ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
5.134.122.104301 Moved Permanently 162 B URL HTTP/1.1 ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
IP 5.134.122.104:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas HTTP/1.1
Host: ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 20 Mar 2023 23:03:41 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e304a3fc0c2f01af0e94fcefe0ca40
833969e75e5e13e823c8d97ee59a9821eb157ee3
c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4073
Expires: Tue, 21 Mar 2023 00:11:35 GMT
Date: Mon, 20 Mar 2023 23:03:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3769
Expires: Tue, 21 Mar 2023 00:06:31 GMT
Date: Mon, 20 Mar 2023 23:03:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17806
Expires: Tue, 21 Mar 2023 04:00:28 GMT
Date: Mon, 20 Mar 2023 23:03:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Mar 2023 22:14:55 GMT
content-type: application/json
age: 2927
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yHuJlboECF4gpWkCu+xLM+EmMpU76JPY/0LlQP8CJXi7InGYYtusQob9EjrUyUC47l5Mxyhoru8=
x-amz-request-id: 06X7HTZ08TMP8FWQ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 20 Mar 2023 22:52:56 GMT
age: 646
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 23:03:43 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7d8583551dd9fdf893646a6932efc04a
fdb30e6a234ea2d4f616cc1f426178558b579d92
0a87d28f7c29837159cf9f9ba10d1dc6c8c8322e01805f5f2004e7eb97f01712
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0A87D28F7C29837159CF9F9BA10D1DC6C8C8322E01805F5F2004E7EB97F01712"
Last-Modified: Sun, 19 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Tue, 21 Mar 2023 05:02:52 GMT
Date: Mon, 20 Mar 2023 23:03:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Mar 2023 22:14:32 GMT
age: 2951
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4c195a3fc0c2abb831630cef1dcfa770
eda338de3063640556177b9db364c33193d7f6dc
c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11299
Expires: Tue, 21 Mar 2023 02:12:02 GMT
Date: Mon, 20 Mar 2023 23:03:43 GMT
Connection: keep-alive
push.services.mozilla.com/
35.161.44.207101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.44.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cL8f+q601zNygpF3cWu0iw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /qRlp+A3JHGj1pzzl/atooTVvJU=
ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
5.134.122.104301 Moved Permanently 0 B URL HTTP/1.1 ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
IP 5.134.122.104:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas HTTP/1.1
Host: ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 20 Mar 2023 23:03:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
X-Cache-Status: MISS
X-Powered-By: PHP/7.4.32, PleskLin
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2483
Expires: Mon, 20 Mar 2023 23:45:08 GMT
Date: Mon, 20 Mar 2023 23:03:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2483
Expires: Mon, 20 Mar 2023 23:45:08 GMT
Date: Mon, 20 Mar 2023 23:03:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2483
Expires: Mon, 20 Mar 2023 23:45:08 GMT
Date: Mon, 20 Mar 2023 23:03:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2483
Expires: Mon, 20 Mar 2023 23:45:08 GMT
Date: Mon, 20 Mar 2023 23:03:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e14006bd4b8766e373bc11e21bba6c42
70b8c46d3b829be40d27fbeda2dbefcdb7ad17a4
31c962ccd63afaa71a162c7f8b0b259347bd52630427f2387dcdd46ca2bf062f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b5e25da-048a-413a-a665-a2f7722e7a8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5906
x-amzn-requestid: aa937d0b-da54-4bf4-a47f-662bea154a65
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEYMXEk7oAMFmMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418071b-63ccde3f35f1d1496cc313f4;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:11:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: dggiiyVySzSmFWlwweCoOdgJyGfLG-gsjHRUR1xfv3IDOu_8CRIOkw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 3f3347264bcaae7af741e2a2f692c6a0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 07:21:34 GMT
age: 56531
etag: "70b8c46d3b829be40d27fbeda2dbefcdb7ad17a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c47b1c0-04b4-4401-ac29-0541c79f9785.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c47b1c0-04b4-4401-ac29-0541c79f9785.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00d5824792d2b97182c7fe2f91880eee
75e82060efb997641f24c68ebc70d0828ba90311
bc5e9cf1d7d78b14e595705eee550f5d6acd712feb4b3a9e428ae4ce863edc58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c47b1c0-04b4-4401-ac29-0541c79f9785.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3835
x-amzn-requestid: 8f05ddb5-6a3c-4902-a3a0-f40a9e59394b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI-GjWIAMFTsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-26854db13f914e1579b9e752;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: nPGp--k2s14M2YR095tI4Y5BjuEyNY4NWF9Nb0Pck3HWn6xapRy9Gw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 8cb7de37a1655236518810d0aabb8656.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:51:42 GMT
age: 4323
etag: "75e82060efb997641f24c68ebc70d0828ba90311"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27beb599-d6ab-447d-b497-9b5f9f5d91a8.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27beb599-d6ab-447d-b497-9b5f9f5d91a8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f729384abf6a521030c33b87b15e187
fc30e0047c8061dd37d7a249e9a040f85ee0b7ae
a9d602b103e378c1f91265f5526b2c01ff26edefbc9ccfab3d7cba36d8ae56bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F27beb599-d6ab-447d-b497-9b5f9f5d91a8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8462
x-amzn-requestid: ab1719b1-b67c-4f29-a38f-773164b4f00e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CEW3rGOvIAMFwqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641804fd-5ebf74dd6a3a764e77a0710d;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 07:02:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: -CGBgR4Q3oo9lO3z1r6ko2t9AWEsjYWRyzbWePWcxUBpP1BJ9-cb3w==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 07:22:16 GMT
age: 56489
etag: "fc30e0047c8061dd37d7a249e9a040f85ee0b7ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e538277f72ecedd22d24c1012250fa9e
4bd955ea3790a6926486e3d56f51c712c56997d7
5f4d374598cfb1a78e7016ec3a0b563e61e7481be202c34b10c9fdfbfc7b638e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68a4b574-14c9-4d65-81df-d700ef3fa2f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11336
x-amzn-requestid: 3aaca817-ebbc-449f-806c-d5a2a7559335
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWjFEmFIAMFqhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d146-435381723c24efc66eed6b4b;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:33:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: GIjvleZ9_Ylizb0wtrfvVrU8qtjVdojVpS3IGmBZaqtLha42eEMBJw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6af3b573d8970d5db2a4d03354335b84.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 22:17:11 GMT
age: 2794
etag: "4bd955ea3790a6926486e3d56f51c712c56997d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb294015e-de2b-400c-abd2-bcaae9cb6e46.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb294015e-de2b-400c-abd2-bcaae9cb6e46.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dffe7d7d164bc4961ec9bcad59d0d529
b8ae13d28b462cc4be537cc9118d4d2664394896
6e36d72ac5869c3babfadde523f65f1c0b293418b78aec2db400969313006f5b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb294015e-de2b-400c-abd2-bcaae9cb6e46.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3919
x-amzn-requestid: 962e7442-863d-4eee-925e-decc36c67118
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI-FWioAMFQ7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-4b933c517f504b483a66c6d4;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: LsQy2TzFZSjD34-1HdRXoKGsU5sY02boY5XEKgbZ28pf18OX7LGtMA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 a9e73292d0b92053c3e38dcec15fd0e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:45:17 GMT
age: 4708
etag: "b8ae13d28b462cc4be537cc9118d4d2664394896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde16c1fb-8973-46d5-a440-8527888510e4.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde16c1fb-8973-46d5-a440-8527888510e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e281be899d3a89992cd1c8493e37f77
5a5d5c6a29abd635879671dbf7607df1baa17d56
70232e33aff51589e751c478c326a4e82473c4d53f049b8b551f9dd1ba11e4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde16c1fb-8973-46d5-a440-8527888510e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5093
x-amzn-requestid: 09c682a3-b2d0-4eb8-ae9a-96ddb8716077
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9mzZFI5IAMFYiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641551af-3651fc21214db65e70caa0cf;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 05:52:47 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: VquOENg5ShRpddRHaI04cjOauy3kmVLC3uG7VB21xK4Iu2lvG9XWfw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 3f3347264bcaae7af741e2a2f692c6a0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 13:26:49 GMT
age: 34616
etag: "5a5d5c6a29abd635879671dbf7607df1baa17d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
5.134.122.104404 Not Found 12 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
IP 5.134.122.104:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (16371), with CRLF, LF line terminators
Hash 76489a74051f93e1a28dd50423c6c9c8
a5ebbc83e709978fe782594177d5cdd942dcaa7b
2f428fa182c08cabe17037c30b5f9be8251927a4e673ad5362980d3331096dc4
GET /wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Server: nginx
Date: Mon, 20 Mar 2023 23:03:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.32
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.ecoclimagasgpl.it/wp-json/>; rel="https://api.w.org/"
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/animate.min.css?ver=2.0.4
5.134.122.104200 OK 4.7 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/animate.min.css?ver=2.0.4
IP 5.134.122.104:0
File type ASCII text, with very long lines (65362)
Hash f1975157fac853f3d667bf1b4009aee3
3bf8d2e86dbbd0e2ea6513af228fc13c3256985d
689f3ac806283f6630e0b1ecbd8e8ae1202b75c3edfc41bd63a8425eb1e791f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/myagileprivacy/frontend/css/animate.min.css?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-1182e"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
5.134.122.104200 OK 3.5 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
IP 5.134.122.104:0
Hash fafb990464890fbd48ba9f4f8f7a6033
16ffb2aa40d04b1ae581e6a22bb94bb395b5b991
4bb226b9a8f0fedee32267f84516f662ae9c91cf503537b8dbc32ae2e7d57e8a
GET /wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-5204"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-notification-bar.css?ver=2.0.4
5.134.122.104200 OK 245 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-notification-bar.css?ver=2.0.4
IP 5.134.122.104:0
Hash 0df4a1d052dee10717189ab74bf82d42
c0b76b858e195ada4d0f707a66e69d1235ce499a
c0bfae4146e465a32755b971fd3d4f99168d72841fd8a9233b3bfc243ee9bd5f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-notification-bar.css?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-25d"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/style.css?ver=1
5.134.122.104200 OK 21 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/style.css?ver=1
IP 5.134.122.104:0
File type ASCII text, with very long lines (615)
Hash 44e1513f443e7a88b0e0cde9089a9511
f61c551eefdc511d140b126ad0d22da2fb61ba12
f89a475387c662c37264fa87856d6c227459bc69aa1a764b496062cc82f73865
GET /wp-content/themes/unicon/style.css?ver=1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sun, 21 Feb 2021 16:52:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60328fc4-1fb25"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-includes/css/classic-themes.min.css?ver=1
5.134.122.104200 OK 145 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-includes/css/classic-themes.min.css?ver=1
IP 5.134.122.104:0
Hash 0fe39c042f2bce740376802bccd14468
9df1861c02c6d5de2447e33c676c924d84e25641
b750ec436fcd83c233c2df17adea7db066daac152018f771fb5362277f40f4c2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Thu, 12 Jan 2023 10:14:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63bfdd9c-d9"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
5.134.122.104200 OK 11 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 5.134.122.104:0
File type ASCII text, with very long lines (47826)
Hash ddbe3b9f44d545e14cfd50fe353e3b47
6d294c7b8b93646644fd7343e6b329dc7951e80f
347aba0ec41916a80c3fe2c9b5702874e664618165b7044a9a419bc170cb0c7f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Thu, 12 Jan 2023 10:14:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63bfdd9c-172a9"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4
5.134.122.104200 OK 879 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4
IP 5.134.122.104:0
Hash bd304d50174b64203eec691cfd4ef82e
210d5c4ab274a3df74fa7cfd5d2246210c97f1b9
10d53f5dae2a4d07fc3d1f32def03507cc908593d9b42e000f83d05ef48705b4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Fri, 24 Feb 2023 14:05:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63f8c40f-b2b"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23
5.134.122.104200 OK 12 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23
IP 5.134.122.104:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash eaa452a565d6b54e94a49d0005dab6fd
e0530d34aa4238d4159056f987cb2b0ff3792717
76dd0129e1e6f45122f47c32f27052695a63b5d6356ac8ce39bbce9b6086acd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.2.23 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Mon, 15 Feb 2021 15:51:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"602a9895-ea95"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/responsive.css?ver=6.1.1
5.134.122.104200 OK 4.0 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/responsive.css?ver=6.1.1
IP 5.134.122.104:0
File type ASCII text, with very long lines (577)
Hash 42a53359f7fab34c73a4043af7056a0b
7ed43ba9abd259d770bc7c3925fd0722ea1039ec
8acfad92c1084c8d82660da8cddb542dd87dc716a0faa62c345af19a5637b3ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sun, 21 Feb 2021 16:52:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60328fc4-615a"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
5.134.122.104200 OK 4.0 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 5.134.122.104:0
File type ASCII text, with very long lines (11126)
Hash add44040f586702dc1c451ab92296499
d9c7ba287ba026b837e2452763be965ab0020534
33e3f641cfc7cc64ac828fb2109d67649610740d78e4f4380d6bf551327e354b
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Tue, 07 Dec 2021 11:42:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61af48ae-2bd8"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1
5.134.122.104200 OK 26 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1
IP 5.134.122.104:0
File type ASCII text, with very long lines (30811)
Hash 46f80818d99a7beba7fcb90d21a3d432
d3adee1d841326258454b11ea55260080f065101
81c834ba1aa531663544a6f406925b0acac4a49ec8e6a198cbc290347d4e8f63
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Sun, 21 Feb 2021 16:52:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60328fc4-25a65"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1
5.134.122.104200 OK 967 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1
IP 5.134.122.104:0
File type ASCII text, with very long lines (5334), with no line terminators
Hash 1c092d0cdd11a332029827919a9d0665
711063c34d58c68158a59d7d8d201d6daefe44a9
0c45fcd6d66d43f042df82590ab7303bcb5fb75600895802e7418c4b57c5d79a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=6.1.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Wed, 01 Feb 2023 07:47:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63da190a-14d6"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/anime.min.js?ver=2.0.4
5.134.122.104200 OK 6.9 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/anime.min.js?ver=2.0.4
IP 5.134.122.104:0
File type ASCII text, with very long lines (17638)
Hash 72829df1772cd3eee75117dab1daa777
ff99c8cd7544ac5a01c63ee50f995fa796281b40
e4b1b18a359c0a2920ca6b7720bb0c5823fe5cdadeb88a1cb90a04f128524716
GET /wp-content/plugins/myagileprivacy/frontend/js/anime.min.js?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-454d"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4
5.134.122.104200 OK 7.7 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4
IP 5.134.122.104:0
Hash c03cb519693f408da4153686f24b62a9
71a0c1c4668e3b1ae14f6417d07a859d5f9244bc
1f4bcbee49d952c93726129f16d8df663b6f414357e9a5913e87fb017cc590b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/myagileprivacy/frontend/js/my-agile-privacy-frontend.js?ver=2.0.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-b9f0"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1
5.134.122.104200 OK 40 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1
IP 5.134.122.104:0
File type ASCII text, with very long lines (65358)
Hash 417e433fccdddb575cdb731aadde3892
0673afbe961086b0a4202476f7ccb21bd21b642f
e67aa559d8b34a827b4fb3d38a2dbe6727ac9691953af13a6cb9a64352b2af0b
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.4.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: text/css
Last-Modified: Mon, 15 Feb 2021 15:51:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"602a988a-76828"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
5.134.122.104200 OK 30 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 5.134.122.104:0
File type ASCII text, with very long lines (65447)
Hash ae1cf83d2201e59d763385978787e317
f6831a4276e88307b4811242b9747a588cf64395
21c1ed40fd9217135bccc08236bad3bc97daa27e7fddaf16f576ea041b78f613
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Thu, 12 Jan 2023 10:14:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63bfdd9d-15e54"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23
5.134.122.104200 OK 44 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23
IP 5.134.122.104:0
File type ASCII text, with very long lines (41022), with CRLF line terminators
Hash 7f92f52e3120ed6ca9791d3a3bb83ca7
7354574da97873bf77d70c1c7daf32d2ec53cee3
f84398cbbc6045666f3212cb5de19c580476662050783fd4da0d53b27be2ed8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.2.23 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:51:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d69ed-1d25b"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6
5.134.122.104200 OK 2.0 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6
IP 5.134.122.104:0
File type C source, ASCII text, with very long lines (8750), with no line terminators
Hash b176093416290c67653caedef361f2ba
31715653fc936d0b70c0f8875e23f21e709230de
64f02bd07a64a19edb9d2095f91e8aa4a7e28aa81906297a5e4c9e79164a8a7f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.4.6 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Wed, 01 Feb 2023 07:47:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63da190a-222e"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 8535613a8a8fd6ee9e928b3539dcfccd
75d939e05c094dda5410c98b8264d7c3270a6672
b09eaa3afbf3c651a41228d2297ff907b3f98102bce5277c7b9a1af8a1f346f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4
5.134.122.104200 OK 3.9 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4
IP 5.134.122.104:0
File type HTML document, ASCII text, with very long lines (12948), with no line terminators
Hash f64eefc81fdfd5487210aa67f2ac32a2
055b4b6740b3fe82ac48fe901e2d5e5d8b80b3a2
af76e5a6a845ee917c06f36afdcd69f2231f017df7626a7155e5da0437bc96ba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Fri, 24 Feb 2023 14:05:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63f8c40f-3294"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints.min.js
5.134.122.104200 OK 2.4 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints.min.js
IP 5.134.122.104:0
File type ASCII text, with very long lines (7829)
Hash a3ad716e6d20ee78bb2caf580c7c1b2f
e6e130cef09c275233257fee7cb8918901b575c3
a8d848bc2fffc17aaef18b62c0c6bb3e7d583d9b76b41c3dca09f916308b50bf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/js/waypoints.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693c-1f6d"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/jquery.easing.min.js
5.134.122.104200 OK 1.8 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/jquery.easing.min.js
IP 5.134.122.104:0
File type Unicode text, UTF-8 text, with very long lines (3602)
Hash a0e716f1e70e63695a74f0f49e63bcbd
34b597fd99138834b53d62310fe9df22fb344d1d
1d349b99c529e3ed3ea744e8266bd0ed52f99a90f6ba4de863a2f69616cd905f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/js/jquery.easing.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693b-15bd"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.googletagmanager.com/gtag/js?id=UA-190579390-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-190579390-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash 995358a45c4f517d84f7471a6a5dd108
e95a54af1e14bc9f4fab68c8f8059915b5abeeef
be415a9084a295ebbc36f5d512fc658633a2e2a96287cfdaac6a5908b896fa00
GET /gtag/js?id=UA-190579390-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 20 Mar 2023 23:03:47 GMT
expires: Mon, 20 Mar 2023 23:03:47 GMT
cache-control: private, max-age=900
last-modified: Mon, 20 Mar 2023 22:36:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44685
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints-sticky.min.js
5.134.122.104200 OK 531 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/waypoints-sticky.min.js
IP 5.134.122.104:0
File type ASCII text, with very long lines (945)
Hash 82b947afca9298c59a9373584dcfa33e
5b9729026eb1850ac91029b24bff1aede4e18eb6
02f6c21dc80acfa97c8fc1b8e3aa2e5e8e44020f0bbedfe7c2e51dbc13db5ee7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/js/waypoints-sticky.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693e-483"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.google.com/recaptcha/api.js?render=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&ver=3.0
216.58.207.228200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&ver=3.0
IP 216.58.207.228:0
File type ASCII text, with very long lines (884), with no line terminators
Hash f3750df0c0bc38269ff229019c54c0b2
daf027612e7d482fb07906b1ca74b687423afcb1
16dd7eef915f6c4d31702c4faadd72d8ac261193c00f40f647678627e98848a1
GET /recaptcha/api.js?render=6LehPE8cAAAAAHifUWVyWr5AH28Q-gtnTJUCewSJ&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 20 Mar 2023 23:03:47 GMT
date: Mon, 20 Mar 2023 23:03:47 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/prettyPhoto.js
5.134.122.104200 OK 8.9 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/prettyPhoto.js
IP 5.134.122.104:0
File type HTML document, ASCII text, with very long lines (613)
Hash 1ff4b87a616dcc4a385a65fa38a22232
f8cefb43949aa65558cf2c9d83f971456981eac7
edb287dd9c08f013b16712ef582c73effc9f67f4d651cabb082f22874c5fd73b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/js/prettyPhoto.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d6939-8b7a"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/isotope.pkgd.min.js
5.134.122.104200 OK 9.8 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/isotope.pkgd.min.js
IP 5.134.122.104:0
File type ASCII text, with very long lines (32011)
Hash 99d01372e0426a55453edd903fcf1270
eac669b7654dd2e01a56e78053fed43620a0edbf
3110f9c41fb83601b07364c18480916aff5e266dcd6014b9f9e1ca2f0920c9a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/js/isotope.pkgd.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d6938-934a"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8252dadd968ec1f294252ff1328a1f08
8612446f27ae9ce296270c969845a784dcc7569b
84717d4c360be2750d3e28827fa865c9616395cd3463ac03245b57baa8887e35
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/functions.js
5.134.122.104200 OK 20 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/functions.js
IP 5.134.122.104:0
File type ASCII text, with very long lines (11779)
Hash fda3b27e9f67ecab8f807c7517dacdd3
f8238727a0671ca259501047115f2e3ee9e46c8d
f70bb734152ecf213abe5769c377a0a46f5e1886c4f95050ee352fe6fcc81707
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/js/functions.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693a-129e4"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/flexslider.min.js
5.134.122.104200 OK 6.0 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/flexslider.min.js
IP 5.134.122.104:0
File type ASCII text, with very long lines (21540)
Hash b09f44fb0fdc0683d9f01ccb99c34f2b
0c7755849da0383032d4c7d5e1c23ebe9c553bf2
df790a9723458e970c316181d423b4d8d1a7e3872d786dae569a6dcbc8147e02
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/js/flexslider.min.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d693d-5487"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/smoothscroll.js
5.134.122.104200 OK 6.6 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/js/smoothscroll.js
IP 5.134.122.104:0
Hash 2dfb383d8f874a25eff31a94805e1dad
5bd8c493fd3b298833efa5c425a06bc86c4de007
0ec9c70cf4eb12744417436b13b49b31049022bedd2c77b013a6385ec4111a6c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/js/smoothscroll.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:48:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d6938-5b13"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash bfa45bb31acdcad04104ab759ca396b0
f8290df5a249f0dd192fec38584618205b2d4bc7
97b4f123c07d8ccbbb7f6757f55e2b2b055ea296a29f52a729efdc996e9c8592
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ecoclimagasgpl.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
5.134.122.104200 OK 2.3 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 5.134.122.104:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash ae449394c1ef0e89cb6be7a345fbf816
2010694b32a78264b102b4a7287ea018792f6314
6402af0afd4d400db23ab97dd361c43ff04a956ef70dac5ab815926b45d7b6e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Wed, 22 Jun 2022 07:21:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"62b2c2ed-194b"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4
5.134.122.104200 OK 440 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4
IP 5.134.122.104:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 3f8bbfce6786ecb56a02b7c6d4fec2f5
7025b07c3adf180d9c26cb95f15c927f1ffe0ad3
23f73d38938f0dd452bcb30080b5f27b3bf990de33f598cacf5289925fa16376
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.4 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Fri, 24 Feb 2023 14:05:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63f8c40f-3e7"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js
5.134.122.104200 OK 6.4 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js
IP 5.134.122.104:0
File type ASCII text, with very long lines (1322)
Hash 14311ac5e84da565f7336f533e33fb50
e5c71abfd2f4fc60ce6c620d04f23d7a4fe52fa6
10e2262115190e756de93d36c2e5554f6a53935bdf65b70194679853d002087c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/admin/ReduxCore/assets/js/webfont.js HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:46:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d68c7-43e4"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo2.png
5.134.122.104200 OK 6.5 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo2.png
IP 5.134.122.104:0
File type PNG image data, 205 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash bef34eb41ce7259d3b22db01a234c04f
6a88bc144924d0800e2d09b86ca2e70f58521515
4efe0f36fba7cf56fe71b3462e9ac3c7a96284cd6c296e076a738f6faa1d6d4a
GET /wp-content/uploads/2021/02/logo2.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 6461
Last-Modified: Sun, 21 Feb 2021 17:20:10 GMT
Connection: keep-alive
ETag: "6032964a-193d"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo-white2.png
5.134.122.104200 OK 3.6 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo-white2.png
IP 5.134.122.104:0
File type PNG image data, 205 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 557d0bb384c1efc181925ad2d69f6fbe
51a68cc1ad14ea297239ee3225d272004e599e75
466a115a1938122bffe16f71cb6c053e9fea8e766acbf7d7e9940ddbbab22cf9
GET /wp-content/uploads/2021/02/logo-white2.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 3550
Last-Modified: Sun, 21 Feb 2021 17:20:32 GMT
Connection: keep-alive
ETag: "60329660-dde"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo.png
5.134.122.104200 OK 25 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo.png
IP 5.134.122.104:0
File type PNG image data, 450 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash 346cd7c5747e12225d435ad29513f534
7caddb9fdca5bddf333cc0844100fb2d90d9fa14
8c84e0a47a454aa51b3b45114b0c49e613aa8bf9eed13bd5083de706f3e0e74e
GET /wp-content/uploads/2021/02/logo.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 24759
Last-Modified: Sun, 21 Feb 2021 17:13:12 GMT
Connection: keep-alive
ETag: "603294a8-60b7"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo-white.png
5.134.122.104200 OK 8.1 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/uploads/2021/02/logo-white.png
IP 5.134.122.104:0
File type PNG image data, 450 x 77, 8-bit/color RGBA, non-interlaced\012- data
Hash b22586aa89c03e599f8aafae542f4a7b
4e3944cf41a08b6fca52a18e2403ea0e3d0f52de
84515576d3a65e2ae5c53fed14bf7ea86bef13435a5c358b4ac53d9d359a5161
GET /wp-content/uploads/2021/02/logo-white.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 8129
Last-Modified: Sun, 21 Feb 2021 17:14:43 GMT
Connection: keep-alive
ETag: "60329503-1fc1"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/img/privacy-by-basic.png
5.134.122.104200 OK 4.8 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/img/privacy-by-basic.png
IP 5.134.122.104:0
File type PNG image data, 110 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash da0a5e1ffcb0e1e1c4b64ac88e82e195
8c511cc8dd4ed96dc4c6541d50f3dd17d4b57f7f
31e6066f1e8b92a4c54e77a6040d8aed43ad4e5ba74bd967da6d02631faef141
GET /wp-content/plugins/myagileprivacy/frontend/img/privacy-by-basic.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 4784
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Connection: keep-alive
ETag: "63e6f6ff-12b0"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3ac4671deeca3302950bd5fce7f4ce3f
62b5d0c548949ee8d932231fcd01196cefc896aa
e4adf52f426f89cbc5a61507b21d33c817e5b8cee1e2709fe3ffecc1ec0c8731
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7COpen+Sans:300,400,600,700,800,300italic,400italic,600italic,700italic,800italic&subset=latin
142.250.74.74200 OK 2.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7COpen+Sans:300,400,600,700,800,300italic,400italic,600italic,700italic,800italic&subset=latin
IP 142.250.74.74:0
Hash 77aa4bec66e453da6a5690b0eda9e933
6fa7dfb0ed4883e7cec658be3d58a3442585ef74
5590961f75a782241058fcd68bb8f8ca55b3a809bbe247f8dcd020047131a9cd
GET /css?family=Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7COpen+Sans:300,400,600,700,800,300italic,400italic,600italic,700italic,800italic&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 20 Mar 2023 23:03:47 GMT
date: Mon, 20 Mar 2023 23:03:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/font/fontawesome-webfont.woff2?v=4.7.0
5.134.122.104200 OK 77 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/font/fontawesome-webfont.woff2?v=4.7.0
IP 5.134.122.104:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/unicon/framework/css/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/unicon/framework/css/shortcodes.css?ver=6.1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: font/woff2
Content-Length: 77160
Last-Modified: Sun, 21 Feb 2021 16:52:20 GMT
Connection: keep-alive
ETag: "60328fc4-12d68"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 4599403a49a361c750d6c7d8a410c743
a9bbdec66280f7ee5c4766ccc45fddbad16af2c3
80a17a133e51c6dadd6dc8f6b72dc3d6088110cd12de5fdf1a8286be09207e22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6013
Cache-Control: max-age=141580
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Etag: "641854e2-1d7"
Expires: Wed, 22 Mar 2023 14:23:27 GMT
Last-Modified: Mon, 20 Mar 2023 12:43:14 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/favicon-80x80.png
5.134.122.104200 OK 2.8 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/uploads/2021/02/favicon-80x80.png
IP 5.134.122.104:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 715f4da893a5433e862079f9e7dfa15e
d0ecc2a8801b4c95b40eca68b2bae860dccfa042
7513594609a674bd8bc79faf30d6ec3099b3376f10a8852bbf753c9fed44a5c8
GET /wp-content/uploads/2021/02/favicon-80x80.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 2799
Last-Modified: Sun, 21 Feb 2021 17:09:17 GMT
Connection: keep-alive
ETag: "603293bd-aef"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
www.ecoclimagasgpl.it/wp-content/uploads/2021/02/favicon.png
5.134.122.104200 OK 31 kB URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/uploads/2021/02/favicon.png
IP 5.134.122.104:0
File type PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e59c58ef068b8e43054d0b99cbf685c
cfc965f0fb99b56cbd983c39e949ba086bded388
d5dfc2c566ae7b4c975979dbf97d9d5ae7cfd9ec8736fbf1eac1ee584a54aabb
GET /wp-content/uploads/2021/02/favicon.png HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/png
Content-Length: 31273
Last-Modified: Sun, 21 Feb 2021 17:09:16 GMT
Connection: keep-alive
ETag: "603293bc-7a29"
Pragma: public
Cache-Control: max-age=31536000, public
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash e5f5bf796d91f271e383cf1ff3ee5af4
70ead02da19095ca752d55e89a48fcdf59d44d33
247f023e282f1556e668df0033858196d682f31f659d1b53ea6dcaeff56c401a
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: NZeUKPS0R4Yndo9iW1+lnbJlq1HxXTbEUty+lrOepAD/kTf4cujLIb1Iuqplg/N9CQ7mo19eItnRcVpBAa96qg==
content-length: 27907
x-fb-trip-id: 1904183273
date: Mon, 20 Mar 2023 23:03:47 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js
216.58.211.3200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (576)
Size 165 kB (164678 bytes)
Hash f22f07ee02fbeed3958345c90b52b818
2aa44ea19d580589c06c2170103b4d0505e18cdb
dc1eadf37f70bef92766d0c316d1da7af283b84e5c309a4732d8ed35d7bbfb84
GET /recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164678
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 11:44:52 GMT
expires: Thu, 14 Mar 2024 11:44:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 13 Mar 2023 02:02:14 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 472735
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 13:55:04 GMT
expires: Tue, 19 Mar 2024 13:55:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 32923
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 4599403a49a361c750d6c7d8a410c743
a9bbdec66280f7ee5c4766ccc45fddbad16af2c3
80a17a133e51c6dadd6dc8f6b72dc3d6088110cd12de5fdf1a8286be09207e22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4628
Cache-Control: max-age=140195
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Etag: "641854e2-1d7"
Expires: Wed, 22 Mar 2023 14:00:22 GMT
Last-Modified: Mon, 20 Mar 2023 12:43:14 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.35200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 18 Mar 2023 10:20:33 GMT
expires: Sun, 17 Mar 2024 10:20:33 GMT
cache-control: public, max-age=31536000
age: 218594
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.35200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 14 Mar 2023 09:41:19 GMT
expires: Wed, 13 Mar 2024 09:41:19 GMT
cache-control: public, max-age=31536000
age: 566548
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c26dba42c0d5a8ae943ac677b38929ea
21c68777a8249158f53f6f1bbf33d12769146cec
a890859401ea2f9079622841f24a700215fcab7fe291d0b1f581e675ae130342
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 23:03:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/check-duotone.svg
5.134.122.104200 OK 365 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/check-duotone.svg
IP 5.134.122.104:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (607), with no line terminators
Hash 2169e330214ed614451545b4442e1ab9
2412329d64c57fbb1ab65061f3b6b6fde113eaf4
188da4770cd9d99e14ca5d92aedc7fb90df2737a4eade41e7a076b27510768e0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/myagileprivacy/frontend/svg/check-duotone.svg HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/svg+xml
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-25f"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/times-duotone.svg
5.134.122.104200 OK 368 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/times-duotone.svg
IP 5.134.122.104:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (717), with no line terminators
Hash 1319ebd9e97a2b512841f85c90f9d281
60bcd798d44311a9527e02fdc506631bde1c7e54
e4ecb906df55a1b22137465f615d6eed3c4c251afca90cf79522ca9ba11c00ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/myagileprivacy/frontend/svg/times-duotone.svg HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/svg+xml
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-2cd"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip
www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/indent-duotone.svg
5.134.122.104200 OK 445 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/svg/indent-duotone.svg
IP 5.134.122.104:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (946), with no line terminators
Hash 5fb1988398c1f3ce3b5e89fe723ca1d6
d28b90793cb817e7483bd9cfbef1c6c1cc145cf0
194a33f3723adf8e283aed8e9206c3f6e22fa007b9d084fa87d95c2aff0d7d2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/myagileprivacy/frontend/svg/indent-duotone.svg HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/plugins/myagileprivacy/frontend/css/my-agile-privacy-frontend.css?ver=2.0.4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: image/svg+xml
Last-Modified: Sat, 11 Feb 2023 02:01:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63e6f6ff-3b2"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: gzip
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 20 Mar 2023 22:12:29 GMT
expires: Tue, 21 Mar 2023 00:12:29 GMT
cache-control: public, max-age=7200
age: 3078
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=509015460479387&ev=PageView&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&rl=&if=false&ts=1679353429391&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679353429390.1017248312&it=1679353429037&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=509015460479387&ev=PageView&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&rl=&if=false&ts=1679353429391&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679353429390.1017248312&it=1679353429037&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=509015460479387&ev=PageView&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&rl=&if=false&ts=1679353429391&sw=1280&sh=1024&v=2.9.99&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1679353429390.1017248312&it=1679353429037&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 20 Mar 2023 23:03:47 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 21:48:03 GMT
expires: Fri, 15 Mar 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 350144
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 17:56:42 GMT
expires: Fri, 15 Mar 2024 17:56:42 GMT
cache-control: public, max-age=31536000
age: 364025
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-GV51080Z6W>m=45je33f0&_p=1805292461&gdid=dZTNiMT&cid=304934322.1679353429&ul=en-us&sr=1280x1024&_s=1&sid=1679353429&sct=1&seg=0&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&dt=Pagina%20non%20trovata%20-%20Eco%20Clima&en=page_view&_fv=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-GV51080Z6W>m=45je33f0&_p=1805292461&gdid=dZTNiMT&cid=304934322.1679353429&ul=en-us&sr=1280x1024&_s=1&sid=1679353429&sct=1&seg=0&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&dt=Pagina%20non%20trovata%20-%20Eco%20Clima&en=page_view&_fv=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-GV51080Z6W>m=45je33f0&_p=1805292461&gdid=dZTNiMT&cid=304934322.1679353429&ul=en-us&sr=1280x1024&_s=1&sid=1679353429&sct=1&seg=0&dl=https%3A%2F%2Fwww.ecoclimagasgpl.it%2Fwp-content%2Fthemes%2Fsketch%2Fcont%2FlinkedinVerify%2F248ea732eb22fc8d41109dbe9a370208%2Fsingle.php%3Fcbcxt%3Dmai%26ct%3D1504448382%26id%3D64855%26lc%3D1033%26mkt%3Den-us%26rpsnv%3D13%26rver%3D6.7.6643.0%26uas&dt=Pagina%20non%20trovata%20-%20Eco%20Clima&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.ecoclimagasgpl.it
date: Mon, 20 Mar 2023 23:03:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23
5.134.122.104200 OK 0 B URL HTTP/1.1 www.ecoclimagasgpl.it/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23
IP 5.134.122.104:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.2.23 HTTP/1.1
Host: www.ecoclimagasgpl.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ecoclimagasgpl.it/wp-content/themes/sketch/cont/linkedinVerify/248ea732eb22fc8d41109dbe9a370208/single.php?cbcxt=mai&ct=1504448382&id=64855&lc=1033&mkt=en-us&rpsnv=13&rver=6.7.6643.0&uas
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 20 Mar 2023 23:03:45 GMT
Content-Type: application/javascript
Last-Modified: Sat, 30 Oct 2021 15:51:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"617d69ef-4fd59"
Pragma: public
Cache-Control: max-age=31536000, public
Content-Encoding: br
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ecoclimagasgpl.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 18:52:41 GMT
expires: Tue, 19 Mar 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 15066
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2