Report - ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas

Report Overview

Submitted URL
ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
IP
5.134.122.104
ASN
#3242 ITnet S.r.l.
Submitted
2023-03-20 23:03:53
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
60

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.ecoclimagasgpl.it	unknown	2021-02-15T13:39:03Z	2023-03-21T12:04:10Z	26 kB	475 kB	5.134.122.104
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	2.4 kB	4.9 kB	142.250.74.163
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-26T05:35:01Z	391 B	45 kB	142.250.74.168
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-25T22:19:37Z	3.0 kB	146 kB	142.250.74.35
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-26T06:13:06Z	378 B	21 kB	216.239.36.178
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
www.google.com	7	2015-05-10T13:11:19Z	2023-03-25T21:05:45Z	428 B	1.1 kB	216.58.207.228
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-26T06:22:54Z	618 B	2.7 kB	142.250.74.74
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-26T05:56:25Z	453 B	166 kB	216.58.211.3
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	820 B	349 B	157.240.205.35
ecoclimagasgpl.it	unknown	2021-02-15T13:39:03Z	2023-03-20T20:54:22Z	1.1 kB	1.1 kB	5.134.122.104
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	3.0 kB	8.0 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-26T05:09:01Z	379 B	29 kB	31.13.72.12
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	35.161.44.207
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.2 kB	45 kB	34.120.237.76
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-26T05:18:47Z	682 B	1.6 kB	192.229.221.95
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-26T05:15:01Z	904 B	452 B	216.239.34.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/animate.min.css?ver=2.0.4	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-notification-bar.css?ver=2.0.4	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-includes/css/classic-themes.min.css?ver=1	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/responsive.css?ver=6.1.1	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints.min.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/jquery.easing.min.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints-sticky.min.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/prettyPhoto.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/isotope.pkgd.min.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/functions.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/flexslider.min.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/smoothscroll.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/font/fontawesome-webfont.woff2?v=4.7.0	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/check-duotone.svg	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/times-duotone.svg	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/indent-duotone.svg	Phishing
2023-03-20	medium	www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 20:01:32 Times Seen36966699 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/functions.js	76 kB	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/functions.js IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash 86e36f21974eb814ecdec9c73385d7ab 2aca2c2c177f0384bc7ce238f2bf26137969d242 1c9de2316865731bb2b18ca3761a8dd8f32d886015fb3656d5f0de1db4503fdd Loading...

	connect.facebook.net/en_US/fbevents.js	110 kB	2023-03-26	2023-03-29
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:49:43 Last Seen2023-03-29 21:45:24 Times Seen2372 Hash b3d7d1fd0029796048820b8f515d1d4f 242f2ec5485fb5048e53a87fd37b2e6eafb664b6 0a19fce040b8127f3e2e3ed609f7800153be329d6420b53295fb79a4f40012ec Loading...

	www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4	48 kB	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4 IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash 9d3cf583a5d6a9341f7f124ffcc2575f 16d06db9882dfabf0eadc93452d2807c5babecbc b7f6a3698869a28ea1a789f4ce14e91f6a0224b48166d6e1dff97863bc65e86a Loading...

	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js	17 kB	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash e8649d8d2792b4b70ee12474d0b1134b a3cbfed6c589084920aae99916f702f34a569125 285621055e71b2641dd10f881ac92103a8ea58898824f90050f8407bd61f26ea Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	135 B	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash ab14c6c51ff3c279aa51d677accce3ab 7c739cf6b61df8f0f3711d3632ac4f48448131cb 092ad55cec20839531b7517511751f474174ede7f50b30a96ab2ec129d013348 Loading...

	www.google.com/recaptcha/api.js?render=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&ver=3.0	884 B	2023-03-26	2023-03-26
Pretty URL www.google.com/recaptcha/api.js?render=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&ver=3.0 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash 7f399fe17a23f4a2ddd5c18eaa818fe0 defca5f2b9c5924413dd85a4d2497fc3f333c818 854ce129e95c7ed41cc210e1a2edbf630ef707fdd2bcee2cdb27139ba0e165f5 Loading...

	www.googletagmanager.com/gtag/js?id=UA-190579390-1	115 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtag/js?id=UA-190579390-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:20:31 Last Seen2023-03-26 12:20:31 Times Seen1 Hash 7e9c4a90b7136e9da186fa20810e802b 09f99699f27bcc1a51ffa27974397f9650820b22 99342c4f9be93665fd4f754bab3a48bff69d4c7d7bee8411383d590542d4e01b Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&co=aHR0cHM6Ly93d3cuZWNvY2xpbWFnYXNncGwuaXQ6NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=ihjpdhigizl9	69 B	2023-03-07	2024-04-19
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&co=aHR0cHM6Ly93d3cuZWNvY2xpbWFnYXNncGwuaXQ6NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=ihjpdhigizl9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-19 19:49:33 Times Seen99083 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js	414 kB	2023-03-26	2023-05-26
Pretty URL www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:49:14 Last Seen2023-05-26 08:52:16 Times Seen2778 Hash 3e73dbef941895dfc538a9d6a69ed927 dac57a54b2635c1d5e1e6ae44e95d12d0a547ad3 d9d91ff5b9a775b5ce8c6c81e51e71c27194d11ac8690353727d23c91f7b317c Loading...

	www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/anime.min.js?ver=2.0.4	18 kB	2023-03-07	2024-04-16
Pretty URL www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/anime.min.js?ver=2.0.4 IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:20 Last Seen2024-04-16 14:53:26 Times Seen1522 Hash 572d66e85091711b6ee76609573a8364 332031949d78a49e8a18611556253660574e47db 5cbda29ea5096ac9404c59c77493a2f467d0eb4a27f16c750b61fc0d888dd716 Loading...

	www.googletagmanager.com/gtag/js?id=G-GV51080Z6W&l=dataLayer&cx=c	184 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtag/js?id=G-GV51080Z6W&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:20:31 Last Seen2023-03-26 12:20:31 Times Seen1 Hash 45e07e5ef3e8e3f7e0bfb5d995cac013 73f80bc39944730d6d692d2975ef141f25e0fcee 0a8db5d3a336c82b6d696437b159783879d98e2eb99df967e8c3c870df96ef92 Loading...

	connect.facebook.net/signals/config/509015460479387?v=2.9.99&r=stable	386 kB	2023-03-26	2023-03-26
Pretty URL connect.facebook.net/signals/config/509015460479387?v=2.9.99&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen5 Hash 3aa2d5a872f0d80bf117d20c71843683 3fdf4a6781a9486836903f843b1bfb4acf9e67a3 f9abdad1f59aea87f36adfd2043a2eec4ae2ea72d99384a07d57ebc8d834ca0f Loading...

	www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4	999 B	2023-03-07	2024-04-18
Pretty URL www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4 IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-04-18 13:42:00 Times Seen11011 Hash 6a0e8318d42803736d2fafcc12238026 c955314a7e0a9a9871329b0f042c8f0b5df49a78 2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	444 B	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:48:31 Last Seen2023-03-26 12:20:31 Times Seen3 Hash 5f151e0d0dea89747e82bf720c6d6482 ba100675b93bee07c2941c1631210d8741a56425 eab6f3d22420e99ccc5c9341cf8dd5076519690bd11bceef9ab48f78326b9ff7 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.239.36.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	1.2 kB	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash 66014cc7210d380f86a97730028071f1 efa24b45fb4f6846dc8eba8598b69177caaae675 c7dfb93f87827424d649c6ef845b8e3ed54bbceb379d7561f9e00cb7ab0c722c Loading...

	www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.4	11 kB	2023-03-09	2024-04-18
Pretty URL www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 01:22:20 Last Seen2024-04-18 14:17:30 Times Seen8848 Hash 7f0734e228d3f1a255a8b817a5005b8e 3dfca70a7a3e298fc392f2393ca60d350eebb5fd 23bb39b607b39a93d953762d2a618a3cbc69c52ceaf70d96890137ca1d2b0228 Loading...

	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints.min.js	8.0 kB	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints.min.js IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash a14287d06cf2ffc2cbc4998c248ff20d 06534ccfb6ab92bfbfb242654c58ca8b0bcbd204 7ff607a3f2884801544c33c95b11dbe95141dfe0376cf7e726cd6a1c55941b7f Loading...

	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/isotope.pkgd.min.js	38 kB	2023-03-08	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/isotope.pkgd.min.js IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:11:32 Last Seen2023-03-26 12:58:35 Times Seen7 Hash ca8be971ea8125229fb3e6c8aeeec6e4 0db77cb670146643b87628f6f2c014f700707ebd f90d751ed8e885c60caea6691ace7913e811bba7f08b069826618dcd7ae0055a Loading...

	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/smoothscroll.js	23 kB	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/smoothscroll.js IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:48:31 Last Seen2023-03-26 12:58:35 Times Seen5 Hash 833d415b383644ff5a3a3a2f32b67664 e62f5c7665945d8cb92e305a461e726cd5030734 54728112546cb3dfeaa3e62b011d3872adb116aed9eb00135fad02ba8afa1bb8 Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	2.3 kB	2023-03-07	2024-04-19
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:18 Last Seen2024-04-19 11:35:05 Times Seen4790 Hash 6f740b956919fbaa673bb496be184ac1 fa7d2aef8069f1be31c655fb889c897eae36757a c8d83f1bd6a850a6f197b9bcce38828132ad627358b9c2c78e7c4bef4d22c304 Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	167 B	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash eb632c6ad7f42f891693655a848a07af 1b551d576c5eee6b11ce5a64c24176beeb47388f ea73a0d90767f1d1e22dd6b32f53b79d206924b2e4192323b4d7f94ed03aa923 Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	2.1 kB	2023-03-13	2023-10-16
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:10:42 Last Seen2023-10-16 18:55:30 Times Seen13 Hash 0fd84d56da651f0ea3f7c3ce059fa85d b9044aa5c04238747cf3e56422cce400e2c286b9 0571fecdeeff2113b76ae0078da3957db00970dedfa534fadb34213e4fc5e30c Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	444 B	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash 5fb7c31bf75dd4b48d87f562f473a664 ea27928ee1d6deef8da0f5a9684d4971f4aa87ad 59addd74d75c79ffbba962225370c1fcc0e27a2b3e4406c3821e25974a11ccf1 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&co=aHR0cHM6Ly93d3cuZWNvY2xpbWFnYXNncGwuaXQ6NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=ihjpdhigizl9	35 kB	2023-03-26	2023-03-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&co=aHR0cHM6Ly93d3cuZWNvY2xpbWFnYXNncGwuaXQ6NDQz&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=invisible&cb=ihjpdhigizl9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:20:31 Last Seen2023-03-26 12:20:31 Times Seen1 Hash 29d1983da629f3fa0111bbafe57193b3 a144a8c77e8b3fc6f5b80e3271bb832453b235e2 5fe447deca227d9e977e9eefdef3d1bbac76f37c2e7670c5acd2fcc0a9739a0b Loading...

	www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4	13 kB	2023-03-14	2024-04-18
Pretty URL www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4 IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 03:57:51 Last Seen2024-04-18 13:42:00 Times Seen4511 Hash 0fc4d72558c0e4f809b089639b6abecf 89bc1ac63c573c1e93c04b6af404cd2d6be59239 8bac631dfefdb96cf5526520c21e9ef3f585bba973970a7e62b10c945741105c Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	801 B	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:48:31 Last Seen2023-03-26 12:20:31 Times Seen3 Hash 4d93135f4b98c0e3c29d1391a4f72cfb 831f5a3c691bbc4f0f19b24b74649239027e2403 83c28835e5ab6628944f9840f9f3e1f52e10066f23463ede97f8cc8f5c8f32a1 Loading...

	www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas	306 B	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash ff0d8b6b45c240f40951307a344783dd c5a2f463a9f90ebdf9cb098e3f84535179e30e3e bdde3bc06254bf12235f5bf8e01e226fdb0748177778c31b6501adac6414603e Loading...

	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints-sticky.min.js	1.2 kB	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints-sticky.min.js IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash ff320621e7122bf63435e81be4f2f38c 0a63e2a762d6c44f2faf221548d99ab5f5c58c71 7e281a4f88f35f40572d941960923d6cc65ff3d491fcd541e339193d38ad2087 Loading...

	www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 15:34:19 Times Seen68497 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6	8.8 kB	2023-03-07	2024-04-15
Pretty URL www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6 IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-15 19:05:59 Times Seen628 Hash 5f7dca83f1cac6295b0d4c72e325ac20 e0aacf1cfd0d8ed4bc37c8ef2be23d46513b71ed af735813266cdf52a38a6e1583a86066db357469ceded2d7ea8335b298d73d65 Loading...

	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/jquery.easing.min.js	5.6 kB	2023-03-26	2024-01-23
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/jquery.easing.min.js IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2024-01-23 03:04:34 Times Seen8 Hash 9893812146cd592eddcd0631762b9f5e 24aeef988b517fc7b23dbfbdb8231a367ecc0535 867bef9cff9e116090304cc24b36fe02205d1abf28242391c95aaba916a207b5 Loading...

	www.ecoclimagasgpl.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-18
Pretty URL www.ecoclimagasgpl.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 13:42:00 Times Seen15473 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/prettyPhoto.js	36 kB	2023-03-26	2023-03-26
Pretty URL www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/prettyPhoto.js IP 5.134.122.104 ASN #3242 ITnet S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:37:01 Last Seen2023-03-26 12:58:35 Times Seen6 Hash 235d3cd9ce1d231dec07d34d19909dcf 2145547eb080693771bea2aa242f2f5d3d74778e 3d6642c4cafa7e967ac8910e8b45d6e4200b9aa09242709c2a727211f39ccef2 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 8390934c0ee14fdbbde7c75b9506a46e	19 kB	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 12:20:31 Last Seen2023-03-26 12:20:31 Times Seen1 Hash 8390934c0ee14fdbbde7c75b9506a46e 8aa705850994389d348da35323981c7021cf94b3 7c0862191d7bc1335e4608c8d516d5700ab4d387d234f9c508094b8adf3b6e29 Loading...

	#2 Eval - 296431c64008542097739b5d3ca282e9	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 06:58:50 Last Seen2023-03-29 23:14:48 Times Seen1262 Hash 296431c64008542097739b5d3ca282e9 14203ccbc508bc37a8ff43958de58d79317d1b67 2d621d13efcb44ca9b9949354449ddaf7c9d29a8cb0732d1eff85b464f35e1ce Loading...

	#3 Eval - 44d9f4338140d9f0a63e2b07f8084c07	64 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 06:58:50 Last Seen2023-03-29 23:14:48 Times Seen1262 Hash 44d9f4338140d9f0a63e2b07f8084c07 bfa3f0a058f0fd89e83507558fdd050c0ea29785 3f41c104b340637fe72cdca0dcb47b724842566cc962f4b55f3068e2df69315d Loading...

	#4 Eval - d667ba0beb9e284b1cb201d96ea24c76	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 06:58:50 Last Seen2023-03-29 23:14:48 Times Seen1265 Hash d667ba0beb9e284b1cb201d96ea24c76 459fdb91789d4f0d5f19396cb449379f5bf7ee67 94cd0c35bd1bb8bec3174d3338406c237b5e943bbeeebddee858ebf392b1ce97 Loading...

	#5 Eval - 4a549b59bb41bedade4b856e0da4bf77	16 kB	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 06:58:50 Last Seen2023-03-29 23:14:48 Times Seen1263 Hash 4a549b59bb41bedade4b856e0da4bf77 56446640acd4c92ca556a5c74fbbf6f02e74db20 eeed1180a21ac76b34cbb14522342242960e675b25a81fc7312c03ee33ed675e Loading...

HTTP Transactions (88)

URL IP Response Size

ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas

5.134.122.104

301 Moved Permanently

162 B

URL HTTP/1.1
ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas HTTP/1.1
Host: ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 20 Mar 2023 23:03:41 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00e304a3fc0c2f01af0e94fcefe0ca40
833969e75e5e13e823c8d97ee59a9821eb157ee3
c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4073
Expires: Tue, 21 Mar 2023 00:11:35 GMT
Date: Mon, 20 Mar 2023 23:03:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3769
Expires: Tue, 21 Mar 2023 00:06:31 GMT
Date: Mon, 20 Mar 2023 23:03:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17806
Expires: Tue, 21 Mar 2023 04:00:28 GMT
Date: Mon, 20 Mar 2023 23:03:42 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Mar 2023 22:14:55 GMT
content-type: application/json
age: 2927
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: yHuJlboECF4gpWkCu+xLM+EmMpU76JPY/0LlQP8CJXi7InGYYtusQob9EjrUyUC47l5Mxyhoru8=
x-amz-request-id: 06X7HTZ08TMP8FWQ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 20 Mar 2023 22:52:56 GMT
age: 646
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 23:03:43 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7d8583551dd9fdf893646a6932efc04a
fdb30e6a234ea2d4f616cc1f426178558b579d92
0a87d28f7c29837159cf9f9ba10d1dc6c8c8322e01805f5f2004e7eb97f01712

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A87D28F7C29837159CF9F9BA10D1DC6C8C8322E01805F5F2004E7EB97F01712"
Last-Modified: Sun, 19 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Tue, 21 Mar 2023 05:02:52 GMT
Date: Mon, 20 Mar 2023 23:03:43 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Mar 2023 22:14:32 GMT
age: 2951
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4c195a3fc0c2abb831630cef1dcfa770
eda338de3063640556177b9db364c33193d7f6dc
c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11299
Expires: Tue, 21 Mar 2023 02:12:02 GMT
Date: Mon, 20 Mar 2023 23:03:43 GMT
Connection: keep-alive

push.services.mozilla.com/

35.161.44.207

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.44.207:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cL8f+q601zNygpF3cWu0iw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /qRlp+A3JHGj1pzzl/atooTVvJU=

ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas

5.134.122.104

301 Moved Permanently

0 B

URL HTTP/1.1
ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas HTTP/1.1
Host: ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 20 Mar 2023 23:03:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
X-Cache-Status: MISS
X-Powered-By: PHP/7.4.32, PleskLin

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2483
Expires: Mon, 20 Mar 2023 23:45:08 GMT
Date: Mon, 20 Mar 2023 23:03:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2483
Expires: Mon, 20 Mar 2023 23:45:08 GMT
Date: Mon, 20 Mar 2023 23:03:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2483
Expires: Mon, 20 Mar 2023 23:45:08 GMT
Date: Mon, 20 Mar 2023 23:03:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2483
Expires: Mon, 20 Mar 2023 23:45:08 GMT
Date: Mon, 20 Mar 2023 23:03:45 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5906 bytes)
Hash
e14006bd4b8766e373bc11e21bba6c42
70b8c46d3b829be40d27fbeda2dbefcdb7ad17a4
31c962ccd63afaa71a162c7f8b0b259347bd52630427f2387dcdd46ca2bf062f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5906
x-amzn-requestid: aa937d0b-da54-4bf4-a47f-662bea154a65
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEYMXEk7oAMFmMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418071b-63ccde3f35f1d1496cc313f4;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:11:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: dggiiyVySzSmFWlwweCoOdgJyGfLG-gsjHRUR1xfv3IDOu_8CRIOkw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 3f3347264bcaae7af741e2a2f692c6a0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 07:21:34 GMT
age: 56531
etag: "70b8c46d3b829be40d27fbeda2dbefcdb7ad17a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c47b1c0-04b4-4401-ac29-0541c79f9785.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.8 kB (3835 bytes)
Hash
00d5824792d2b97182c7fe2f91880eee
75e82060efb997641f24c68ebc70d0828ba90311
bc5e9cf1d7d78b14e595705eee550f5d6acd712feb4b3a9e428ae4ce863edc58

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c47b1c0-04b4-4401-ac29-0541c79f9785.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3835
x-amzn-requestid: 8f05ddb5-6a3c-4902-a3a0-f40a9e59394b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI-GjWIAMFTsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-26854db13f914e1579b9e752;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: nPGp--k2s14M2YR095tI4Y5BjuEyNY4NWF9Nb0Pck3HWn6xapRy9Gw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:51:42 GMT
age: 4323
etag: "75e82060efb997641f24c68ebc70d0828ba90311"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27beb599-d6ab-447d-b497-9b5f9f5d91a8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8462 bytes)
Hash
3f729384abf6a521030c33b87b15e187
fc30e0047c8061dd37d7a249e9a040f85ee0b7ae
a9d602b103e378c1f91265f5526b2c01ff26edefbc9ccfab3d7cba36d8ae56bb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27beb599-d6ab-447d-b497-9b5f9f5d91a8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8462
x-amzn-requestid: ab1719b1-b67c-4f29-a38f-773164b4f00e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEW3rGOvIAMFwqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641804fd-5ebf74dd6a3a764e77a0710d;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:02:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: -CGBgR4Q3oo9lO3z1r6ko2t9AWEsjYWRyzbWePWcxUBpP1BJ9-cb3w==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 07:22:16 GMT
age: 56489
etag: "fc30e0047c8061dd37d7a249e9a040f85ee0b7ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11336 bytes)
Hash
e538277f72ecedd22d24c1012250fa9e
4bd955ea3790a6926486e3d56f51c712c56997d7
5f4d374598cfb1a78e7016ec3a0b563e61e7481be202c34b10c9fdfbfc7b638e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11336
x-amzn-requestid: 3aaca817-ebbc-449f-806c-d5a2a7559335
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWjFEmFIAMFqhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d146-435381723c24efc66eed6b4b;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: GIjvleZ9_Ylizb0wtrfvVrU8qtjVdojVpS3IGmBZaqtLha42eEMBJw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6af3b573d8970d5db2a4d03354335b84.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:17:11 GMT
age: 2794
etag: "4bd955ea3790a6926486e3d56f51c712c56997d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb294015e-de2b-400c-abd2-bcaae9cb6e46.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.9 kB (3919 bytes)
Hash
dffe7d7d164bc4961ec9bcad59d0d529
b8ae13d28b462cc4be537cc9118d4d2664394896
6e36d72ac5869c3babfadde523f65f1c0b293418b78aec2db400969313006f5b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb294015e-de2b-400c-abd2-bcaae9cb6e46.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3919
x-amzn-requestid: 962e7442-863d-4eee-925e-decc36c67118
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI-FWioAMFQ7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-4b933c517f504b483a66c6d4;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: LsQy2TzFZSjD34-1HdRXoKGsU5sY02boY5XEKgbZ28pf18OX7LGtMA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 a9e73292d0b92053c3e38dcec15fd0e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:45:17 GMT
age: 4708
etag: "b8ae13d28b462cc4be537cc9118d4d2664394896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde16c1fb-8973-46d5-a440-8527888510e4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5093 bytes)
Hash
7e281be899d3a89992cd1c8493e37f77
5a5d5c6a29abd635879671dbf7607df1baa17d56
70232e33aff51589e751c478c326a4e82473c4d53f049b8b551f9dd1ba11e4ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde16c1fb-8973-46d5-a440-8527888510e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5093
x-amzn-requestid: 09c682a3-b2d0-4eb8-ae9a-96ddb8716077
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9mzZFI5IAMFYiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641551af-3651fc21214db65e70caa0cf;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 05:52:47 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: VquOENg5ShRpddRHaI04cjOauy3kmVLC3uG7VB21xK4Iu2lvG9XWfw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 3f3347264bcaae7af741e2a2f692c6a0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 13:26:49 GMT
age: 34616
etag: "5a5d5c6a29abd635879671dbf7607df1baa17d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas

5.134.122.104

404 Not Found

12 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16371), with CRLF, LF line terminators
Size
12 kB (12519 bytes)
Hash
76489a74051f93e1a28dd50423c6c9c8
a5ebbc83e709978fe782594177d5cdd942dcaa7b
2f428fa182c08cabe17037c30b5f9be8251927a4e673ad5362980d3331096dc4

HTTP Headers

GET /wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 20 Mar 2023 23:03:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.32
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.ecoclimagasgpl.it/wp-json/>; rel="https://api.w.org/"
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/animate.min.css?ver=2.0.4

5.134.122.104

200 OK

4.7 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/animate.min.css?ver=2.0.4
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (65362)
Size
4.7 kB (4693 bytes)
Hash
f1975157fac853f3d667bf1b4009aee3
3bf8d2e86dbbd0e2ea6513af228fc13c3256985d
689f3ac806283f6630e0b1ecbd8e8ae1202b75c3edfc41bd63a8425eb1e791f5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/css/animate.min.css?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-1182e"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4

5.134.122.104

200 OK

3.5 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text
Size
3.5 kB (3503 bytes)
Hash
fafb990464890fbd48ba9f4f8f7a6033
16ffb2aa40d04b1ae581e6a22bb94bb395b5b991
4bb226b9a8f0fedee32267f84516f662ae9c91cf503537b8dbc32ae2e7d57e8a

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-5204"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-notification-bar.css?ver=2.0.4

5.134.122.104

200 OK

245 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-notification-bar.css?ver=2.0.4
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text
Size
245 B (245 bytes)
Hash
0df4a1d052dee10717189ab74bf82d42
c0b76b858e195ada4d0f707a66e69d1235ce499a
c0bfae4146e465a32755b971fd3d4f99168d72841fd8a9233b3bfc243ee9bd5f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-notification-bar.css?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-25d"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/style.css?ver=1

5.134.122.104

200 OK

21 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/style.css?ver=1
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (615)
Size
21 kB (21446 bytes)
Hash
44e1513f443e7a88b0e0cde9089a9511
f61c551eefdc511d140b126ad0d22da2fb61ba12
f89a475387c662c37264fa87856d6c227459bc69aa1a764b496062cc82f73865

HTTP Headers

GET /wp-content/themes/unicon/style.css?ver=1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sun, 21 Feb 2021 16:52:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60328fc4-1fb25"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-includes/css/classic-themes.min.css?ver=1

5.134.122.104

200 OK

145 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-includes/css/classic-themes.min.css?ver=1
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text
Size
145 B (145 bytes)
Hash
0fe39c042f2bce740376802bccd14468
9df1861c02c6d5de2447e33c676c924d84e25641
b750ec436fcd83c233c2df17adea7db066daac152018f771fb5362277f40f4c2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Thu, 12 Jan 2023 10:14:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63bfdd9c-d9"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

5.134.122.104

200 OK

11 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (47826)
Size
11 kB (11435 bytes)
Hash
ddbe3b9f44d545e14cfd50fe353e3b47
6d294c7b8b93646644fd7343e6b329dc7951e80f
347aba0ec41916a80c3fe2c9b5702874e664618165b7044a9a419bc170cb0c7f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Thu, 12 Jan 2023 10:14:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63bfdd9c-172a9"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4

5.134.122.104

200 OK

879 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text
Size
879 B (879 bytes)
Hash
bd304d50174b64203eec691cfd4ef82e
210d5c4ab274a3df74fa7cfd5d2246210c97f1b9
10d53f5dae2a4d07fc3d1f32def03507cc908593d9b42e000f83d05ef48705b4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Fri, 24 Feb 2023 14:05:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63f8c40f-b2b"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23

5.134.122.104

200 OK

12 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size
12 kB (11997 bytes)
Hash
eaa452a565d6b54e94a49d0005dab6fd
e0530d34aa4238d4159056f987cb2b0ff3792717
76dd0129e1e6f45122f47c32f27052695a63b5d6356ac8ce39bbce9b6086acd3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Mon, 15 Feb 2021 15:51:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"602a9895-ea95"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/responsive.css?ver=6.1.1

5.134.122.104

200 OK

4.0 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/responsive.css?ver=6.1.1
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (577)
Size
4.0 kB (4020 bytes)
Hash
42a53359f7fab34c73a4043af7056a0b
7ed43ba9abd259d770bc7c3925fd0722ea1039ec
8acfad92c1084c8d82660da8cddb542dd87dc716a0faa62c345af19a5637b3ea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sun, 21 Feb 2021 16:52:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60328fc4-615a"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

5.134.122.104

200 OK

4.0 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3989 bytes)
Hash
add44040f586702dc1c451ab92296499
d9c7ba287ba026b837e2452763be965ab0020534
33e3f641cfc7cc64ac828fb2109d67649610740d78e4f4380d6bf551327e354b

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Tue, 07 Dec 2021 11:42:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61af48ae-2bd8"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1

5.134.122.104

200 OK

26 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (30811)
Size
26 kB (25790 bytes)
Hash
46f80818d99a7beba7fcb90d21a3d432
d3adee1d841326258454b11ea55260080f065101
81c834ba1aa531663544a6f406925b0acac4a49ec8e6a198cbc290347d4e8f63

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sun, 21 Feb 2021 16:52:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60328fc4-25a65"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1

5.134.122.104

200 OK

967 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (5334), with no line terminators
Size
967 B (967 bytes)
Hash
1c092d0cdd11a332029827919a9d0665
711063c34d58c68158a59d7d8d201d6daefe44a9
0c45fcd6d66d43f042df82590ab7303bcb5fb75600895802e7418c4b57c5d79a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Wed, 01 Feb 2023 07:47:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63da190a-14d6"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/anime.min.js?ver=2.0.4

5.134.122.104

200 OK

6.9 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/anime.min.js?ver=2.0.4
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (17638)
Size
6.9 kB (6945 bytes)
Hash
72829df1772cd3eee75117dab1daa777
ff99c8cd7544ac5a01c63ee50f995fa796281b40
e4b1b18a359c0a2920ca6b7720bb0c5823fe5cdadeb88a1cb90a04f128524716

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/js/anime.min.js?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-454d"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4

5.134.122.104

200 OK

7.7 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text
Size
7.7 kB (7692 bytes)
Hash
c03cb519693f408da4153686f24b62a9
71a0c1c4668e3b1ae14f6417d07a859d5f9244bc
1f4bcbee49d952c93726129f16d8df663b6f414357e9a5913e87fb017cc590b2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-b9f0"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1

5.134.122.104

200 OK

40 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (65358)
Size
40 kB (40481 bytes)
Hash
417e433fccdddb575cdb731aadde3892
0673afbe961086b0a4202476f7ccb21bd21b642f
e67aa559d8b34a827b4fb3d38a2dbe6727ac9691953af13a6cb9a64352b2af0b

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Mon, 15 Feb 2021 15:51:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"602a988a-76828"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

5.134.122.104

200 OK

30 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (65447)
Size
30 kB (30177 bytes)
Hash
ae1cf83d2201e59d763385978787e317
f6831a4276e88307b4811242b9747a588cf64395
21c1ed40fd9217135bccc08236bad3bc97daa27e7fddaf16f576ea041b78f613

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Thu, 12 Jan 2023 10:14:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63bfdd9d-15e54"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23

5.134.122.104

200 OK

44 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (41022), with CRLF line terminators
Size
44 kB (43507 bytes)
Hash
7f92f52e3120ed6ca9791d3a3bb83ca7
7354574da97873bf77d70c1c7daf32d2ec53cee3
f84398cbbc6045666f3212cb5de19c580476662050783fd4da0d53b27be2ed8a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:51:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d69ed-1d25b"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6

5.134.122.104

200 OK

2.0 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
C source, ASCII text, with very long lines (8750), with no line terminators
Size
2.0 kB (1960 bytes)
Hash
b176093416290c67653caedef361f2ba
31715653fc936d0b70c0f8875e23f21e709230de
64f02bd07a64a19edb9d2095f91e8aa4a7e28aa81906297a5e4c9e79164a8a7f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Wed, 01 Feb 2023 07:47:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63da190a-222e"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8535613a8a8fd6ee9e928b3539dcfccd
75d939e05c094dda5410c98b8264d7c3270a6672
b09eaa3afbf3c651a41228d2297ff907b3f98102bce5277c7b9a1af8a1f346f3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4

5.134.122.104

200 OK

3.9 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
HTML document, ASCII text, with very long lines (12948), with no line terminators
Size
3.9 kB (3915 bytes)
Hash
f64eefc81fdfd5487210aa67f2ac32a2
055b4b6740b3fe82ac48fe901e2d5e5d8b80b3a2
af76e5a6a845ee917c06f36afdcd69f2231f017df7626a7155e5da0437bc96ba

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Fri, 24 Feb 2023 14:05:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63f8c40f-3294"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints.min.js

5.134.122.104

200 OK

2.4 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints.min.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (7829)
Size
2.4 kB (2435 bytes)
Hash
a3ad716e6d20ee78bb2caf580c7c1b2f
e6e130cef09c275233257fee7cb8918901b575c3
a8d848bc2fffc17aaef18b62c0c6bb3e7d583d9b76b41c3dca09f916308b50bf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/js/waypoints.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693c-1f6d"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/jquery.easing.min.js

5.134.122.104

200 OK

1.8 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/jquery.easing.min.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
Unicode text, UTF-8 text, with very long lines (3602)
Size
1.8 kB (1798 bytes)
Hash
a0e716f1e70e63695a74f0f49e63bcbd
34b597fd99138834b53d62310fe9df22fb344d1d
1d349b99c529e3ed3ea744e8266bd0ed52f99a90f6ba4de863a2f69616cd905f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/js/jquery.easing.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693b-15bd"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.googletagmanager.com/gtag/js?id=UA-190579390-1

142.250.74.168

200 OK

45 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-190579390-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2206)
Size
45 kB (44685 bytes)
Hash
995358a45c4f517d84f7471a6a5dd108
e95a54af1e14bc9f4fab68c8f8059915b5abeeef
be415a9084a295ebbc36f5d512fc658633a2e2a96287cfdaac6a5908b896fa00

HTTP Headers

GET /gtag/js?id=UA-190579390-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 20 Mar 2023 23:03:47 GMT
expires: Mon, 20 Mar 2023 23:03:47 GMT
cache-control: private, max-age=900
last-modified: Mon, 20 Mar 2023 22:36:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44685
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints-sticky.min.js

5.134.122.104

200 OK

531 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints-sticky.min.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (945)
Size
531 B (531 bytes)
Hash
82b947afca9298c59a9373584dcfa33e
5b9729026eb1850ac91029b24bff1aede4e18eb6
02f6c21dc80acfa97c8fc1b8e3aa2e5e8e44020f0bbedfe7c2e51dbc13db5ee7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/js/waypoints-sticky.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693e-483"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.google.com/recaptcha/api.js?render=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&ver=3.0

216.58.207.228

200 OK

586 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&ver=3.0
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (884), with no line terminators
Size
586 B (586 bytes)
Hash
f3750df0c0bc38269ff229019c54c0b2
daf027612e7d482fb07906b1ca74b687423afcb1
16dd7eef915f6c4d31702c4faadd72d8ac261193c00f40f647678627e98848a1

HTTP Headers

GET /recaptcha/api.js?render=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Mon, 20 Mar 2023 23:03:47 GMT
date: Mon, 20 Mar 2023 23:03:47 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/prettyPhoto.js

5.134.122.104

200 OK

8.9 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/prettyPhoto.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
HTML document, ASCII text, with very long lines (613)
Size
8.9 kB (8870 bytes)
Hash
1ff4b87a616dcc4a385a65fa38a22232
f8cefb43949aa65558cf2c9d83f971456981eac7
edb287dd9c08f013b16712ef582c73effc9f67f4d651cabb082f22874c5fd73b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/js/prettyPhoto.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d6939-8b7a"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/isotope.pkgd.min.js

5.134.122.104

200 OK

9.8 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/isotope.pkgd.min.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (32011)
Size
9.8 kB (9750 bytes)
Hash
99d01372e0426a55453edd903fcf1270
eac669b7654dd2e01a56e78053fed43620a0edbf
3110f9c41fb83601b07364c18480916aff5e266dcd6014b9f9e1ca2f0920c9a3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/js/isotope.pkgd.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d6938-934a"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8252dadd968ec1f294252ff1328a1f08
8612446f27ae9ce296270c969845a784dcc7569b
84717d4c360be2750d3e28827fa865c9616395cd3463ac03245b57baa8887e35

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/functions.js

5.134.122.104

200 OK

20 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/functions.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (11779)
Size
20 kB (20041 bytes)
Hash
fda3b27e9f67ecab8f807c7517dacdd3
f8238727a0671ca259501047115f2e3ee9e46c8d
f70bb734152ecf213abe5769c377a0a46f5e1886c4f95050ee352fe6fcc81707

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/js/functions.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693a-129e4"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/flexslider.min.js

5.134.122.104

200 OK

6.0 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/flexslider.min.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (21540)
Size
6.0 kB (5997 bytes)
Hash
b09f44fb0fdc0683d9f01ccb99c34f2b
0c7755849da0383032d4c7d5e1c23ebe9c553bf2
df790a9723458e970c316181d423b4d8d1a7e3872d786dae569a6dcbc8147e02

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/js/flexslider.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693d-5487"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/smoothscroll.js

5.134.122.104

200 OK

6.6 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/smoothscroll.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text
Size
6.6 kB (6603 bytes)
Hash
2dfb383d8f874a25eff31a94805e1dad
5bd8c493fd3b298833efa5c425a06bc86c4de007
0ec9c70cf4eb12744417436b13b49b31049022bedd2c77b013a6385ec4111a6c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/js/smoothscroll.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d6938-5b13"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bfa45bb31acdcad04104ab759ca396b0
f8290df5a249f0dd192fec38584618205b2d4bc7
97b4f123c07d8ccbbb7f6757f55e2b2b055ea296a29f52a729efdc996e9c8592

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ecoclimagasgpl.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

5.134.122.104

200 OK

2.3 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (6475), with no line terminators
Size
2.3 kB (2349 bytes)
Hash
ae449394c1ef0e89cb6be7a345fbf816
2010694b32a78264b102b4a7287ea018792f6314
6402af0afd4d400db23ab97dd361c43ff04a956ef70dac5ab815926b45d7b6e2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Wed, 22 Jun 2022 07:21:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62b2c2ed-194b"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4

5.134.122.104

200 OK

440 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (999), with no line terminators
Size
440 B (440 bytes)
Hash
3f8bbfce6786ecb56a02b7c6d4fec2f5
7025b07c3adf180d9c26cb95f15c927f1ffe0ad3
23f73d38938f0dd452bcb30080b5f27b3bf990de33f598cacf5289925fa16376

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Fri, 24 Feb 2023 14:05:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63f8c40f-3e7"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js

5.134.122.104

200 OK

6.4 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
ASCII text, with very long lines (1322)
Size
6.4 kB (6407 bytes)
Hash
14311ac5e84da565f7336f533e33fb50
e5c71abfd2f4fc60ce6c620d04f23d7a4fe52fa6
10e2262115190e756de93d36c2e5554f6a53935bdf65b70194679853d002087c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:46:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d68c7-43e4"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo2.png

5.134.122.104

200 OK

6.5 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo2.png
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
PNG image data, 205 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6461 bytes)
Hash
bef34eb41ce7259d3b22db01a234c04f
6a88bc144924d0800e2d09b86ca2e70f58521515
4efe0f36fba7cf56fe71b3462e9ac3c7a96284cd6c296e076a738f6faa1d6d4a

HTTP Headers

GET /wp-content/uploads/2021/02/logo2.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 6461
Last-Modified: Sun, 21 Feb 2021 17:20:10 GMT
Connection: keep-alive
ETag: "6032964a-193d"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo-white2.png

5.134.122.104

200 OK

3.6 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo-white2.png
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
PNG image data, 205 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
3.6 kB (3550 bytes)
Hash
557d0bb384c1efc181925ad2d69f6fbe
51a68cc1ad14ea297239ee3225d272004e599e75
466a115a1938122bffe16f71cb6c053e9fea8e766acbf7d7e9940ddbbab22cf9

HTTP Headers

GET /wp-content/uploads/2021/02/logo-white2.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 3550
Last-Modified: Sun, 21 Feb 2021 17:20:32 GMT
Connection: keep-alive
ETag: "60329660-dde"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo.png

5.134.122.104

200 OK

25 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo.png
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
PNG image data, 450 x 77, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24759 bytes)
Hash
346cd7c5747e12225d435ad29513f534
7caddb9fdca5bddf333cc0844100fb2d90d9fa14
8c84e0a47a454aa51b3b45114b0c49e613aa8bf9eed13bd5083de706f3e0e74e

HTTP Headers

GET /wp-content/uploads/2021/02/logo.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 24759
Last-Modified: Sun, 21 Feb 2021 17:13:12 GMT
Connection: keep-alive
ETag: "603294a8-60b7"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo-white.png

5.134.122.104

200 OK

8.1 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo-white.png
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
PNG image data, 450 x 77, 8-bit/color RGBA, non-interlaced\012- data
Size
8.1 kB (8129 bytes)
Hash
b22586aa89c03e599f8aafae542f4a7b
4e3944cf41a08b6fca52a18e2403ea0e3d0f52de
84515576d3a65e2ae5c53fed14bf7ea86bef13435a5c358b4ac53d9d359a5161

HTTP Headers

GET /wp-content/uploads/2021/02/logo-white.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 8129
Last-Modified: Sun, 21 Feb 2021 17:14:43 GMT
Connection: keep-alive
ETag: "60329503-1fc1"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/img/privacy-by-basic.png

5.134.122.104

200 OK

4.8 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/img/privacy-by-basic.png
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
PNG image data, 110 x 66, 8-bit/color RGBA, non-interlaced\012- data
Size
4.8 kB (4784 bytes)
Hash
da0a5e1ffcb0e1e1c4b64ac88e82e195
8c511cc8dd4ed96dc4c6541d50f3dd17d4b57f7f
31e6066f1e8b92a4c54e77a6040d8aed43ad4e5ba74bd967da6d02631faef141

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/img/privacy-by-basic.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 4784
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Connection: keep-alive
ETag: "63e6f6ff-12b0"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3ac4671deeca3302950bd5fce7f4ce3f
62b5d0c548949ee8d932231fcd01196cefc896aa
e4adf52f426f89cbc5a61507b21d33c817e5b8cee1e2709fe3ffecc1ec0c8731

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7COpen+Sans:300,400,600,700,800,300italic,400italic,600italic,700italic,800italic&subset=latin

142.250.74.74

200 OK

2.1 kB

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7COpen+Sans:300,400,600,700,800,300italic,400italic,600italic,700italic,800italic&subset=latin
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
data
Size
2.1 kB (2089 bytes)
Hash
77aa4bec66e453da6a5690b0eda9e933
6fa7dfb0ed4883e7cec658be3d58a3442585ef74
5590961f75a782241058fcd68bb8f8ca55b3a809bbe247f8dcd020047131a9cd

HTTP Headers

GET /css?family=Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7COpen+Sans:300,400,600,700,800,300italic,400italic,600italic,700italic,800italic&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 20 Mar 2023 23:03:47 GMT
date: Mon, 20 Mar 2023 23:03:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/font/fontawesome-webfont.woff2?v=4.7.0

5.134.122.104

200 OK

77 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/font/fontawesome-webfont.woff2?v=4.7.0
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unicon/framework/css/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Sun, 21 Feb 2021 16:52:20 GMT
Connection: keep-alive
ETag: "60328fc4-12d68"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4599403a49a361c750d6c7d8a410c743
a9bbdec66280f7ee5c4766ccc45fddbad16af2c3
80a17a133e51c6dadd6dc8f6b72dc3d6088110cd12de5fdf1a8286be09207e22

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6013
Cache-Control: max-age=141580
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Etag: "641854e2-1d7"
Expires: Wed, 22 Mar 2023 14:23:27 GMT
Last-Modified: Mon, 20 Mar 2023 12:43:14 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471

www.ecoclimagasgpl.it/wp-content/uploads/2021/02/favicon-80x80.png

5.134.122.104

200 OK

2.8 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/favicon-80x80.png
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2799 bytes)
Hash
715f4da893a5433e862079f9e7dfa15e
d0ecc2a8801b4c95b40eca68b2bae860dccfa042
7513594609a674bd8bc79faf30d6ec3099b3376f10a8852bbf753c9fed44a5c8

HTTP Headers

GET /wp-content/uploads/2021/02/favicon-80x80.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 2799
Last-Modified: Sun, 21 Feb 2021 17:09:17 GMT
Connection: keep-alive
ETag: "603293bd-aef"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

www.ecoclimagasgpl.it/wp-content/uploads/2021/02/favicon.png

5.134.122.104

200 OK

31 kB

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/favicon.png
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Size
31 kB (31273 bytes)
Hash
0e59c58ef068b8e43054d0b99cbf685c
cfc965f0fb99b56cbd983c39e949ba086bded388
d5dfc2c566ae7b4c975979dbf97d9d5ae7cfd9ec8736fbf1eac1ee584a54aabb

HTTP Headers

GET /wp-content/uploads/2021/02/favicon.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 31273
Last-Modified: Sun, 21 Feb 2021 17:09:16 GMT
Connection: keep-alive
ETag: "603293bc-7a29"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27907 bytes)
Hash
e5f5bf796d91f271e383cf1ff3ee5af4
70ead02da19095ca752d55e89a48fcdf59d44d33
247f023e282f1556e668df0033858196d682f31f659d1b53ea6dcaeff56c401a

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: NZeUKPS0R4Yndo9iW1+lnbJlq1HxXTbEUty+lrOepAD/kTf4cujLIb1Iuqplg/N9CQ7mo19eItnRcVpBAa96qg==
content-length: 27907
x-fb-trip-id: 1904183273
date: Mon, 20 Mar 2023 23:03:47 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js

216.58.211.3

200 OK

165 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (576)
Size
165 kB (164678 bytes)
Hash
f22f07ee02fbeed3958345c90b52b818
2aa44ea19d580589c06c2170103b4d0505e18cdb
dc1eadf37f70bef92766d0c316d1da7af283b84e5c309a4732d8ed35d7bbfb84

HTTP Headers

GET /recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164678
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 11:44:52 GMT
expires: Thu, 14 Mar 2024 11:44:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 13 Mar 2023 02:02:14 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 472735
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.35

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 13:55:04 GMT
expires: Tue, 19 Mar 2024 13:55:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 32923
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4599403a49a361c750d6c7d8a410c743
a9bbdec66280f7ee5c4766ccc45fddbad16af2c3
80a17a133e51c6dadd6dc8f6b72dc3d6088110cd12de5fdf1a8286be09207e22

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4628
Cache-Control: max-age=140195
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Etag: "641854e2-1d7"
Expires: Wed, 22 Mar 2023 14:00:22 GMT
Last-Modified: Mon, 20 Mar 2023 12:43:14 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

142.250.74.35

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 18 Mar 2023 10:20:33 GMT
expires: Sun, 17 Mar 2024 10:20:33 GMT
cache-control: public, max-age=31536000
age: 218594
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

142.250.74.35

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Size
48 kB (47952 bytes)
Hash
17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd

HTTP Headers

GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 14 Mar 2023 09:41:19 GMT
expires: Wed, 13 Mar 2024 09:41:19 GMT
cache-control: public, max-age=31536000
age: 566548
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/check-duotone.svg

5.134.122.104

200 OK

365 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/check-duotone.svg
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (607), with no line terminators
Size
365 B (365 bytes)
Hash
2169e330214ed614451545b4442e1ab9
2412329d64c57fbb1ab65061f3b6b6fde113eaf4
188da4770cd9d99e14ca5d92aedc7fb90df2737a4eade41e7a076b27510768e0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/svg/check-duotone.svg HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/svg+xml
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-25f"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/times-duotone.svg

5.134.122.104

200 OK

368 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/times-duotone.svg
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (717), with no line terminators
Size
368 B (368 bytes)
Hash
1319ebd9e97a2b512841f85c90f9d281
60bcd798d44311a9527e02fdc506631bde1c7e54
e4ecb906df55a1b22137465f615d6eed3c4c251afca90cf79522ca9ba11c00ed

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/svg/times-duotone.svg HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/svg+xml
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-2cd"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/indent-duotone.svg

5.134.122.104

200 OK

445 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/indent-duotone.svg
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (946), with no line terminators
Size
445 B (445 bytes)
Hash
5fb1988398c1f3ce3b5e89fe723ca1d6
d28b90793cb817e7483bd9cfbef1c6c1cc145cf0
194a33f3723adf8e283aed8e9206c3f6e22fa007b9d084fa87d95c2aff0d7d2a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/myagileprivacy/frontend/svg/indent-duotone.svg HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/svg+xml
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-3b2"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip

www.google-analytics.com/analytics.js

216.239.36.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.36.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 20 Mar 2023 22:12:29 GMT
expires: Tue, 21 Mar 2023 00:12:29 GMT
cache-control: public, max-age=7200
age: 3078
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=509015460479387&ev=PageView&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&rl=&if=false&ts=1679353429391&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679353429390.1017248312&it=1679353429037&coo=false&rqm=GET

157.240.205.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=509015460479387&ev=PageView&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&rl=&if=false&ts=1679353429391&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679353429390.1017248312&it=1679353429037&coo=false&rqm=GET
IP
157.240.205.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=509015460479387&ev=PageView&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&rl=&if=false&ts=1679353429391&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679353429390.1017248312&it=1679353429037&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 20 Mar 2023 23:03:47 GMT
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 21:48:03 GMT
expires: Fri, 15 Mar 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 350144
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 17:56:42 GMT
expires: Fri, 15 Mar 2024 17:56:42 GMT
cache-control: public, max-age=31536000
age: 364025
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-GV51080Z6W&gtm=45je33f0&_p=1805292461&gdid=dZTNiMT&cid=304934322.1679353429&ul=en-us&sr=1280x1024&_s=1&sid=1679353429&sct=1&seg=0&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&dt=Pagina%20non%20trovata%20-%20Eco%20Clima&en=page_view&_fv=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-GV51080Z6W&gtm=45je33f0&_p=1805292461&gdid=dZTNiMT&cid=304934322.1679353429&ul=en-us&sr=1280x1024&_s=1&sid=1679353429&sct=1&seg=0&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&dt=Pagina%20non%20trovata%20-%20Eco%20Clima&en=page_view&_fv=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-GV51080Z6W&gtm=45je33f0&_p=1805292461&gdid=dZTNiMT&cid=304934322.1679353429&ul=en-us&sr=1280x1024&_s=1&sid=1679353429&sct=1&seg=0&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&dt=Pagina%20non%20trovata%20-%20Eco%20Clima&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.ecoclimagasgpl.it
date: Mon, 20 Mar 2023 23:03:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23

5.134.122.104

200 OK

0 B

URL HTTP/1.1
www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23
IP
5.134.122.104:0
ASN
#3242 ITnet S.r.l.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:51:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d69ef-4fd59"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

0 B

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 18:52:41 GMT
expires: Tue, 19 Mar 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 15066
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL