 GMT
content-type: image/vnd.microsoft.icon
content-length: 5430
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: "5e6a35b9-1536"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d744382.1918873474!2d11.193374576926434!3d43.21488080542298!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x132be1ad3e70e70d%3A0x6770b4ccd7c74897!2sHotel+Santorotto!5e0!3m2!1sit!2sit!4v1558702609816!5m2!1sit!2sit

142.250.74.164

200 OK

1.4 kB

URL HTTP/2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d744382.1918873474!2d11.193374576926434!3d43.21488080542298!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x132be1ad3e70e70d%3A0x6770b4ccd7c74897!2sHotel+Santorotto!5e0!3m2!1sit!2sit!4v1558702609816!5m2!1sit!2sit
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2425)
Size
1.4 kB (1359 bytes)
Hash
8d5ae8b67d5e44987a9895fa12153494
3f6ebcbaff884916fb174319cf89f4d9a06fe284
b8b933a9998d558aab6a8da2914d0823a99cedf71e6a2f6c16c0f522c39ea3b4

HTTP Headers

GET /maps/embed?pb=!1m18!1m12!1m3!1d744382.1918873474!2d11.193374576926434!3d43.21488080542298!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x132be1ad3e70e70d%3A0x6770b4ccd7c74897!2sHotel+Santorotto!5e0!3m2!1sit!2sit!4v1558702609816!5m2!1sit!2sit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 14:06:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-MjkAPqlllWYu7uAg753fCQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1359
x-xss-protection: 0
server-timing: gfet4t7; dur=230
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 14:06:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

santorotto.it/wp-content/plugins/revslider/public/assets/assets/loader.gif

46.37.14.198

200 OK

2.5 kB

URL HTTP/2
santorotto.it/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
GIF image data, version 89a, 24 x 24\012- data
Size
2.5 kB (2545 bytes)
Hash
4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
Cookie: cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:44 GMT
content-type: image/gif
content-length: 2545
last-modified: Thu, 12 Mar 2020 13:14:30 GMT
etag: "5e6a35b6-9f1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

maps.gstatic.com/maps-api-v3/embed/js/51/2/intl/it_ALL/init_embed.js

142.250.74.3

200 OK

70 kB

URL HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/51/2/intl/it_ALL/init_embed.js
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2669)
Size
70 kB (69605 bytes)
Hash
6652fb90acd6a8ad99b4871a7450299a
41514e3bd1bbe2db4e0a2fc79d5169478b243d73
7590ec2b048812104487db8b0d4a6d7b1cc09cb9cf3569dd0618466be7a6bbac

HTTP Headers

GET /maps-api-v3/embed/js/51/2/intl/it_ALL/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 21:52:44 GMT
expires: Thu, 30 Nov 2023 21:52:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 22:32:00 GMT
content-type: text/javascript
age: 58440
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4

46.37.14.198

200 OK

30 kB

URL HTTP/2
santorotto.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (11799)
Size
30 kB (29730 bytes)
Hash
38b0c6a3d32bf7f0e5a6ee6aa5f44f22
c7ad6342fa8f300921ef0e67b16f4b22ea9d0798
2c23a431144612cc99788d94c1ab74546e43c39a7ef80c55b61a098ad59864ff

HTTP Headers

GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.11.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-2eec"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.1.4

46.37.14.198

200 OK

72 kB

URL HTTP/2
santorotto.it/wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text
Size
72 kB (71710 bytes)
Hash
734ed026f08230be2f7ad7ea40db3583
f7ddb98a99e9f5ad73fee1ae2ff571f8faad7c77
6540c288d272bc365d754f920c536cec6f6182bfb2136575669a6c37709649ab

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/assets/jplayer/css/jplayer.blue.monday.css?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-266a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.1.4

46.37.14.198

200 OK

66 kB

URL HTTP/2
santorotto.it/wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (365)
Size
66 kB (65795 bytes)
Hash
ffc6239484b85ffab9f62d67a74976bc
dead534cb2a6a7d9261461e5d3574c98add757f1
dfd0be24d16861a5318d3e32a030e851ebb2848a11812d0404e84dd11610db0f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/assets/ui/jquery.ui.all.css?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-48eb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2387
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 14:06:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2387
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 14:06:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2387
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 14:06:44 GMT
Connection: keep-alive

santorotto.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3

46.37.14.198

200 OK

9.7 kB

URL HTTP/2
santorotto.it/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Size
9.7 kB (9662 bytes)
Hash
43939d8a4d64c880f23b277ff63ed3ce
e9cf31617989987b3cde3bbeb06973c5b352666d
e3a2fc5d5a67fd4fd247b5911714438a33d11d63e1e49837f3dfaad9d1b3b2c3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.3 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-9b8c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2387
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 14:06:44 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9459 bytes)
Hash
e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 10:48:24 GMT
age: 11900
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4762 bytes)
Hash
d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: b7c0e28a-de0d-443d-8bf4-900a964bf110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uSFcMoAMF2CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc1-7abade3a670201cf1906b79f;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gZSkafSw8cXo9AChLOTVJW7r_hHLW8kaHlA-ED2_zFJwuUk1uS3VRw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:29:36 GMT
age: 2228
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9674 bytes)
Hash
5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:44:47 GMT
age: 58917
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8740 bytes)
Hash
26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 12:31:43 GMT
age: 5701
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (16038 bytes)
Hash
ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 58871
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.8.1

46.37.14.198

200 OK

17 kB

URL HTTP/2
santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.8.1
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text
Size
17 kB (16797 bytes)
Hash
1d16474ff4a4cee831e1190c507c0f5e
282f4c5339a494b9fa9fff6983f47500c0763501
6cd5768db1a019f9bdc6ae3e27779c198c1c2a2237c290f342dbf3dba7e25c70

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.8.1 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:26 GMT
etag: W/"5e6a35b2-583f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.1.4

46.37.14.198

200 OK

28 kB

URL HTTP/2
santorotto.it/wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (58508), with no line terminators
Size
28 kB (27713 bytes)
Hash
92c5a8447e7a1659d4784e79cfe50e20
2220e81f96bbd58b09c28eef83e63ab9abaec214
077f880893ef06df146b63ffca41d3645304095980597841287e558edcbd151e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/assets/animations/animations.min.css?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-e48c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/css/base.css?ver=21.1.4

46.37.14.198

200 OK

49 kB

URL HTTP/2
santorotto.it/wp-content/themes/betheme/css/base.css?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text, with very long lines (464)
Size
49 kB (49101 bytes)
Hash
87f0daf86dc6cd4945d14cf988a14867
eff0613bdf4a9dc47399b2f9bc0754062322ad84
c4736a15ad3c15f106cc286734c5e0e9443fdba0099aa81962cb304a7bfc1b4e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/css/base.css?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-da6b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 66769
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13411 bytes)
Hash
328ce221bcf3442f88d09373193ff594
63bfa2ea925aa2c188c664a7bf7af7b0e5417e60
21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 13411
x-amzn-requestid: 17fcc4e1-76c1-4eca-9235-c1a513bca24a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80FCQoAMFs1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-26da4f265d74215f31425eb9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MttRByNp1C1ZeFFicFVa0w3XRyXJnUycPy2Izk8hzGEgXGdDqD3L3A==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:17 GMT
age: 58714
etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-f59"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.8.1

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.8.1
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/cookie-law-info/public/js/cookie-law-info-public.js?ver=1.8.1 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:27 GMT
etag: W/"5e6a35b3-553f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/css/layout.css?ver=21.1.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/themes/betheme/css/layout.css?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/css/layout.css?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-1ca47"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/css/responsive.css?ver=21.1.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/themes/betheme/css/responsive.css?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/css/responsive.css?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-dceb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.11.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-60fc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/css/shortcodes.css?ver=21.1.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/themes/betheme/css/shortcodes.css?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/css/shortcodes.css?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-2171e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:43 GMT
etag: W/"5e6a35c3-2748"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/js/plugins.js?ver=21.1.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/themes/betheme/js/plugins.js?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/betheme/js/plugins.js?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:34 GMT
etag: W/"5e6a35ba-2f7c3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.1.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/assets/animations/animations.min.js?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-71e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.8 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://santorotto.it/
Cookie: cookielawinfo-checkbox-non-necessary=yes
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:44 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-718e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.3 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-fdb5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:42 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=1.8.1

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=1.8.1
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-public.css?ver=1.8.1 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:27 GMT
etag: W/"5e6a35b3-b26"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/jquery/jquery.js?ver=1.12.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:43 GMT
etag: W/"5e6a35c3-17a69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.11.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-2172"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=1.8.1

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=1.8.1
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/cookie-law-info/public/css/cookie-law-info-gdpr.css?ver=1.8.1 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
last-modified: Thu, 12 Mar 2020 13:14:27 GMT
etag: W/"5e6a35b3-5c22"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A1%2C100%2C300%2C400%2C400italic%2C700%7CPatua+One%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.15

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A1%2C100%2C300%2C400%2C400italic%2C700%7CPatua+One%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.15
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A1%2C100%2C300%2C400%2C400italic%2C700%7CPatua+One%3A1%2C100%2C300%2C400%2C400italic%2C700&ver=5.1.15 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 14:06:43 GMT
date: Thu, 01 Dec 2022 14:06:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.3 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-1afe4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-ingresso-reception.jpg

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-ingresso-reception.jpg
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/04/hotel-santorotto-ristorante-sinalunga-valdichiana-business-ingresso-reception.jpg HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: image/jpeg
content-length: 455537
last-modified: Thu, 12 Mar 2020 13:14:37 GMT
etag: "5e6a35bd-6f371"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/widget.min.js?ver=1.11.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-1aab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.8.1

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.8.1
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.8.1 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:26 GMT
etag: W/"5e6a35b2-5d17"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:26 GMT
etag: W/"5e6a35b2-1cb35"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.1.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/assets/jplayer/jplayer.min.js?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:33 GMT
etag: W/"5e6a35b9-cd96"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/style.css?ver=21.1.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/themes/betheme/style.css?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/betheme/style.css?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 12 Mar 2020 13:14:34 GMT
etag: W/"15e-5a0a82255f579"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.8.1

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.8.1
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.8.1 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:26 GMT
etag: W/"5e6a35b2-1e970"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-content/themes/betheme/js/menu.js?ver=21.1.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-content/themes/betheme/js/menu.js?ver=21.1.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/betheme/js/menu.js?ver=21.1.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 12 Mar 2020 13:14:34 GMT
etag: W/"5e6a35ba-98d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

santorotto.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4

46.37.14.198

200 OK

0 B

URL HTTP/2
santorotto.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4
IP
46.37.14.198:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.11.4 HTTP/1.1
Host: santorotto.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://santorotto.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 14:06:43 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 08:33:34 GMT
etag: W/"6077fa5e-c46"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (53)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations