Report - rosaroll70.it/

Report Overview

Submitted URL
rosaroll70.it/
IP
95.141.34.210
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.
Submitted
2022-09-21 21:49:42
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
124

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.9 kB	34.160.144.191
rosaroll70.it	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	764 B	646 B	95.141.34.210
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	7.0 kB	142.250.74.3
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.215.91.121
translate.googleapis.com	1005	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	405 B	4.6 kB	142.250.74.74
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
www.rosaroll70.it	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	46 kB	49 MB	95.141.34.210
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	469 B	29 kB	142.250.74.163
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	917 B	746 B	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	28 kB	142.250.74.46
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	81 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-21	medium	rosaroll70.it/	Malware
2022-09-21	medium	rosaroll70.it/	Malware
2022-09-21	medium	www.rosaroll70.it/	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.6	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1613033116	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/style.css?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/linear-icons/style.min.css?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/elegant-icons/style.min.css?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/ion-icons/style.min.css?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/css/style_dynamic.css?ver=1604586168	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/css/style_dynamic_responsive.css?ver=1604586168	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm-child/style.css?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1662118274	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.6	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=1613033116	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.6	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/hammer.min.js?ver=1	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/virtual-scroll.min.js?ver=1	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/doubletaptogo.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/modernizr.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.appear.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/hoverIntent.min.js?ver=1.10.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/absoluteCounter.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/easypiechart.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mixitup.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.nicescroll.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.prettyPhoto.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/waypoints.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/bootstrap.carousel.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/skrollr.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/Chart.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/owl.carousel.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/lemmon-slider.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.carouFredSel-6.2.1.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fullPage.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/default_dynamic.js?ver=1604586168	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/default.min.js?ver=6.0.2	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/elegant-icons/fonts/ElegantIcons.woff	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0	Malware
2022-09-21	medium	www.rosaroll70.it/wp-content/uploads/2019/11/Logo-Rosaroll.jpeg	Malware
2022-09-21	medium	www.rosaroll70.it/wp-json/contact-form-7/v1/contact-forms/86/feedback/schema	Malware
2022-09-21	medium	www.rosaroll70.it/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (73)

	URL	Size	First Seen	Last Seen
	www.rosaroll70.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 06:13:12 Times Seen68612 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.nicescroll.min.js?ver=6.0.2	57 kB	2023-03-07	2024-04-09
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.nicescroll.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:38 Last Seen2024-04-09 23:31:42 Times Seen219 Hash b712773d7565901cfaa401ff8d03e190 57e822943ec3e4fe05da7ecfa4a1dff6e96a9f8f d48b802ba95540500605a566b5c82db36ce640fde65d64c52946a254b01f58c2 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/virtual-scroll.min.js?ver=1	3.2 kB	2023-03-07	2024-04-09
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/virtual-scroll.min.js?ver=1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-04-09 23:31:41 Times Seen30 Hash c02ed13c67ec5a4c9e67790223f1210b 2316c0b801a02639e0c87a5854216f0267c71217 afcdd184f8541a698ce191543e8b1259b9e2f8188dc08480d6efa517e7cda0f3 Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1	707 B	2023-03-07	2023-12-27
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2023-12-27 20:46:58 Times Seen44 Hash e44254aee10ef35f6b4ae8ff61794ce7 37bd0b661ac048a7ea282b4e6ac8426d96430a95 ab41f275f8588ca434760a503eca552f89e2cb1f2c8684df9cf65c868ea4fe49 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/doubletaptogo.js?ver=6.0.2	694 B	2023-03-07	2024-03-26
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/doubletaptogo.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:35 Last Seen2024-03-26 11:49:44 Times Seen43 Hash 005833820c7b3284aba4fc0f4c643375 69fa317845f0f397a0331334ea7fc631ec0fcff0 3f06acf517c012f01362dd63c27cfb3082dda3b4d74aaf3b315956971b8aaf33 Loading...

	www.rosaroll70.it/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0	16 kB	2023-03-07	2024-04-15
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:10 Last Seen2024-04-15 11:35:11 Times Seen217 Hash ca2c44948f1078e4664c34670e8880e9 b42f15a64e9385b0c531f905ef01cfe676af767d ce54fc66e0c96540ec003f661021f390e298d8ba478e47c8b1ebbe95702e4436 Loading...

	www.rosaroll70.it/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.4.1	36 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.4.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:22 Last Seen2024-04-24 08:26:25 Times Seen674 Hash 3a9c9706a7b52f750c71096411cc18bc 30fcae004682838e945414717bb854cba0e27483 322bf3797b194ae22aafa05a366471210116b26feeef7ea074752efff0b7f061 Loading...

	www.rosaroll70.it/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2	906 B	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:59 Last Seen2024-04-24 20:13:16 Times Seen3865 Hash 2c6d3b562a48e0df5474999dd47e58fb 945220e990eb176c14e53cc663fb01e04e31b59f 3e6131330963c472b950b8aaf544ba3829735b8ccb103d614ba7793e3a786550 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.waitforimages.js?ver=6.0.2	2.1 kB	2023-03-07	2024-04-19
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.waitforimages.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen748 Hash f556337e0f81cf84d8e083a0a0c07ea4 8ba3af5492449cbd96538871fd627ec0aadf778a 6ca93334713b868bad24177b7187d934ad1678ab3abc7fa665c5041b96e3766b Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0	795 B	2023-03-07	2024-01-04
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-01-04 10:49:51 Times Seen11 Hash a17b1850a304d63b434e1215cc1b68ba 83ea404ada382b8ab5b8fca7865bf652cb80bb56 21db6b8d523806235ab1a3dee2ee23bfcbd1712552382e6804a34e060bd69d6e Loading...

	www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3	9.7 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:47 Last Seen2024-04-24 15:27:18 Times Seen1719 Hash 490c29d6776fc430c23403fd845b34b0 817129906b7fef1011895a76f047c7693a852e21 29e8de26576208c07ba0845f604e65c9273b93f9f4d1d66214eb4c586f9938c4 Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 18:24:18 Times Seen3653 Hash 6aaf0a4e8eac131defea126f5b1b5fbf 24da0326af36303e5a1e9799a3c26f7a1077928c 240b702419d6c39ecc4896f0132ccfc9bc517e9aef0c782d99580e0c678b47d5 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/bootstrap.carousel.js?ver=6.0.2	8.0 kB	2023-03-07	2024-03-14
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/bootstrap.carousel.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-03-14 13:54:47 Times Seen30 Hash 36958680d395c905dce51b86c754bce0 e8c4c2556dfb358a35e1d298a2f862b1c004824c be76ef56aeb9182bb3c859d8ff33c6aa7568c2484eabc5f96bcefef3b1d8a47f Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.easing.1.3.js?ver=6.0.2	5.4 kB	2023-03-07	2024-03-14
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.easing.1.3.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:35 Last Seen2024-03-14 13:54:47 Times Seen37 Hash 6d25eb7450d05abdc4f09f6fa4e22e1f 484ebbdf68734055bc7287ff94794d2b1cb17221 c416e6b05e597ffa6fa69884024ae3141f789768f6753a7882fe56db1d0d244c Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2	18 kB	2023-03-07	2024-04-19
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen897 Hash 7b8f9e0d4b845e90381ae044b8b5e657 b2683e7a872bc109b1756a65188a37cef7d0bd5c 61639853aef62955988dec091f3cfaf015b256ee1b8828c23b88ef97b9caa256 Loading...

	www.rosaroll70.it/	56 B	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-04-24 21:40:59 Times Seen201 Hash 05e0ab0cf4fc4c95446661eb4f41b95e 71b0ca59ac291b501b924f951dff57b77c643e3e 76162303ac1b5c09b1479fc2f23cded3b71e2320a30000bc040c2e2c36cae53f Loading...

	www.rosaroll70.it/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2	1.2 kB	2023-03-07	2024-04-25
Pretty URL www.rosaroll70.it/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-25 04:59:23 Times Seen9180 Hash 51300497928562f8c86c7aaba99237cd e5826832b85c6afc6502b74cbb8ac5394b04c363 6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/lemmon-slider.js?ver=6.0.2	13 kB	2023-03-07	2024-01-22
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/lemmon-slider.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-01-22 16:03:58 Times Seen18 Hash e15f38659550c91a8cef336360d0501c 2a8ae6b5ded1da0961d54d4ef1e2397989b2fcd3 c53aa9b29d9a57a5deebbc470495342b08159b239c48f57d2c6fd4d5d5329c6c Loading...

	www.rosaroll70.it/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.4.1	21 kB	2023-03-07	2024-04-18
Pretty URL www.rosaroll70.it/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.4.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:29 Last Seen2024-04-18 13:59:25 Times Seen982 Hash b19cf4664534718fbf45d1ab11c1e03f 46236e58872c4f83370dc2239f737ac9c9670428 527beb6c2c7fb7390156ab5c7e269b74994831e1cae8a54bec16e6165b908fc4 Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1	509 B	2023-03-07	2024-02-01
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-02-01 17:47:00 Times Seen112 Hash 1a0cb909d51d4ae1116207312f05933f 353b98cb11bb714c201f778d21d60f85a55a9aa5 2ef9a0b7735658c436b863ae36c4dec0a5d831988b8fa6c5874e066289afc8c4 Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1	3.4 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-24 18:24:18 Times Seen626 Hash 5c38aa6d5b98586ca2ba973ab8b4b6b1 8215983363ea0d74f99368336404b0d27217778f 7c4dcab706e6bf67c64df89d3f5e137cb19efa293771613f511aff1ad563a6df Loading...

	www.rosaroll70.it/	149 B	2023-03-07	2024-04-25
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-25 01:48:26 Times Seen2860 Hash 931deb2e7bef82d78d1c1b0a3fe4fe32 2a468d77a19124c4bcd1745b7f51eff01b269ade afb2b21f29cd5d7fc5b63a8ea02ece9649603b9e63a2afa55927c508345e1ee7 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/easypiechart.js?ver=6.0.2	4.5 kB	2023-03-07	2024-03-14
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/easypiechart.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:35 Last Seen2024-03-14 13:54:47 Times Seen41 Hash d3f218609bafd40fdee3c2309f9b61eb c24309d65d39937e68660f6bd7142bd275171711 7d3c6a4ef494c70cbac980a3218d3aed0095ece6193f2e4f65c3c10ade2ffbcc Loading...

	www.rosaroll70.it/	2.2 kB	2023-03-07	2023-03-08
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2023-03-08 00:27:59 Times Seen1 Hash 1344e7238586ce5403a922046d7949c9 b11b41bfa71d3d781be8f41923de21a9ee5e08b0 1b80ffd67d8c0458b6fc204abe19fe4965d06e66d4591cacdb9007f4cd89c0ae Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1	37 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-24 13:45:07 Times Seen592 Hash 24443da3a469ca21411e562a861ec083 14a10995d6efe48ceea5916e218ecf177560352a 2e65f5c3b3b4c402074c19dee3d24d6bc02a8a86b19c8c992a4a6e78b254b2cd Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fullPage.min.js?ver=6.0.2	24 kB	2023-03-07	2024-04-12
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fullPage.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:24 Last Seen2024-04-12 17:25:37 Times Seen632 Hash 88b9132aaf81cacd83bd7c80eb2658b7 762db98caaad949d6fd013dc80d4177d7ed1dea2 0fba7bdad2b7fdeff46c69ac1355d79575b10f8c15db750b1d3d19f659180cd5 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=6.0.2	9.1 kB	2023-03-07	2024-04-21
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:40 Last Seen2024-04-21 16:30:00 Times Seen248 Hash d67a8ce213049009cb6ae36d217d0cbf 3ecc793f3c4edd8c92786dcfd4ed83b17c78b50f ed47835f6ea0ca61b84dc3d031b93757a386439985c1c823933c57f1dc943992 Loading...

	www.rosaroll70.it/	144 B	2023-03-07	2023-03-08
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2023-03-08 00:27:59 Times Seen1 Hash 866976240d0283277f37db6c89a6b75d 95c435fcdd513089fecd60132f1d05acf29d9a30 2990722290f818552f85f0125c22d8c9778bde489535486a901dbcf05ad44612 Loading...

	www.rosaroll70.it/	156 B	2023-03-07	2023-03-08
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2023-03-08 00:27:59 Times Seen1 Hash 7f22e87b0dc3e2e676a9f6152f11564b 2909c325668a7eb857cdc10f8b23bb417d130f8d f9b06403a50d3140f132101236f6a673f4f4cf2cc00bdf9d5d925685248fc58a Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1	17 kB	2023-03-07	2024-04-15
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:41 Last Seen2024-04-15 06:53:32 Times Seen595 Hash aa5fef7b171510a2a430328d4a0f3b03 cf6377f9bd83d9ce5f18c3de8ac7e57c047168d4 5f030eda75a32de3b4f63e28a38e83642b8a723c84ae73bf3726b85cd411bfee Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/skrollr.js?ver=6.0.2	22 kB	2023-03-07	2024-04-19
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/skrollr.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen899 Hash 3637fe9df875e14939193bc389e1a249 ed555fff6b4c7a0580c5d15c46e2f17a5cb5e2e6 c9d47e46370c8a3be89980fb5ccfa2122eb438af15dd5aef8d51ef078de847c7 Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1	901 B	2023-03-07	2024-04-15
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:41 Last Seen2024-04-15 06:53:32 Times Seen268 Hash e0b6ee7035469fab34982887e7ef21f7 8f38f75ae3db197142744524b6fcb8dc11efd577 f7f639c14daca92fe9f66f08d4ef076d2413eb99dbc35129158de1814d1d7c91 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/hammer.min.js?ver=1	21 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/hammer.min.js?ver=1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:09 Last Seen2024-04-24 19:47:52 Times Seen616 Hash 15065981497259d972918a646ab771e0 f2de8453fccb34baf26d784afa965dbe8c0d1550 8a1b58d624eeb47e9e3073531a5d364e41a2e7853c052873a79917f97dd0bb44 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 07:53:45 Times Seen37056616 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.rosaroll70.it/wp-content/plugins/wp-gdpr-compliance/Assets/js/front.min.js?ver=1662118274	59 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-content/plugins/wp-gdpr-compliance/Assets/js/front.min.js?ver=1662118274 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:54 Last Seen2024-04-24 20:13:15 Times Seen326 Hash a7984e5f6b6556d58fca4f6f7b842992 e511f64599438ef63f4e3e3551f4544ce049bc65 3e5da322ed022b5762d70293cd84e3e73009781267f36f48553ef8cd4bee4ef4 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/Chart.min.js?ver=6.0.2	32 kB	2023-03-07	2024-03-26
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/Chart.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-03-26 11:49:44 Times Seen463 Hash 027cc5307ca98708a264f19f0ef670f0 c912170e6f019eb029db915776a3a49ec7ccaa8b 62ed90c64740073219d5f0c1f9e561074b0560982332d4e531d26c9e1eafdd20 Loading...

	www.rosaroll70.it/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=1613033116	55 kB	2023-03-07	2024-02-29
Pretty URL www.rosaroll70.it/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=1613033116 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:36 Last Seen2024-02-29 09:03:01 Times Seen43 Hash ab66f25aa55e87ee2a747e6f07397c97 3da6bd0899a09d6b3d9cafe62fa250ddfe2f3439 322998bdbd9777b10d8a706f97ed4f446e5b238e86c37649be7deb54096f5888 Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1	12 kB	2023-03-07	2024-04-15
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:43 Last Seen2024-04-15 11:35:11 Times Seen457 Hash 1d376be55e51aea00d432f6659d3e0d1 cc5b9f6fa12d0a90b38d3d6e918401c9ad26332b 34934dc0d2652647955344d4d53218860096f14217c81c1eb5b02e54526835b6 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/modernizr.min.js?ver=6.0.2	15 kB	2023-03-07	2024-04-19
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/modernizr.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:00 Last Seen2024-04-19 12:59:12 Times Seen884 Hash c3076c3133684f1acfb50014a2aa0876 d706a39500766021bff7e8e30e847e55fe5d4a5f 08b863f1d96a63a08d1db286e9f26c766715be3c470f9c3b93a208169b22a5be Loading...

	www.rosaroll70.it/	2.4 kB	2023-03-07	2024-02-27
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:16 Last Seen2024-02-27 21:30:24 Times Seen241 Hash 23a7055f3965500a37e1407ad0a6aa0c 7b2602c00091888b2d24f5e97ba4c3947b1c7c17 46ea6236a51ef5580b655fc6f0f97402225b24a22b9666934d9a1ad7ec19ef65 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/absoluteCounter.min.js?ver=6.0.2	1.3 kB	2023-03-07	2024-04-19
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/absoluteCounter.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen707 Hash d5b41c85347745f9b6a2275abd5ad84b b497a955110312d39e6b6426a76775021e41b072 f83db0f0e00305a3c5a04a8a46d0cc435cb0a8e9d6347acc2f268c5a5332458d Loading...

	www.rosaroll70.it/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2	19 kB	2023-03-07	2024-04-25
Pretty URL www.rosaroll70.it/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 04:27:26 Times Seen38041 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.appear.js?ver=6.0.2	1.8 kB	2023-03-07	2024-03-26
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.appear.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:35 Last Seen2024-03-26 11:49:42 Times Seen50 Hash d5746a10b0e8a90dfefa4d8eedf02422 2e0d11af1850d3f703acfd4edb39ccf777c73d98 482731565aa05d097f33ee59e686a9565de4ef3a11e4d5aeae4bc012fdfad3df Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1	8.8 kB	2023-03-07	2024-04-15
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-04-15 11:35:11 Times Seen294 Hash 98f09b434a4910c56d74bcabc23ac05b c52a1a8e6e5823f859ed4123a00d730237c39893 73e77da1e0317a722f4c849f2f40227d33eecbdb930b04df897a78d993180b16 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.prettyPhoto.js?ver=6.0.2	22 kB	2023-03-07	2024-03-14
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.prettyPhoto.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:42 Last Seen2024-03-14 13:54:49 Times Seen135 Hash 93f53b07ab85f3068dd7911a2c5bc00d 6ccc562c8e7f86d2c41aed517c9fcf1aa3a61a97 74916b5e6bdc2f485ba95cf079287cb5f4ba4e1d4292f7932cfbc812528abf77 Loading...

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2	78 kB	2023-03-07	2023-03-07
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2 IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2023-03-07 22:49:22 Times Seen1 Hash e5e662a0151457e5408583f5addc5dc4 5c9ae4fdab9890177043d5702a1220463a16a2d3 2049220e58671c49d7fa3525c066c50e2b54c3780be7cf902d57790a7d76f1e9 Loading...

	www.rosaroll70.it/wp-includes/js/hoverIntent.min.js?ver=1.10.2	1.5 kB	2023-03-07	2024-04-25
Pretty URL www.rosaroll70.it/wp-includes/js/hoverIntent.min.js?ver=1.10.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:10 Last Seen2024-04-25 04:46:27 Times Seen27412 Hash 8c0498e2f1f7a684a8d2a3feb934b64b 76099689ccaee466d4608da621c403b368dcae03 ed5b5df9ceacfe76857ac51964972b0b417a215b2f50e837fd6b64bad7339c40 Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1	11 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:41 Last Seen2024-04-24 18:24:18 Times Seen348 Hash 0ee357a183287d64fcf277f66d532e6d b45721bde387037ac73347020edb890ac4a77814 7ce6eb9cd7f07b424c34ee977214503668ae5e137d07b3fe0a37373e57686ebf Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mixitup.min.js?ver=6.0.2	16 kB	2023-03-07	2024-04-09
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mixitup.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:35 Last Seen2024-04-09 23:31:41 Times Seen44 Hash 4f9d50b22ba7b7b8596616e8bd57257d 5a13de388ce9f87b255c4ae88c60616bdd8fafe1 0911932419dbbbd35f142007279d48e36e46bd26364f1c05bcc9b3496e33d594 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/waypoints.min.js?ver=6.0.2	8.0 kB	2023-03-07	2024-04-09
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/waypoints.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-04-09 23:31:40 Times Seen32 Hash e9079aa976bd39c233de52bdcdf07aa3 640197504e064a42bb11f6b0892e8be1c9e69d11 3b77d90a0cad5be3432243cd9dc6b8a7660f2085e6a9a6ec3e8364ca47396e49 Loading...

	www.rosaroll70.it/	2.3 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-24 19:58:51 Times Seen4794 Hash 6f740b956919fbaa673bb496be184ac1 fa7d2aef8069f1be31c655fb889c897eae36757a c8d83f1bd6a850a6f197b9bcce38828132ad627358b9c2c78e7c4bef4d22c304 Loading...

	www.rosaroll70.it/	151 B	2023-03-07	2024-01-07
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-01-07 09:36:40 Times Seen8 Hash ec2578c50930614886651cc0b999adfe f7e1304a74665650c0d7954ef60499520e23dad4 b4ce6395873725d6e635fab486c0943dcfccf8806c4d5fbf1423c12a3037a7e7 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/default_dynamic.js?ver=1604586168	4.1 kB	2023-03-07	2023-03-08
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/default_dynamic.js?ver=1604586168 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2023-03-08 00:27:59 Times Seen1 Hash bc795b2533f176c5aae9603257b999c7 3844d36951d74140675e9145132c27d29944d174 9ac331f2acc0cd0af375e5d3ce39df7619b7e9e43cc8521c836d9ec76d0ce673 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/infinitescroll.js?ver=6.0.2	26 kB	2023-03-07	2024-04-19
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/infinitescroll.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen725 Hash 4dd9a5c6d0be090b107ed878587f0039 c91cf6169d0dcb5e52ab0a48f430b9b6d7bd5620 f3bb8b08d88d8c2aecdcc22d44304bb5011631ed25f7b92ef36e834392cd227b Loading...

	www.rosaroll70.it/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1	2.5 kB	2023-03-07	2023-12-27
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2023-12-27 20:46:58 Times Seen40 Hash bcf3e4b9c2047a8b735f8954d7fada81 0c3775b28dc11b9bab2fa322f4261546139a31fe 03c232e9da2bd0f0379ddc20d734d298cdfb08210089e766c0e6eee8a8d28d7c Loading...

	www.rosaroll70.it/	111 B	2023-03-07	2023-03-08
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2023-03-08 00:27:59 Times Seen1 Hash 06b7a076a86676898097f56763edd5a3 a67f20748110b44bb9d7ea509fd00ab7240add69 0d0a10f2bb267454ff5e652d742d637733b125f2d6acb9c6f99b2a065ab9c466 Loading...

	www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3	12 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:48 Last Seen2024-04-24 15:27:20 Times Seen2051 Hash 3f3fc23f477a3849aa5677c585b2a2b4 ccf0865ebd37f76c450c7a377a86ff2448288db3 985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.countdown.min.js?ver=6.0.2	14 kB	2023-03-07	2024-04-09
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.countdown.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-04-09 23:31:42 Times Seen36 Hash 1a36670a5bfb2e87d45297661d761e0c 5be741267b8abb793eaa7119ce423d2e0985ddf0 e79d93d0b00d170d766ab216f2999717bbc2425479780d37517cda9bc52ce1ac Loading...

	www.rosaroll70.it/	1.1 kB	2023-03-07	2024-03-01
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:33 Last Seen2024-03-01 19:53:37 Times Seen98 Hash 6de5348c47fe68ef2019bf88df832acf a4e08c3332807a45336cef9289f83db865e33632 4a3cb00f669e2faaabde24bdecc6b32267bd7475ff27ffa3c761e2ddebdced02 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fitvids.js?ver=6.0.2	3.9 kB	2023-03-07	2024-03-14
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fitvids.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-03-14 13:54:47 Times Seen30 Hash f79a3b9ca1351f5d6778334b279bb86f fb5ac4a9a8b110d8148d6f966084f8909a6bcfc7 a51e32c963b6f0a9a7fb45e90ccafd9defd75f60dea96ebafbe7ff934ce9979f Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=6.0.2	1.4 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:40 Last Seen2024-04-24 23:33:27 Times Seen2606 Hash 25db04e9daee1c00f6ca337537c32c01 cc1d92c5536c9b2dd766b6eddc0c8ba8cf831438 c8104390115f92b27003b1e4e503ef59343ccfef4ac19751093544e8cfaeae26 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jplayer.min.js?ver=6.0.2	43 kB	2023-03-07	2024-04-16
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jplayer.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:35 Last Seen2024-04-16 09:51:23 Times Seen116 Hash 9943a0116135df27a921020e2193f5c1 4322f6e622e5c620bb2c3c8097b6540510fab96d 60c3fb4d4de6c80ca93bbdbf500a1d36e055829568ed2c5e59e598964ef3269a Loading...

	www.rosaroll70.it/	355 B	2023-03-07	2023-03-08
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2023-03-08 00:27:59 Times Seen1 Hash fd051b2c16e51d7863ede841f4e6a611 42756bfc71035e0c347da2ab408df5447a258d92 8614666a3d8514bc4fc8e6844b2c0a041666c8fbbdfea8f34c08000d6428d984 Loading...

	www.rosaroll70.it/	638 B	2023-03-07	2024-01-15
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:01:01 Last Seen2024-01-15 17:31:43 Times Seen86 Hash cc22f559050718636fad68557985e45b 767e9f3a3272cb280b3d7463321758d479bc867b 76682f8cfe7d98a43978c2a7fb2949ad965bc1465c9d8e1ff411db3797b3faa4 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.plugin.min.js?ver=6.0.2	3.2 kB	2023-03-07	2024-04-09
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.plugin.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:35 Last Seen2024-04-09 23:31:41 Times Seen34 Hash 9668b97cb1fb6badc5e8fec6036fbdb8 6ebf935af48bd81f4fc189a613cd5549d2685be4 677984a56f1ba09048f99c8c4dcc272610701c8d72b9939ee51dafcd2c9a3979 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.2rHmw3H_2uE.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpXjAsgkeFempR2wQSuz1jJj2euDg/m=el_main	268 kB	2023-03-07	2023-10-23
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.2rHmw3H_2uE.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpXjAsgkeFempR2wQSuz1jJj2euDg/m=el_main IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:03:02 Last Seen2023-10-23 05:00:08 Times Seen13 Hash 37ba6e1860a4983d078bafa6675a6787 c38e71bcb3905235d0d8381a84dc75ed50904ef6 7761301af9d3858f4e0b3036539b390a92754acc4b09f4ff8d52f43f5bb1802a Loading...

	www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.6	24 kB	2023-03-07	2024-04-24
Pretty URL www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.6 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:06 Last Seen2024-04-24 21:41:00 Times Seen512 Hash baf52133ab964e326865e3a77949d118 21cec0080f71f5a2e376dc613840749f6d4e10c3 16c7202a143aa5d51b0b7fe842a8e73f170cf45d51aa94d87d2649913e0c061d Loading...

	www.rosaroll70.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-25
Pretty URL www.rosaroll70.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 04:54:53 Times Seen31823 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/owl.carousel.min.js?ver=6.0.2	40 kB	2023-03-07	2024-04-09
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/owl.carousel.min.js?ver=6.0.2 IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2024-04-09 23:31:42 Times Seen38 Hash 98e9898f75fdf3fdca6957f4b28e2ff2 549f7a0686ccae933529bcf7577b5ea77115d34f b41de169a7ea865b723712b4662638f81d467effe61e62cd82db21c1fbd44df6 Loading...

	www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.touchSwipe.min.js?ver=6.0.2	12 kB	2023-03-07	2024-04-19
Pretty URL www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.touchSwipe.min.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:40:51 Last Seen2024-04-19 20:39:52 Times Seen1763 Hash 507efc0c0f5e9fff2ebfec66b8d90b0b c5d3785cd113ae27e53f6d8eb13e3cbdf204d3f8 7d632e84eb41df6458229ff7231547c3f015e6e17ed341f7e355f5bc1edbf5eb Loading...

	www.rosaroll70.it/	6.5 kB	2023-03-07	2023-03-08
Pretty URL www.rosaroll70.it/ IP 95.141.34.210 ASN #49367 Seflow S.N.C. Di Marco Brame' & C. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:22 Last Seen2023-03-08 00:27:59 Times Seen1 Hash 05e60fe15e4c125705795af86b833788 3d8ec722224028c1aceafb510d9ff4d82af7e829 96eb246c151702fb3a749640c0cf07445a57abc7c49332baa3df6797c4fff310 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 07056a27c002199edcbd07a2410ddca1	194 kB	2023-03-07	2024-03-31
Pretty Observations First Seen2023-03-07 01:25:06 Last Seen2024-03-31 08:27:07 Times Seen182 Hash 07056a27c002199edcbd07a2410ddca1 d6812203c46f084451c54a217c73cac744282ffd dd070087ced370f9074326519d371eeab0d0fb110582d2ab948a00dde8cd30c4 Loading...

	#2 Eval - 3a15fdf632cd75a684de311897cf30d3	51 kB	2023-03-07	2024-04-21
Pretty Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-21 14:32:34 Times Seen1161 Hash 3a15fdf632cd75a684de311897cf30d3 96fe9f5c57184ee30d1be2896f2bff11717a7fbf 2626f69586429e55dcd345b157a84d3956e2ee556ebf54c6a64ca939f88dda04 Loading...

HTTP Transactions (145)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6524
Expires: Wed, 21 Sep 2022 23:38:14 GMT
Date: Wed, 21 Sep 2022 21:49:30 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 21:23:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a_Tl27qTpagYG-N5pBL0yUp3mHzqhZRAsmEP4AYcbLl6k8eSel4aSw==
Age: 1536

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4810
Expires: Wed, 21 Sep 2022 23:09:40 GMT
Date: Wed, 21 Sep 2022 21:49:30 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: +ovKVBS/5o4xxvaXmLcpk9V+Hyb4GFmcSylGTj8PGFyBjUklc64NXgjsQZ1JRdNxTM9YH7ZvNtgqpmCl0BcK2A==
x-amz-request-id: MPYABEE102RR9AFH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Sep 2022 21:43:27 GMT
age: 363
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 21:49:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 21 Sep 2022 21:03:22 GMT
Expires: Wed, 21 Sep 2022 21:55:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IQrLhps6b3BCydPO-EkkrBWdzTFhav58g9P5c8U9AHlwfD7wTw77wQ==
Age: 2769

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ff6d50919e56aed75c47feb45ee2f2ec
98f558a4b2d4f3c271abc93d0b74ece4ad7a59ef
b1b6f0e78b5a1e2092cba6d71d0d5a918066c0486176cef0a19f51e2d5a9962e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4274
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:31 GMT
Last-Modified: Wed, 21 Sep 2022 20:38:17 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.215.91.121

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.91.121:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pIX4YAtuBUclBg3J/GMueg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QuS2+C6p7dboji5JOShsRtpS8G0=

rosaroll70.it/

95.141.34.210

301 Moved Permanently

0 B

URL HTTP/1.1
rosaroll70.it/
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Sep 2022 21:49:30 GMT
Server: Apache
Cache-Control: no-cache
X-Redirect-By: WordPress
Location: https://rosaroll70.it/
X-Powered-By: PHP/7.3.27, PleskLin
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bdeb4079bd8d27da76aa448b6f8eecca
fc5c53106fcd435f07b8c214fabdc020db818ea8
7110c3e764ef59c8b5684dcc6dbf09464ccd3d25c37b4e47a76a3376b8dd6e08

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7110C3E764EF59C8B5684DCC6DBF09464CCD3D25C37B4E47A76A3376B8DD6E08"
Last-Modified: Mon, 19 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 22 Sep 2022 03:49:32 GMT
Date: Wed, 21 Sep 2022 21:49:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4995
Expires: Wed, 21 Sep 2022 23:12:48 GMT
Date: Wed, 21 Sep 2022 21:49:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4995
Expires: Wed, 21 Sep 2022 23:12:48 GMT
Date: Wed, 21 Sep 2022 21:49:33 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10244 bytes)
Hash
14e6ddceb639a5f4875aecb796f95c79
b1cd04a66852694284eeef16a1cde38896e33c03
4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7FaZfI_iYUANPdxGBld5NfneWwKJeX2nYA_gmvF9NjML5YOVhZIIoA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 19:20:13 GMT
age: 8960
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc349860f-d61d-42ea-8638-7ebcefe23e00.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12545 bytes)
Hash
1976af26c5d4a671c8298bffafc90ce3
9b17ad091f936a8dd50126ce9ad5f9a7fd7d55f8
2349b9e1233d43cf8d0ff273f8bf6147dda00314fd631a81cb278ce0b8e32684

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc349860f-d61d-42ea-8638-7ebcefe23e00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12545
x-amzn-requestid: 6720348a-0245-486b-a978-2df18eb4bd43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7YKHayIAMFo1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6325729a-2601f775219651777cba839c;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:09:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NdQpOGtyA7AxpmkvFf3K3IrkgSku9QQzQ4BvpoRfTv16Kj1Gr6n7oA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 07:34:13 GMT
age: 51320
etag: "9b17ad091f936a8dd50126ce9ad5f9a7fd7d55f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11832 bytes)
Hash
2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:07:08 GMT
age: 85345
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12654 bytes)
Hash
f7b780d39877eea116277625aaa01f1b
d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db
ca9d59056e0a3f512d36db11f4a4bd3109c2ce1e13b29b5f40dce84df079e71f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12654
x-amzn-requestid: efc99152-2b51-462d-b48b-67ba8263b1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOGVYoAMFcvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-00eeb6913e06ac151f293263;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nSWUmBqJPIBYNoLtyrfAN7CK4367b6TEku9eki8BGJVdTWW3dSyckw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 06:45:55 GMT
age: 54218
etag: "d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9201 bytes)
Hash
a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
age: 84876
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10038 bytes)
Hash
dab1f2cd68979d2004ba4449d759a341
54ed14436a75ba2aeb8459bad2ce70229aff4203
e782fb5ede547e1b167719068c6821c62414dcb0991bf9ac38285cb3ce8894e3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecaa9082-610c-41c1-ae9a-e453d87828ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10038
x-amzn-requestid: 4cf38a70-a706-4e6a-b854-9404727c599d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mHDCIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-5aba5b0640221b302a19781b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NzOpixfxr2pFiDhF5WUGmjD8r2CTn1grSkCEyWvthxRq0djbDKjknA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:15:05 GMT
age: 84868
etag: "54ed14436a75ba2aeb8459bad2ce70229aff4203"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

rosaroll70.it/

95.141.34.210

301 Moved Permanently

0 B

URL HTTP/1.1
rosaroll70.it/
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Wed, 21 Sep 2022 21:49:32 GMT
Server: Apache
Cache-Control: no-cache
X-Redirect-By: WordPress
Location: https://www.rosaroll70.it/
X-Powered-By: PHP/7.3.27, PleskLin
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.rosaroll70.it/

95.141.34.210

200 OK

19 kB

URL HTTP/1.1
www.rosaroll70.it/
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Size
19 kB (18924 bytes)
Hash
140cfee0645721278b42d09aa48f1aaa
29324100716b300984dde271da945dd5e4ebb8d3
bdcbf3cf7da931ed8f885e5557a81e0f25d835ab9bf4adbf93b14c00626f1afb

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Cache-Control: no-cache
Content-Encoding: gzip
WPO-Cache-Status: cached
Last-Modified: Fri, 02 Sep 2022 11:50:27 GMT
X-Powered-By: PHP/7.3.27, PleskLin
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.rosaroll70.it/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.0.2

95.141.34.210

200 OK

299 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
299 B (299 bytes)
Hash
1e34ceaa9a4c96c3499483f5fe818671
55a92f1196d0155e2bf0632f0905b5b8000f5ad7
9738e8e5222b5802082be7a77e56ad9fdee06718da410f356504184fd08b56bf

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/gtranslate/gtranslate-style24.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:30 GMT
ETag: "2b5-5e17a09d4eb4e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 299
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.6

95.141.34.210

200 OK

3.9 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.6
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
3.9 kB (3884 bytes)
Hash
1772cbbd640ea9efce7b554623e8e193
ae022fea0d7a3ff5a9bd667c0d50f2ceb1db707d
3d9bced0e827ce09201dab158cbfa4a8e192e249963b74c6fd7d220db6a21d58

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.7.6 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Fri, 01 Feb 2019 08:23:55 GMT
ETag: "52a1-580d0dd2b8564-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3884
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2

95.141.34.210

200 OK

1.2 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (4186), with no line terminators
Size
1.2 kB (1156 bytes)
Hash
30d57d7aa11190e44974cce8621f22c7
59f516369877009cce06ca45b1c296944bb674a4
094ae87a3d4cee4a1ddc5cada149c2deacabd4cf2e377b97fe4ca641142258ee

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:01:54 GMT
ETag: "105a-5b35c89d514ca-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1156
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1613033116

95.141.34.210

200 OK

4.7 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/chaty/css/chaty-front.min.css?ver=1613033116
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (20627), with no line terminators
Size
4.7 kB (4700 bytes)
Hash
cca00de9c2b2ac6dec93f2d3b495b67f
d5fd71be0a871978f9ad1d89b09ea8e9f38a7651
f5a18a93508fad83de50e8cf70fd4eaac166c764f156b7d7124ca7a11f244ed9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/chaty/css/chaty-front.min.css?ver=1613033116 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:31:00 GMT
ETag: "5093-5e7b01078d0c7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4700
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2

95.141.34.210

200 OK

12 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (43771)
Size
12 kB (11681 bytes)
Hash
e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:33 GMT
ETag: "15b64-5e7b02459e5f4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 11681
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3

95.141.34.210

200 OK

972 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
972 B (972 bytes)
Hash
8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:38:04 GMT
ETag: "aab-5e7b029c490a2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23

95.141.34.210

200 OK

13 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
13 kB (12635 bytes)
Hash
b519a21e842ed2a5ef25dd4e672f2b07
6ef5ae70007332f52e98a2b6075e019f663cf45e
ce51ceb46e7bc646f8212ed1f8a0089f5e3abc5236d0e323749e575b41ad27f5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:18:25 GMT
ETag: "ea95-5b35cc4ee0c94-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 12635
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16

95.141.34.210

200 OK

2.6 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (11256), with no line terminators
Size
2.6 kB (2592 bytes)
Hash
583529ff412cb2b255fa606024d1133e
8db4b0a0be402cc5e38488528791b73b0c7369d0
6fdf0933a8faf229b277740f401600834c00d0b204f7ed38293cd4abcdb3ea20

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Wed, 15 Sep 2021 09:29:49 GMT
ETag: "2bf8-5cc0556f1b175-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2592
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/style.css?ver=6.0.2

95.141.34.210

200 OK

357 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/style.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
357 B (357 bytes)
Hash
0408c3beabed3e13df770ca252eb0e56
cb53997d0ecfc4c8b6dd58ea62eb1fdb0e5761ac
30df913632f84b635b02daef5adddfb47008f645dd85f3b3db6dbf70ad8e5c6e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/style.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:28 GMT
ETag: "220-5b35c9693c6d3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 357
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/font-awesome/css/font-awesome.min.css?ver=6.0.2

95.141.34.210

200 OK

7.1 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/font-awesome/css/font-awesome.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7053 bytes)
Hash
52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6

HTTP Headers

GET /wp-content/themes/stockholm/framework/modules/icons/font-awesome/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "7918-5b35c9690c933-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7053
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/linear-icons/style.min.css?ver=6.0.2

95.141.34.210

200 OK

1.6 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/linear-icons/style.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (7935), with no line terminators
Size
1.6 kB (1591 bytes)
Hash
9d06fa63c6b3230d31dd789ebcd570c1
a0765916ee27f0592e0ddc90d0bd82ad45d54874
978313c2875a37e509be720673c174c7fceb6216d5a773e8323a3e8b884c0818

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/framework/modules/icons/linear-icons/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "1eff-5b35c96907b13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1591
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/elegant-icons/style.min.css?ver=6.0.2

95.141.34.210

200 OK

4.2 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/elegant-icons/style.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (21769), with no line terminators
Size
4.2 kB (4166 bytes)
Hash
f3a17950a8e7faa7352af4b55d655c4b
492ddab7dfd9e14e7334d92ecedafc5c1940a2cc
d645008ee7f2e849c441b8de7e09a40ec0585095fe201dc87b29408ae1593cac

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/framework/modules/icons/elegant-icons/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "5509-5b35c96903c93-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4166
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/linea-icons/style.min.css?ver=6.0.2

95.141.34.210

200 OK

8.5 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/linea-icons/style.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (369)
Size
8.5 kB (8452 bytes)
Hash
ca607cc91c5ae75052789fa1acaf55ab
672a06dd342416c388eccb7a28f71e237b2a3b56
6617f5a5b5907576bd905ce6538f17c4fcad83eaed849f5cec95a76f5bd98483

HTTP Headers

GET /wp-content/themes/stockholm/framework/modules/icons/linea-icons/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:28 GMT
ETag: "13100-5b35c9691a3f3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 8452
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/ion-icons/style.min.css?ver=6.0.2

95.141.34.210

200 OK

8.4 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/ion-icons/style.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
Unicode text, UTF-8 text, with very long lines (52257)
Size
8.4 kB (8361 bytes)
Hash
ae4e8380bd393f766710ad6e97af3b49
0f6febe614b838f34410ac641e87429ea9a24da7
73cba75c2bcba392bfd692c38d2bd0bb9170f7999c454d26057b85d182515112

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/framework/modules/icons/ion-icons/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "cdff-5b35c968ffe13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 8361
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/css/style_dynamic.css?ver=1604586168

95.141.34.210

200 OK

5.4 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/css/style_dynamic.css?ver=1604586168
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (1297)
Size
5.4 kB (5413 bytes)
Hash
0d87019ea0d0ddddcb79f72108de9048
d1fe3184a9df6eace125423c6f5da75bbbfa6143
4f516a763fcb2902f68eaea27c98f1893347df609e0c00f3e0ac88e1b9775f04

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/css/style_dynamic.css?ver=1604586168 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:22:48 GMT
ETag: "81d2-5b35cd49abe9f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5413
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/css/style_dynamic_responsive.css?ver=1604586168

95.141.34.210

200 OK

194 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/css/style_dynamic_responsive.css?ver=1604586168
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
194 B (194 bytes)
Hash
7acf723933bf0a5438960410855b2d53
903e37fec0a97c14dac87dc9a1e72b9cebf8dd3e
17b0a6f21036b622d1742ff14479304f2c265ce79f02e5e69afd12a5afda4559

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/css/style_dynamic_responsive.css?ver=1604586168 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:22:48 GMT
ETag: "226-5b35cd49abe9f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 194
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/css/vertical_responsive.min.css?ver=6.0.2

95.141.34.210

200 OK

3.4 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/css/vertical_responsive.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (26225), with no line terminators
Size
3.4 kB (3371 bytes)
Hash
4c47cdca528b78c14a213cb2d0d8712e
4622961edc3329b5d6787493208b6aceb2b9a401
9300a840c36d18141d08031baa2b67bcc94d88c760a73423bc1c92f456aa4489

HTTP Headers

GET /wp-content/themes/stockholm/css/vertical_responsive.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:28 GMT
ETag: "6671-5b35c9694d073-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3371
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/css/responsive.min.css?ver=6.0.2

95.141.34.210

200 OK

10 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/css/responsive.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
10 kB (10104 bytes)
Hash
4cae66d168d4dbe93babb0e30d204a9a
19cb9f37047b1ce985916e95df20874f2083e38d
451ecea43dd4760afb1bf8e697148f6d1a2a50282101a68cb9939d9c591a52f2

HTTP Headers

GET /wp-content/themes/stockholm/css/responsive.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:28 GMT
ETag: "137bb-5b35c969637d3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 10104
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm-child/style.css?ver=6.0.2

95.141.34.210

200 OK

184 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm-child/style.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with CR line terminators
Size
184 B (184 bytes)
Hash
9a7712aee7446e9b97680c534091a976
fda34a021121fc90a9573184eb17db396a65a742
86c7f849bdc04125f2b249792755ddf35582b7fe04a509c0de337fa5e14a250c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm-child/style.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Fri, 01 Feb 2019 08:37:42 GMT
ETag: "109-580d10e78db70-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 184
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

95.141.34.210

200 OK

4.2 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Wed, 15 Sep 2021 09:29:49 GMT
ETag: "2bd8-5cc0556f10594-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1662118274

95.141.34.210

200 OK

4.3 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1662118274
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
Unicode text, UTF-8 text, with very long lines (26316), with no line terminators
Size
4.3 kB (4312 bytes)
Hash
16f6b0d854b5336e8a618be364c62422
e607403fc6d59f09dc35da1fb3c19c29f248c7e0
9a3e445ebe914ea574ae45ef6bd659449147910549bd7ab40986846730fe8a63

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1662118274 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:31:14 GMT
ETag: "66d0-5e7b011597cc3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4312
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/css/stylesheet.min.css?ver=6.0.2

95.141.34.210

200 OK

63 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/css/stylesheet.min.css?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
63 kB (62602 bytes)
Hash
f3b1fbbd05154f9dc6f0db380dbe177b
b4a3906347a56bf621d2536ba60f710cef5902f3
3b62acea51bf4a22221100b98277d5efec0189cdd4dee2c29b4e0aeab7cf2d71

HTTP Headers

GET /wp-content/themes/stockholm/css/stylesheet.min.css?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:28 GMT
ETag: "7496e-5b35c969637d3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 62602
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1

95.141.34.210

200 OK

46 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (65358)
Size
46 kB (45790 bytes)
Hash
2fe906250b403a8535d316cdf1e8a808
7b84d27dd294fe145beec5801fc2d8d5a00d611b
655f96cc6f8ea662c046fd64382639c7a9b5c9a936645beb200653b4880e51e3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:18:36 GMT
ETag: "76828-5b35cc592d815-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 45790
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.6

95.141.34.210

200 OK

3.4 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.6
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
Unicode text, UTF-8 text, with very long lines (23514)
Size
3.4 kB (3396 bytes)
Hash
40168b46aaee868241d021cd042235dc
f11524f28087e903c5a21facf4a335de1de4ae15
abb80664a5e03871c9b6e813b83a14b97469070bc6706f91f04e6dcb0c316dff

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.7.6 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 01 Feb 2019 08:23:55 GMT
ETag: "5d17-580d0dd2aba45-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3396
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

95.141.34.210

200 OK

31 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (65447)
Size
31 kB (30908 bytes)
Hash
9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:33 GMT
Server: Apache
Last-Modified: Wed, 15 Sep 2021 09:29:49 GMT
ETag: "15db1-5cc0556f0f5f4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 30908
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=1613033116

95.141.34.210

200 OK

14 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/chaty/js/cht-front-script.min.js?ver=1613033116
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (55160), with no line terminators
Size
14 kB (14255 bytes)
Hash
ad8ea494d947cb06338461d9b441b52e
0f118c9966d01c2414e0e97bebe1c9be8f79c78c
86c5d874e76ed27619727c9494b200868e856802ab8628f47cc615daf3831244

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/chaty/js/cht-front-script.min.js?ver=1613033116 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:31:00 GMT
ETag: "d778-5e7b010783487-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 14255
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.rosaroll70.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23

95.141.34.210

200 OK

45 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (41022), with CRLF line terminators
Size
45 kB (45119 bytes)
Hash
093bc5236e1d2dac0687190591816376
a00cc34c822166c88d68744f65fb4274ab5509da
821f75e48e46128443a39eb58aba687be440465b600424fa3bf5fb2cffe166ca

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:18:25 GMT
ETag: "1d25a-5b35cc4eded54-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 45119
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0

95.141.34.210

200 OK

40 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (32006)
Size
40 kB (39570 bytes)
Hash
6f66844d190c1ce88980c73d23de1905
b21fec004cdfc8dc64e4a462876cc8914742de46
9d135b7d3b48668fb2b6d304dd6b20c5f5bec72f8f4448851222166d7bb1db8a

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 01 Feb 2019 08:23:55 GMT
ETag: "1cb35-580d0dd2aba45-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 39570
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.6

95.141.34.210

200 OK

44 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.6
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (65335)
Size
44 kB (44077 bytes)
Hash
ba9011d4c2b342e26e02663177ae81f1
1058560c83f7297d573979d90846ad1413e70874
093fc98819b7da9027cf7b9a64968133ec210a7a18530440b42398fa5bd1128d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.7.6 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 01 Feb 2019 08:23:55 GMT
ETag: "1c783-580d0dd2aba45-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 44077
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/hammer.min.js?ver=1

95.141.34.210

200 OK

7.3 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/hammer.min.js?ver=1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (20581)
Size
7.3 kB (7345 bytes)
Hash
ebdad270152d2d464786a3133986c0fe
6de846adb1f17cc28081a7924259afb32fb795cd
5e902baedd41f7cce98e52af77bec53bd32431f2ac56008b07b3f2451e9ae791

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/hammer.min.js?ver=1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "511d-5b35c9685dc53-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7345
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/virtual-scroll.min.js?ver=1

95.141.34.210

200 OK

952 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/virtual-scroll.min.js?ver=1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (712)
Size
952 B (952 bytes)
Hash
ab984f139534e997009319da14bd5a94
d7ee2b22b7d23aa416ee0b11ec748857a19f5538
2ed076277040d256c6dd977dbce2fac9645a09f2e580c7c8036632ba6a16536b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/virtual-scroll.min.js?ver=1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "ca9-5b35c96859dd3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 952
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2

95.141.34.210

200 OK

5.0 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (15660)
Size
5.0 kB (5009 bytes)
Hash
e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "48b9-5e7b0243d45c8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5009
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3

95.141.34.210

200 OK

3.9 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
HTML document, ASCII text, with very long lines (12211), with no line terminators
Size
3.9 kB (3934 bytes)
Hash
7ef755c2700783f9eae63fc539149a18
e57c0c5ceb5e2fbf1aaad44aad6319f8b26b69a1
95c808afbeaf569865125c132b69df4a68bca03fd6b792d38ef9a0e341dbf06b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:38:04 GMT
ETag: "2fb3-5e7b029c38701-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3934
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1

95.141.34.210

200 OK

2.8 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (8632)
Size
2.8 kB (2756 bytes)
Hash
7bcfa023b68185f1132007d26b67e1b3
fd1d088ca40a4b406112f9d6eea7cc0bbb410b4f
7f8109a56d16b8f85ae19378061fc73601df57f32f36e0d5f4ec5211a8f67f2b

HTTP Headers

GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "226e-5e7b0243d0748-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2756
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23

95.141.34.210

200 OK

84 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (64268)
Size
84 kB (83527 bytes)
Hash
832e7ee9644c8e7cdb5d9add8be524f3
127ddec0392e3876cd6b08a6f2a72bf0a6c07300
322186ed7a97a958e5b3d64eaff2a2c3b955b760e9da0b7e44d305b4cf2f9f9e

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:18:25 GMT
ETag: "4fd58-5b35cc4eded54-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1

95.141.34.210

200 OK

11 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (36560)
Size
11 kB (10897 bytes)
Hash
01c8b2443d039a1bfcd1636ba1a4ed1e
aa8f6ae060067210f9172204c244e48d925fd7c0
3ead9dd682f597ca6ad784b9c990ee20c6524b267ef54d4bd232ad5eb733a7d5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "8f87-5e7b0243cd868-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 10897
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1

95.141.34.210

200 OK

6.5 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (15439)
Size
6.5 kB (6502 bytes)
Hash
0748a982f068af9766c253cb21601ff2
9994f710f5450ee963f9714f715c6c9dbd64d417
2caf6897d004cd4727e5ab8b9992bb08d96b6ac38917142d1c2a49f74e1e4114

HTTP Headers

GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "43b3-5e7b0243cb928-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 6502
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1

95.141.34.210

200 OK

426 B

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (521)
Size
426 B (426 bytes)
Hash
e4a106057a0b976ecd21b85f798e5f29
d7c39813fb3f502788f957bbdee643663d76785d
87e712163425a80a812ed9541d5ae0e90e3cde009d5141e128b6b6b7d1454e56

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "2c3-5e7b0243cb928-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1

95.141.34.210

200 OK

531 B

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (715)
Size
531 B (531 bytes)
Hash
1ea7bcbb40b617cbbf38b615434133e0
7433990d960000293aaf5a7fa53cd3dde93ee802
8a983f24fd8856665fd5bdfc272d3a7129e605ab1ee862fe8a138b69ca015033

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "385-5e7b0243c99e7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 531
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1

95.141.34.210

200 OK

1.1 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (3233)
Size
1.1 kB (1084 bytes)
Hash
cde0ded344e3544e6f19cf117371b265
acb5934c1a00ce841abbe050c815e7b06b702f57
bddcbef59b628af5afedda5a07006341a7af05b6df42e334f0579d8662fd0e7e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "d53-5e7b0243ce808-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1084
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1

95.141.34.210

200 OK

3.1 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (10572)
Size
3.1 kB (3125 bytes)
Hash
441a9f4f0e65b720c99ccd7835d5a6f7
9d1e18dffdd3d8cfe4aaef782e02b4b35899cd25
2b161c785b5b6a40802db7808810b8805f163f471d44f275f053b09636c3f851

HTTP Headers

GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "29ff-5e7b0243c6b07-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3125
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1

95.141.34.210

200 OK

3.9 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (11760)
Size
3.9 kB (3914 bytes)
Hash
b3b756ae23b641be60b9eba0ddc7c3d8
99899b4cd589abe27cc9aeea1ecc0266b8775876
1da4297afc5955b4da0d89cc26246ffd4e2f04e5360467b4a12da5dc7edf9f27

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "2ea1-5e7b0243ca987-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 3914
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0

95.141.34.210

200 OK

6.0 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (16109), with no line terminators
Size
6.0 kB (5962 bytes)
Hash
50f1b56214f7e26856cb386786ef488c
16e4411fc85326e3b97b2cae8ded89c68e978d46
b8ac9041ececad43c28db3f7875fcf3e76d5e01d1d062f33036e561782bc6ce9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "3eed-5e7b0243d16e8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5962
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16

95.141.34.210

200 OK

39 kB

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (65266)
Size
39 kB (38657 bytes)
Hash
4cdaad83ca56a59ee7352b981c2f6db5
4cba1a66bde2345f35c94cacc40749e7aaa30d79
e1aab11a4a9f355af8664139d9151aaf59a6a7d58791aeceda7e611eb049b215

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 15 Sep 2021 09:29:49 GMT
ETag: "267aa-5cc0556f1a1d5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 38657
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/doubletaptogo.js?ver=6.0.2

95.141.34.210

200 OK

423 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/doubletaptogo.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (628)
Size
423 B (423 bytes)
Hash
46006e0d6ffd0e0e4961c9b976836a1d
6848109bc1d5d427a82017b83d388eb83253ca95
9ab4b0e5984d2c11ae2f5812db11827535dee280d4879bc63d36a08df06277b2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/doubletaptogo.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "2b6-5b35c96859dd3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 423
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2

95.141.34.210

200 OK

475 B

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
HTML document, ASCII text, with very long lines (906), with no line terminators
Size
475 B (475 bytes)
Hash
c7aa8936938be0b65781455878aa2085
0066e0c5ed75b3ccd5bb01db5f373d995c217a29
a764eb4204428f671190ad2bc84bcbd86cd9a6bfd05a7ded46bceb651503c508

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 03:13:05 GMT
ETag: "38a-5bffa3deaea0b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 475
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/modernizr.min.js?ver=6.0.2

95.141.34.210

200 OK

6.2 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/modernizr.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
HTML document, ASCII text, with very long lines (14756)
Size
6.2 kB (6244 bytes)
Hash
23d17506fcd0142b17b49b2d48d7a996
43a43823d7ecc4632017a62e74d85cff363fbcd0
ed7a101106d15b0e6a2ad3208a0cf6086cb603c49a92e8dbb3efc5c81f48251b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/modernizr.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "3c35-5b35c9685ccb3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 6244
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.appear.js?ver=6.0.2

95.141.34.210

200 OK

828 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.appear.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (1537)
Size
828 B (828 bytes)
Hash
2626dbebbc58738dd50e5ea2e1038a49
454a1a99bbc5773aac1b1804b6e076f2e3b74810
e1e9fe22830f868916035aa92597171078463ccd803d12479c621766f6d9755f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.appear.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "717-5b35c9685ad73-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 828
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-includes/js/hoverIntent.min.js?ver=1.10.2

95.141.34.210

200 OK

706 B

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (1464)
Size
706 B (706 bytes)
Hash
e26e2ba5d82da6211e981bf0e962fe00
ca7358efdb6852cfb78ec32383eaef15ac6cb61b
400f6ae8a00e7eabb07284d8cd8715579e9a3721fa463e508b5d40b83cde1447

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "5db-5e7b0243d74a8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 706
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/absoluteCounter.min.js?ver=6.0.2

95.141.34.210

200 OK

622 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/absoluteCounter.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (1238)
Size
622 B (622 bytes)
Hash
a4be623330e6ee1e6f9b1794e1651a73
6f045cc51227c04f31c8aba0f4faa0674d74d88a
58a30965678203ca1a266252507cb2df86434eba7de651f804da736ed5bfc8aa

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/absoluteCounter.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "4e4-5b35c9685ad73-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 622
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/easypiechart.js?ver=6.0.2

95.141.34.210

200 OK

1.6 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/easypiechart.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (3968)
Size
1.6 kB (1623 bytes)
Hash
e0f8708c4a071561d98e4ba63606abf5
499a30581f58c41b4ec827726d0dc33ae44f9984
61aef479e9156b89918e838c20ca63468bfa204276d6739645fd1476297e0132

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/easypiechart.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "11b6-5b35c9685dc53-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1623
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mixitup.min.js?ver=6.0.2

95.141.34.210

200 OK

4.6 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mixitup.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (15502)
Size
4.6 kB (4611 bytes)
Hash
28b0f4657c83ab927d36217f594ace21
e72927b42d999a4ee569eb08b0586af443c3e8ab
6b8a2934920fba9d4c5609733d7958334a870641f35473ca9678651af6122081

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.mixitup.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "3e48-5b35c9685ebf3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4611
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.nicescroll.min.js?ver=6.0.2

95.141.34.210

200 OK

16 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.nicescroll.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (595)
Size
16 kB (15831 bytes)
Hash
911f72edf7ae719abb06f7346830e495
ac233eb3c663eb9d8e2a91c1578663a172f6c8c9
299d3a41ed585e656c7dd7cb2cac7e35f2c675cf39bfdf7a08c6b2a50efe960c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.nicescroll.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "de2e-5b35c9685ccb3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 15831
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.prettyPhoto.js?ver=6.0.2

95.141.34.210

200 OK

6.0 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.prettyPhoto.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
HTML document, ASCII text, with very long lines (21974)
Size
6.0 kB (6025 bytes)
Hash
b1251684aeb19d19c5fed2bd252f869e
66dd7dc4b6fe37abe83437d96099b7df329ac75c
42d11a10731b0c5cd3f30ab5abc16eab32251299b22675de6473277f9e98a9dd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.prettyPhoto.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "56f1-5b35c9685bd13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 6025
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fitvids.js?ver=6.0.2

95.141.34.210

200 OK

1.2 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fitvids.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
HTML document, ASCII text, with very long lines (3598)
Size
1.2 kB (1201 bytes)
Hash
126cfb1e5757bfadbb7e46e8983ff8ab
44eb9a0a290f3a4a5d1ec68ebce401393039c94b
44397b4baae55d6b566d09d3c7d2eb07b79b8a6f1884441cf3d4c965b00ce791

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.fitvids.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "f52-5b35c9685ccb3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1201
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.4.1

95.141.34.210

200 OK

6.4 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.4.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (21539)
Size
6.4 kB (6396 bytes)
Hash
1c969c52ccf9227b2ddd77ea494e4872
e37ce39196b3a5f178f46b9bce12d1d7abca806d
573650442e92a2c306194e7ac322709d1e0c1f60ad73705b6f009fc553eb58ef

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/flexslider/jquery.flexslider-min.js?ver=6.4.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:18:36 GMT
ETag: "5561-5b35cc589b055-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 6396
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/infinitescroll.js?ver=6.0.2

95.141.34.210

200 OK

7.0 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/infinitescroll.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (25581)
Size
7.0 kB (7015 bytes)
Hash
02d77dc4a9037edd774f11b4ab88e63b
5fd633185736636344fd5010ae90e0e3338fc405
8c7cbf9895a89f2956805dedc86e7577c77ec82d9b4b4d0c18d87651547b9873

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/infinitescroll.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "64db-5b35c9685ebf3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7015
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/waypoints.min.js?ver=6.0.2

95.141.34.210

200 OK

2.6 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/waypoints.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (7828)
Size
2.6 kB (2571 bytes)
Hash
b08a10ff518ebd0a8e5132a10b54c1fe
56105f462177224834625760000840e9ebf27c07
2514236f606436c0a9c12616d717d576260cc97319eab9f60c321623b4265636

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/waypoints.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "1f4e-5b35c96859dd3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2571
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jplayer.min.js?ver=6.0.2

95.141.34.210

200 OK

10 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jplayer.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (593)
Size
10 kB (10337 bytes)
Hash
0ce15a0576bbf3ae1cd63d5a3041ec90
fb21f35d898b9c01d6be241d631f16823f31f6d6
cd6c8d7b4d2e8244db02ad718140eaed34b21a20013027056a65d00ba240c41a

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jplayer.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "a768-5b35c96859dd3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 10337
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/bootstrap.carousel.js?ver=6.0.2

95.141.34.210

200 OK

2.5 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/bootstrap.carousel.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
2.5 kB (2518 bytes)
Hash
ca1e33562fe317e5b07e29cd06797d84
da679ec01e84ce9d168fddfe73c5e584d61fcd03
e156aa774638c1c7d27328515be8e09038fbed3b7d9c24a224780b6fdbe55772

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/bootstrap.carousel.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "1f6f-5b35c9685ad73-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2518
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/skrollr.js?ver=6.0.2

95.141.34.210

200 OK

6.4 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/skrollr.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (21650)
Size
6.4 kB (6376 bytes)
Hash
798e9ae8e0aed07cf5ae2ddbc7f0b37f
a24356c8a3150786e58b450182f91201cb6a1cac
2872f7f6b81a9fbb8e893fdfca8affbcfe9bdce93187941d44436c3196ec823c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/skrollr.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "5518-5b35c9685dc53-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 6376
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/Chart.min.js?ver=6.0.2

95.141.34.210

200 OK

5.5 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/Chart.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (32184)
Size
5.5 kB (5533 bytes)
Hash
deb411f27a476a3cff98139dbe1aa8a4
344536a4af4648b94a718c5fdb1b1813ad62ed55
f0de8440adee89b40ea3b109813642ee345c33aa453b37c90b6a895ef7120323

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/Chart.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "7e63-5b35c9685bd13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 5533
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.easing.1.3.js?ver=6.0.2

95.141.34.210

200 OK

1.8 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.easing.1.3.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
Unicode text, UTF-8 text, with very long lines (3561)
Size
1.8 kB (1778 bytes)
Hash
6c7ce7cbe50bd5e617ea187962654c78
e6a4f57fd602932d4c0df27ee166eaeea52fa373
942f785a237e3c94cd4c4a549304f16517b3063717d713e7b68c130c588bf0bd

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.easing.1.3.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "14f7-5b35c9685ccb3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1778
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.plugin.min.js?ver=6.0.2

95.141.34.210

200 OK

1.3 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.plugin.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (2986)
Size
1.3 kB (1341 bytes)
Hash
97294f39ba60b000305918fea0c64858
9a020c94de1c77cfe2782d46156d43321928cb0c
424b3c372aa7b521987311c7aafbb4e6919ef13635f592b094dcdef8a53d057e

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.plugin.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "c6a-5b35c9685bd13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1341
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.countdown.min.js?ver=6.0.2

95.141.34.210

200 OK

4.6 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.countdown.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (13714)
Size
4.6 kB (4583 bytes)
Hash
04177d10b75c5ebbf98417960f590b1d
8ab080313d51c063d900171e084ddb00cff78636
462279fe7b8ba20125da026c5c9f8addc48fc45c3cc77ccfa16789ce6dca91bf

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.countdown.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "368e-5b35c9685ad73-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4583
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2

95.141.34.210

200 OK

4.8 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (17668)
Size
4.8 kB (4804 bytes)
Hash
da7d569a040aae1b84bd95f987e8d997
a4bdc3aafecd5b03633ac17e12ffc20015e2f4ac
d99c281acab5205c90c5308df7259431dac60e3b9736b452c8207c8334338e64

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.justifiedGallery.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "45a3-5b35c9685bd13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 4804
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/owl.carousel.min.js?ver=6.0.2

95.141.34.210

200 OK

11 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/owl.carousel.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (40403)
Size
11 kB (10599 bytes)
Hash
7575ea92b73ac84aa55be99d42bb4eaa
13a52e5cae4f95f4a2ce629965e4ba6c5d0f2868
a72f9044a1766965f26c10a82ee4ffba33ebfa3c4fb71ac5d23a468031249fb5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/owl.carousel.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "9e40-5b35c9685ebf3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 10599
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/lemmon-slider.js?ver=6.0.2

95.141.34.210

200 OK

2.4 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/lemmon-slider.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
Unicode text, UTF-8 text
Size
2.4 kB (2350 bytes)
Hash
41df26c46f11af8a5b9936c490e49f24
eb54ff0f59862a30b99ae30f143bc5f1ee476a77
dbb93d40682c62af88b88a01a4029b13c573c69630e5400b5685ee5c18b16b85

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/lemmon-slider.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "3344-5b35c9685bd13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2350
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.carouFredSel-6.2.1.js?ver=6.0.2

95.141.34.210

200 OK

19 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.carouFredSel-6.2.1.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
19 kB (18559 bytes)
Hash
5e31396bc4e557be82fb402cdf8fb05d
61d2261b9dce2ad9a4a0d085721ee49bb72b5853
87d253f69897247052878bf6b7b1845591aa04725c07b0aaf1a30d7ab95c390d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.carouFredSel-6.2.1.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "163cc-5b35c9685ad73-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 18559
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fullPage.min.js?ver=6.0.2

95.141.34.210

200 OK

7.2 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.fullPage.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (550)
Size
7.2 kB (7178 bytes)
Hash
c85d49f0216e7d67f17d94dc473e59d9
03460f006a9a1c5a6f4c62013d510e2a6f5a52fd
c8d05765dfa8af10abca15eb64ab5e2e26f8c1a3930595e9102769ea70763158

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.fullPage.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "5c7f-5b35c9685dc53-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 7178
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=6.0.2

95.141.34.210

200 OK

716 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (1020)
Size
716 B (716 bytes)
Hash
1bb069d9e3a8d110eaf5319b82b26e9b
25921fb49b922ecc44a40550587df5ace5e9a9a9
6975d1b270a0cbbcd4f0a652d6b32bce9eb2344944e1ccde88e5588bf51e71d4

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.mousewheel.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "570-5b35c9685bd13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 716
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.4.1

95.141.34.210

200 OK

10 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.4.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (32004)
Size
10 kB (9977 bytes)
Hash
0ffe60bf5290a017690aba61438cc811
bc5e291135a49e69b4c74fbf65b36c91f8ee3a72
d96faa744efa6a4aa4510130a29505cddfc3409680a8b33888292fd23c403727

HTTP Headers

GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.4.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:18:36 GMT
ETag: "8b8a-5b35cc58942f5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 9977
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=6.0.2

95.141.34.210

200 OK

2.0 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
2.0 kB (1962 bytes)
Hash
4bea0328db878dfe4cfd1b9b2ab11c93
c055555cba034baded0d5aaf696770b81b916c65
0dd45fa1793fe28f5793486dde4a5e430586999dafddfb602a7cf0a0d3ce1934

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/jquery.parallax-scroll.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "23b7-5b35c9685dc53-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1962
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/js/default_dynamic.js?ver=1604586168

95.141.34.210

200 OK

1.6 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/default_dynamic.js?ver=1604586168
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
1.6 kB (1568 bytes)
Hash
ff8a835dfbdba04fa972f695eb8731eb
feff4ca42a512e5b7ed8aa3e3b72227ea8e7dda5
3fbf76e5d4345f48cf676462bb937a947644170ec91378b0994169ce8851a164

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/default_dynamic.js?ver=1604586168 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:22:48 GMT
ETag: "102e-5b35cd49ace3f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 1568
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.rosaroll70.it/wp-content/themes/stockholm/js/default.min.js?ver=6.0.2

95.141.34.210

200 OK

27 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/default.min.js?ver=6.0.2
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text, with very long lines (31992)
Size
27 kB (27083 bytes)
Hash
2a8ea0e4356454ee2e88651b688f4a61
dae4b67ab701d536399a49b897cbf33f60887a15
0427afc03a27ad667553c5de696e72ce55e9b7a92a9a572549dfb73b8dc2028b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/default.min.js?ver=6.0.2 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "22a5c-5b35c96850193-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 27083
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/javascript

www.rosaroll70.it/wp-content/themes/stockholm/style.css

95.141.34.210

200 OK

357 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/style.css
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
357 B (357 bytes)
Hash
0408c3beabed3e13df770ca252eb0e56
cb53997d0ecfc4c8b6dd58ea62eb1fdb0e5761ac
30df913632f84b635b02daef5adddfb47008f645dd85f3b3db6dbf70ad8e5c6e

HTTP Headers

GET /wp-content/themes/stockholm/style.css HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/wp-content/themes/stockholm-child/style.css?ver=6.0.2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:28 GMT
ETag: "220-5b35c9693c6d3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 357
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/css

www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0

95.141.34.210

200 OK

414 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
ASCII text
Size
414 B (414 bytes)
Hash
3e19a6b6b2c9a41f2d15e17a0281fff7
e5decc5120f5aea1ad2f4ebcebafcec07fbcf3d2
f92bb6a58727d3bcd4f541fe8083f17b30f826a6dbf71427fca4e32395c9df3b

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/js/plugins/qode-like.js?ver=1.0 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "31b-5b35c9685dc53-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 414
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.rosaroll70.it/wp-content/uploads/2019/03/sh.png

95.141.34.210

200 OK

35 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/03/sh.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 150 x 220, 8-bit colormap, non-interlaced\012- data
Size
35 kB (35068 bytes)
Hash
c4ae473bf273d74628dcd4ace0aa9982
5aa36e568327921fdedfa21880cad09438099d11
3485f99dd09a6fe31802a1a7bdca8fd0a7438a22d55abd94fa3b7983ba4d0f3c

HTTP Headers

GET /wp-content/uploads/2019/03/sh.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:32:07 GMT
ETag: "88fc-5984efe7b6e45"
Accept-Ranges: bytes
Content-Length: 35068
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2

142.250.74.46

200 OK

27 kB

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
data
Size
27 kB (27171 bytes)
Hash
bc13ab03de364b5404477ac046180f96
1f1f89b06edc325c6609bb403595550fb820d2fa
ca21fc5457da056a09413dfb4dedf470f1738cdd4f7ba58c5febe5e87db281f9

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 21 Sep 2022 21:49:34 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+097; expires=Fri, 20-Sep-2024 21:49:34 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3

95.141.34.210

200 OK

46 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
data
Size
46 kB (46524 bytes)
Hash
c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:38:04 GMT
ETag: "25d0-5e7b029c413a2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 2914
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/domine/v19/L0x8DFMnlVwD4h3hu_qn.woff2

142.250.74.163

200 OK

28 kB

URL HTTP/2
fonts.gstatic.com/s/domine/v19/L0x8DFMnlVwD4h3hu_qn.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 27624, version 1.0\012- data
Size
28 kB (27624 bytes)
Hash
1f72af2c5d07489f5ac244943db9d7eb
49aa6096e9b9b9d4949a79794a72cb31b744d0de
02fbcf6cd136ae3bfc98aecbbc0f0b1f348c05d96390d63a89cdc323a6dda70c

HTTP Headers

GET /s/domine/v19/L0x8DFMnlVwD4h3hu_qn.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rosaroll70.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27624
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 22:03:28 GMT
expires: Sat, 16 Sep 2023 22:03:28 GMT
cache-control: public, max-age=31536000
age: 431166
last-modified: Mon, 11 Jul 2022 19:06:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.rosaroll70.it/wp-content/uploads/2017/07/2.jpg

95.141.34.210

200 OK

586 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2017/07/2.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3465, bps=170, PhotometricIntepretation=RGB, model=\001, orientation=upper-left, width=5202], progressive, precision 8, 1660x1078, components 3\012- data
Size
586 kB (585810 bytes)
Hash
2bd51dfed6e3e402bd37c68dfc475417
fe8dec31f8bdbc71c3e0509697067fa2906e135f
c1252e0b8e96e898ae1007dd0b5094074a0b554a1ba22ac4176319113fcda6a9

HTTP Headers

GET /wp-content/uploads/2017/07/2.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:34:00 GMT
ETag: "8f052-5984f052cee8a"
Accept-Ranges: bytes
Content-Length: 585810
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2017/07/1.jpg

95.141.34.210

200 OK

743 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2017/07/1.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1440, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2793], progressive, precision 8, 1660x1078, components 3\012- data
Size
743 kB (742917 bytes)
Hash
7548eda974246a709a4b8774a9b114ec
6a0d944966702909c908cd824434122c4bc44155
414344e65b28e37f2666a525e73cc17200ec2353cc2489cca97530767e0ff40d

HTTP Headers

GET /wp-content/uploads/2017/07/1.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:34:07 GMT
ETag: "b5605-5984f0596d3ea"
Accept-Ranges: bytes
Content-Length: 742917
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c8ac2005f83e8a3a9da1a9837b6c2ff3
7c05f49683e49232c1e11b91253e684d2f96ab83
b0b42743b4c7e4b528fd78aadc5429ef34c2e127f3d5147330d428a47203dc0a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5149084af9bb01e5471e0be93a009ab0
1aaae44973461346130015cba0c36e9d1b5b77f2
db8a390c5bb50072d57429a45c470496139deb98e04b175f45600e5e4b2ac884

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

translate.googleapis.com/translate_static/css/translateelement.css

142.250.74.74

200 OK

3.6 kB

URL HTTP/2
translate.googleapis.com/translate_static/css/translateelement.css
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18670)
Size
3.6 kB (3619 bytes)
Hash
897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0

HTTP Headers

GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 21:28:41 GMT
expires: Wed, 21 Sep 2022 22:28:41 GMT
cache-control: public, max-age=3600
age: 1253
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c8ac2005f83e8a3a9da1a9837b6c2ff3
7c05f49683e49232c1e11b91253e684d2f96ab83
b0b42743b4c7e4b528fd78aadc5429ef34c2e127f3d5147330d428a47203dc0a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 21:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/elegant-icons/fonts/ElegantIcons.woff

95.141.34.210

200 OK

64 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/elegant-icons/fonts/ElegantIcons.woff
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
Web Open Font Format, CFF, length 63664, version 1.0\012- data
Size
64 kB (63664 bytes)
Hash
fdd9e757bf61675343dcf55100422b84
f9be87fa2d1d4a95e8305afb51778db4bc759fbc
be1825e52a0dc7df04df9322f62abe2a2f2a25d98aac186de0140dfc7f6bdcae

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/framework/modules/icons/elegant-icons/fonts/ElegantIcons.woff HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/elegant-icons/style.min.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "f8b0-5b35c96902cf3"
Accept-Ranges: bytes
Content-Length: 63664
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: application/font-woff

www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0

95.141.34.210

200 OK

77 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/themes/stockholm/framework/modules/icons/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.rosaroll70.it/wp-content/themes/stockholm/framework/modules/icons/font-awesome/css/font-awesome.min.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:05:27 GMT
ETag: "12d68-5b35c9690a9f3"
Accept-Ranges: bytes
Content-Length: 77160
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive

www.rosaroll70.it/wp-content/uploads/2017/07/3.jpg

95.141.34.210

200 OK

724 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2017/07/3.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1080, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], progressive, precision 8, 1660x1078, components 3\012- data
Size
724 kB (724510 bytes)
Hash
8757d160a39ff962e76e851afebabb84
a9b7cdd02e624b508cb94da58039d14ce8804c3a
f76fab0b1a91d8529efac0ae177bb87683f03b2a8618f8f02619f0c5a75a5f2e

HTTP Headers

GET /wp-content/uploads/2017/07/3.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:33:52 GMT
ETag: "b0e1e-5984f04bc42ca"
Accept-Ranges: bytes
Content-Length: 724510
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/zh-CN.png

95.141.34.210

200 OK

793 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/zh-CN.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
793 B (793 bytes)
Hash
8ac0702e57d9c4d0f9265699372c00a5
6b15b2e03cb864441b87ba1645a0e11ab16ca4c5
a68398db898eac3c4e447f86a8a2c887ba067b840db31d36723987a0b0e98d99

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/zh-CN.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:29 GMT
ETag: "319-5e17a09c7aca9"
Accept-Ranges: bytes
Content-Length: 793
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/nl.png

95.141.34.210

200 OK

469 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/nl.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
469 B (469 bytes)
Hash
213b7e930b8a41dcf4c9f95ac76dbe6b
eccf14152b6ba26fe8a7d02f79586992be40db20
5d75fea10bb270c341503bda4357e90bb069e3e46c7a670a3583f924f3524bd3

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/nl.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:29 GMT
ETag: "1d5-5e17a09c76e29"
Accept-Ranges: bytes
Content-Length: 469
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/en.png

95.141.34.210

200 OK

1.8 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/en.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1767 bytes)
Hash
ec7233b5c80e5db85f7733b2ec25203f
d4c36fff06dc7d920b10eb13b58ea9cd9321b430
347ee97a492f79675749d03533810ff899ee6a784b4e156f3e0a7613cdfb3d40

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/en.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:29 GMT
ETag: "6e7-5e17a09c76e29"
Accept-Ranges: bytes
Content-Length: 1767
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/fr.png

95.141.34.210

200 OK

637 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/fr.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
637 B (637 bytes)
Hash
930f08c6829077e96cf25d58f26bd6d3
0dfa244548435053bbebd2ed5914e2785f0f3dc3
594f333e3a8fe65a0466e4f9c140dab97e6b6a073579edf130a87b86614d7ec8

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/fr.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:29 GMT
ETag: "27d-5e17a09c75e89"
Accept-Ranges: bytes
Content-Length: 637
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/it.png

95.141.34.210

200 OK

642 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/it.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
642 B (642 bytes)
Hash
922efc02f080135a63137dde4ffea287
a4583be3e579a69a03a0d1f09995fdb6d1244f7d
510116996dc4979a225c07962d84bb76e2b6340234c2c5e4280596ad08a632cb

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/it.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:29 GMT
ETag: "282-5e17a09c72fa9"
Accept-Ranges: bytes
Content-Length: 642
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/pt.png

95.141.34.210

200 OK

1.1 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/pt.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1076 bytes)
Hash
bb3cb490b63a8f51283c686b916cf4ff
f325c9d27acb1d3e03a3481eb2c240368ae8460f
f06d3def1549dd1b0a108ddc645d2e8906fb631e5812df19cdcbd887f3700bd8

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/pt.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:29 GMT
ETag: "434-5e17a09c83949"
Accept-Ranges: bytes
Content-Length: 1076
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/ru.png

95.141.34.210

200 OK

487 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/ru.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
487 B (487 bytes)
Hash
5ddf50d1327e2ecc28a980e93b9f538a
581fa9ecc609a1a07fca205b6c9751e8c28f1ebb
1bdc7040f02e999a17f291b59767d4101adefa2d89775272ac7c66f37c710fff

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/ru.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:29 GMT
ETag: "1e7-5e17a09c7aca9"
Accept-Ranges: bytes
Content-Length: 487
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/es.png

95.141.34.210

200 OK

873 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/plugins/gtranslate/flags/24/es.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
873 B (873 bytes)
Hash
8bf31a924501d6db655fe75696b5f046
94ba0f8d4db0c35c1246a55fcbd6e0ef3cd7f0e2
5ae9561f31199bf8a892f797a69db1bc5d477e2f8318f2b7e95487f025f66f28

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/es.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 15 Jun 2022 10:32:29 GMT
ETag: "369-5e17a09c81a09"
Accept-Ranges: bytes
Content-Length: 873
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/uploads/2019/02/P9040003.jpg

95.141.34.210

200 OK

6.5 MB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040003.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, description=OLYMPUS DIGITAL CAMERA, manufacturer=OLYMPUS IMAGING CORP., model=E-M1, xresolution=198, yresolution=206, resolutionunit=2, software=Adobe Photoshop Camera Raw 9.12.1 (Macintosh), datetime=2018:09:04 11:22:07], baseline, precision 8, 4608x3456, components 3\012- data
Size
6.5 MB (6492031 bytes)
Hash
30ff2fddf99aa33c59ebc1ad47be4f2c
396a7ee7cb0264f2a6e0bf03f7da04b1d9f7e836
c46efd7a1a1c9621cd5d98f69a76b7783cd266776ec8e5c1ed8b8d19b34e644e

HTTP Headers

GET /wp-content/uploads/2019/02/P9040003.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:05:28 GMT
ETag: "630f7f-581ca630b759e"
Accept-Ranges: bytes
Content-Length: 6492031
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/6.jpg

95.141.34.210

200 OK

692 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/6.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1183, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1772], progressive, precision 8, 1660x1078, components 3\012- data
Size
692 kB (692452 bytes)
Hash
dbb67e20be85a119f2dcff8c0320c951
79aad7767f81ac6b9f276224678ad246cc83e4d0
ad1d2bb9ceb7f493bf464952a4ee3f6990c851eeb41c280e33484ce44338d923

HTTP Headers

GET /wp-content/uploads/2019/02/6.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:33:30 GMT
ETag: "a90e4-5984f036dd969"
Accept-Ranges: bytes
Content-Length: 692452
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2016/03/Stars.png

95.141.34.210

200 OK

1.5 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2016/03/Stars.png
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
PNG image data, 123 x 24, 4-bit colormap, non-interlaced\012- data
Size
1.5 kB (1477 bytes)
Hash
96a5c264f662554be2a45fad5bd12802
9b3972ebdaf106818ca97485a1c85629bf5247da
9d032d8348a565bb6b9661d03c6baf409e1d586d5e4f7ec0d5d4f85c9f9f7499

HTTP Headers

GET /wp-content/uploads/2016/03/Stars.png HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Cookie: chatyWidget_0=[{"k":"v-widget","v":"2022-09-21T21:49:35.064Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:35:16 GMT
ETag: "5c5-5984f09b6bc6d"
Accept-Ranges: bytes
Content-Length: 1477
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png

www.rosaroll70.it/wp-content/uploads/2019/11/Logo-Rosaroll.jpeg

95.141.34.210

200 OK

42 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/11/Logo-Rosaroll.jpeg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1080x424, components 3\012- data
Size
42 kB (42459 bytes)
Hash
26eeaf60ba3a59ef052a59c98bcbb400
cf65200041aaf3fc7b3c8254c1e78eb813ab0489
8062e9d9d4e7a3eecc91d0208cba0a51bbddad01a1e65a32d5bfa06c83535b79

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-content/uploads/2019/11/Logo-Rosaroll.jpeg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:31:38 GMT
ETag: "a5db-5984efcb4b804"
Accept-Ranges: bytes
Content-Length: 42459
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-json/contact-form-7/v1/contact-forms/86/feedback/schema

95.141.34.210

200 OK

521 B

URL HTTP/1.1
www.rosaroll70.it/wp-json/contact-form-7/v1/contact-forms/86/feedback/schema
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JSON data\012- , ASCII text, with very long lines (521), with no line terminators
Size
521 B (521 bytes)
Hash
12c9cfff6e17cd6a6ef624c6dca07381
16c1dd70fda814ed1456174b9d9096f4fca6bcc9
2b2d86d2bfc205aaafebb732eeab1be8d6c49eb9e3f9ac12a6dde4d61e433fa7

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-json/contact-form-7/v1/contact-forms/86/feedback/schema HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rosaroll70.it/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Cache-Control: no-cache
X-Robots-Tag: noindex
Link: <https://www.rosaroll70.it/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Allow: GET
Vary: Origin
X-Powered-By: PHP/7.3.27, PleskLin
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8

www.rosaroll70.it/wp-content/uploads/2019/02/P9040101.jpg

95.141.34.210

200 OK

8.2 MB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040101.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, description=OLYMPUS DIGITAL CAMERA, manufacturer=OLYMPUS IMAGING CORP., model=E-M1, xresolution=198, yresolution=206, resolutionunit=2, software=Adobe Photoshop Camera Raw 9.12.1 (Macintosh), datetime=2018:09:04 11:23:30], baseline, precision 8, 4608x3456, components 3\012- data
Size
8.2 MB (8159255 bytes)
Hash
008e30a7001b44ae86da54403b96ab89
a8b5a52c393ddd2a077752c3de13c686eea3514f
00caeb3f1eb3dce27742d74d673eebe4b35b46ca1ded97c5045587d3a6ad2842

HTTP Headers

GET /wp-content/uploads/2019/02/P9040101.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:26:01 GMT
ETag: "7c8017-581caac848eff"
Accept-Ranges: bytes
Content-Length: 8159255
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/P9040078.jpg

95.141.34.210

200 OK

7.3 MB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040078.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, description=OLYMPUS DIGITAL CAMERA, manufacturer=OLYMPUS IMAGING CORP., model=E-M1, xresolution=198, yresolution=206, resolutionunit=2, software=Adobe Photoshop Camera Raw 9.12.1 (Macintosh), datetime=2018:09:04 11:23:11], baseline, precision 8, 4608x3456, components 3\012- data
Size
7.3 MB (7293304 bytes)
Hash
89f624629e2ecc94c37446490d22f1fc
10f0a0fc14523f52b8e41b7e66dbd911966d7066
923fbd39682b92362e8f5691f753bed18cb95ad33063f0f96b9dca9c9eaf7dea

HTTP Headers

GET /wp-content/uploads/2019/02/P9040078.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:21:53 GMT
ETag: "6f4978-581ca9db8fed0"
Accept-Ranges: bytes
Content-Length: 7293304
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/P9040027.jpg

95.141.34.210

200 OK

7.1 MB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040027.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, description=OLYMPUS DIGITAL CAMERA, manufacturer=OLYMPUS IMAGING CORP., model=E-M1, xresolution=198, yresolution=206, resolutionunit=2, software=Adobe Photoshop Camera Raw 9.12.1 (Macintosh), datetime=2018:09:04 11:22:31], baseline, precision 8, 4608x3456, components 3\012- data
Size
7.1 MB (7144521 bytes)
Hash
e5ecfd4a39cf1370e9ba4052cd7f5053
19f6fcdd04c5a6646132334d341d3c3f113e0e6c
6b1ec9c36d20e29840709fd0c8e10287522ff0d50731c0c2ff446819679b932d

HTTP Headers

GET /wp-content/uploads/2019/02/P9040027.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:37 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:11:51 GMT
ETag: "6d0449-581ca79dc5a2b"
Accept-Ranges: bytes
Content-Length: 7144521
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/P9040060.jpg

95.141.34.210

200 OK

7.1 MB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040060.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, description=OLYMPUS DIGITAL CAMERA, manufacturer=OLYMPUS IMAGING CORP., model=E-M1, xresolution=198, yresolution=206, resolutionunit=2, software=Adobe Photoshop Camera Raw 9.12.1 (Macintosh), datetime=2018:09:04 11:22:57], baseline, precision 8, 4608x3456, components 3\012- data
Size
7.1 MB (7123471 bytes)
Hash
c10544081042980fc715941328a20e26
bf83d98e4f16f75a6ce0096ec1d827ed96b76403
20e8cac854c0eb578f1487e69d2f5421f1340243d9c2290ccbe4a4e0aa4a2dec

HTTP Headers

GET /wp-content/uploads/2019/02/P9040060.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:18:21 GMT
ETag: "6cb20f-581ca911cd065"
Accept-Ranges: bytes
Content-Length: 7123471
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/P9040009.jpg

95.141.34.210

200 OK

6.3 MB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040009.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, description=OLYMPUS DIGITAL CAMERA, manufacturer=OLYMPUS IMAGING CORP., model=E-M1, xresolution=198, yresolution=206, resolutionunit=2, software=Adobe Photoshop Camera Raw 9.12.1 (Macintosh), datetime=2018:09:04 11:22:14], baseline, precision 8, 4608x3456, components 3\012- data
Size
6.3 MB (6260817 bytes)
Hash
22d9c9d47caf4a279b594fa4acb776e7
5a9cf3f389ceed35b7fdef5b39513ca393127fa0
a2c73a315f6d3cdab7b6976e963c3826e21de5468af03f79a85ba6c41e848647

HTTP Headers

GET /wp-content/uploads/2019/02/P9040009.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:35 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:07:21 GMT
ETag: "5f8851-581ca69c89a94"
Accept-Ranges: bytes
Content-Length: 6260817
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/book.jpg

95.141.34.210

200 OK

840 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/book.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=17, height=3456, bps=218, PhotometricIntepretation=RGB, description=OLYMPUS DIGITAL CAMERA, manufacturer=OLYMPUS IMAGING CORP., model=E-M1, orientation=upper-left, width=4608], progressive, precision 8, 1920x1198, components 3\012- data
Size
840 kB (839680 bytes)
Hash
11eae5c47901eb2f2362f0c58abb736d
651c98eab8191ff5f52d8ef118a9ae09487ab0cf
7e6751bea633ccc486f98d6b856fa668e16b1c3d93ae4ae1c12cfe844546b56d

HTTP Headers

GET /wp-content/uploads/2019/02/book.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:39 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:33:05 GMT
ETag: "cd000-5984f01e8c008"
Accept-Ranges: bytes
Content-Length: 839680
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=83
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/5.jpg

95.141.34.210

200 OK

875 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/5.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1440, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1919], progressive, precision 8, 1660x1078, components 3\012- data
Size
875 kB (875336 bytes)
Hash
c18df9cf44268cf57bc3f6201ef42e0a
b951cea4a85fa9c044b0de0afa2b3b16f34a59a5
2ec71175d293b16e1ec90ed9d3e99cf83f9cf2d5dc982398c20c7927e4edf6c3

HTTP Headers

GET /wp-content/uploads/2019/02/5.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:39 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:33:38 GMT
ETag: "d5b48-5984f03dc9129"
Accept-Ranges: bytes
Content-Length: 875336
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/4.jpg

95.141.34.210

200 OK

782 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/4.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1365, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2048], progressive, precision 8, 1617x1050, components 3\012- data
Size
782 kB (781954 bytes)
Hash
ebca9c660b69d940d02b24dcd1a8a563
480412024f8849650f9c7f888bd27bc750160cad
63172b648198685c1815ff0d98d9a9832473903875fecf7054b38a48883468f6

HTTP Headers

GET /wp-content/uploads/2019/02/4.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:39 GMT
Server: Apache
Last-Modified: Wed, 27 Nov 2019 07:33:45 GMT
ETag: "bee82-5984f0450c729"
Accept-Ranges: bytes
Content-Length: 781954
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6897 bytes)
Hash
8bae3a7a80ff40df1d701dfc925ddeff
91df60162a8322469cada0dd8eb93619f28aec1a
fab10c7ad4658bc191621d9f2042236a7b6e34448ce5215dde5b8d6a64b52952

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 6897
x-amzn-requestid: 509dc368-dd1c-4be7-94ff-64dbd53c199f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoqoRG2WIAMFw6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63268b01-1cb916c251fd5f2f3cf10435;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 03:05:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vs0CTuiAdjRtfJD9qX9S5R07Hw6BWfiOAT50GwTdiSETdoqr2FNsyw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 04:14:25 GMT
age: 63314
etag: "91df60162a8322469cada0dd8eb93619f28aec1a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.rosaroll70.it/wp-content/uploads/2020/11/favicon.jpg

95.141.34.210

200 OK

9.4 kB

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2020/11/favicon.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=424, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 32x32, components 3\012- data
Size
9.4 kB (9351 bytes)
Hash
ccfa20ffedd8025d7fce65ca197d90ba
6f6088fa39b0d3bd7c52138dcac396c0693b3df5
2153128476989da1dc203dfd51501ea8b8a423519ffb4301167c5e8564b6a7f8

HTTP Headers

GET /wp-content/uploads/2020/11/favicon.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Cookie: chatyWidget_0=[{"k":"v-widget","v":"2022-09-21T21:49:35.064Z"}]; activechatyWidgets=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:39 GMT
Server: Apache
Last-Modified: Thu, 05 Nov 2020 14:55:29 GMT
ETag: "2487-5b35d497ced14"
Accept-Ranges: bytes
Content-Length: 9351
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/P9040067.jpg

95.141.34.210

200 OK

0 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040067.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/02/P9040067.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:19:36 GMT
ETag: "7e90fa-581ca95940da3"
Accept-Ranges: bytes
Content-Length: 8294650
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/P9040108.jpg

95.141.34.210

200 OK

0 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040108.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/02/P9040108.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:38 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:28:00 GMT
ETag: "8101e8-581cab3a09c3e"
Accept-Ranges: bytes
Content-Length: 8454632
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=80
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-content/uploads/2019/02/P9040063.jpg

95.141.34.210

200 OK

0 B

URL HTTP/1.1
www.rosaroll70.it/wp-content/uploads/2019/02/P9040063.jpg
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2019/02/P9040063.jpg HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:37 GMT
Server: Apache
Last-Modified: Wed, 13 Feb 2019 18:18:48 GMT
ETag: "746b17-581ca92ba6271"
Accept-Ranges: bytes
Content-Length: 7629591
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=81
Connection: Keep-Alive
Content-Type: image/jpeg

www.rosaroll70.it/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1

95.141.34.210

200 OK

0 B

URL HTTP/1.1
www.rosaroll70.it/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1
IP
95.141.34.210:0
ASN
#49367 Seflow S.N.C. Di Marco Brame' & C.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.1 HTTP/1.1
Host: www.rosaroll70.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 21:49:34 GMT
Server: Apache
Last-Modified: Fri, 02 Sep 2022 11:36:31 GMT
ETag: "1fd-5e7b0243c8a47-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin
Content-Length: 342
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

fonts.googleapis.com/css?family=Raleway%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CCrete+Round%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CDomine%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext&ver=1.0.0

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Raleway%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CCrete+Round%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CDomine%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext&ver=1.0.0
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Raleway%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CCrete+Round%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CMontserrat%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i%7CDomine%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C800%2C800i%2C900%2C900i&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rosaroll70.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 21:49:34 GMT
date: Wed, 21 Sep 2022 21:49:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (73)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations