| medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe | 85.208.102.91 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/2medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /themes/theme1197/modules/blockcurrencies/translations/files/fig.exe HTTP/1.1
Host: medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
set-cookie: PHPSESSID=7e35ebbba7d4a5ada482dcfdd5214212; path=/; secure
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
x-litespeed-cache: miss
content-length: 0
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/compatibility/page-builder/bb-plugin.min.css?ver=4.6.9 | 85.208.102.91 | 200 OK | 127 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/compatibility/page-builder/bb-plugin.min.css?ver=4.6.9 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (302), with no line terminators Hashf01a3a7f3b568c9785faec524f4cb4ab 09906761f5f87c9c731b17662be083af9eddd689 c21c920a0ef5cff515381a39efc26873405cad25390eac53a78b9603ef1e2e55
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/css/minified/compatibility/page-builder/bb-plugin.min.css?ver=4.6.9 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Thu, 21 Mar 2024 12:01:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 127
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.2.1 | 85.208.102.91 | 200 OK | 823 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.2.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hash20e8490fab0dcf7557a5c8b54494db6f 285db746dfc0d43b9ca42f8d65b69c908ff72ca5 fbe820b6140ad28e86f34ffae507d807cf591a22697a05b71958f2014e96a9e4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.2.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Tue, 26 Mar 2024 18:17:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 823
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/siteorigin-widgets/sow-image-default-8b5b6f678277.css?ver=6.4.3 | 85.208.102.91 | 200 OK | 172 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/siteorigin-widgets/sow-image-default-8b5b6f678277.css?ver=6.4.3 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hash7f4c754c6ac5064ff3f3b2ba15843852 5937ccbb72e940315c6d4f1eef81e62e2ce18322 ef9b38433025bea5f30b9c57bc649f588143fd3f701481950c6522f4aee7fcd4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/siteorigin-widgets/sow-image-default-8b5b6f678277.css?ver=6.4.3 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Wed, 27 Mar 2024 14:58:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 172
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=4.6.9 | 85.208.102.91 | 200 OK | 1.9 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=4.6.9 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (18081), with no line terminators Hash519f0a6036b3ca25fb7ecb721f840dac 0ba5465c951e0a662d5155fe6c9733a434973b37 a95bfe54474650bd0884bb12f3796ff82fc9f54fa7b20835508883cd5e8508a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=4.6.9 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Thu, 21 Mar 2024 12:01:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1929
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/style.min.css?ver=4.6.9 | 85.208.102.91 | 200 OK | 11 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/style.min.css?ver=4.6.9 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (63030), with CRLF line terminators Hash838be3c7eedc48f2ebdf1c1dee538365 522e640099df43ba1b7602c84319aa702aa05543 296b2af8e613c77968fc1b0bc743d4d24ef1ff6c48a686b689f8bfdf9d365e3a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/css/minified/style.min.css?ver=4.6.9 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Thu, 21 Mar 2024 12:01:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11164
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/css/dist/block-library/style.min.css?ver=6.4.3 | 85.208.102.91 | 200 OK | 14 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/css/dist/block-library/style.min.css?ver=6.4.3 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (57196) Hash0234d0a7685aefa6fd06041fbd602928 cbcba60aa82286dd1f877cb8bd5b5cc047f82ce0 0085adfd2d08a45f62a06d8f3f969ddc4a94ebe8d226511db90aa038f11ed180
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.3 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Tue, 30 Jan 2024 23:36:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13600
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.2.1 | 85.208.102.91 | 200 OK | 4.1 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.2.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hash359aca8a88b2331aa34ac505acad9911 800a4f56bb87049e1f0d45cf93c4e8ef79144b45 655ae452d922f501b62c7028fc35e238138de989387381cc1ed9cea9085864db
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.2.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Tue, 26 Mar 2024 18:17:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4116
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=4.6.9 | 85.208.102.91 | 200 OK | 15 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=4.6.9 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (65526), with no line terminators Hash3b48ecc4c6f2736ff1f11c73d12fbd4b b8a32dd772045dd91c619ca8529de46e400ffaa9 d625d3f4d7299de829237cf5c2f3958912e0f229e84d9457aeb45a52705d6fdc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=4.6.9 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Thu, 21 Mar 2024 12:01:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15102
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.8.0.4 | 85.208.102.91 | 200 OK | 12 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.8.0.4 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (59119) Hashecd507b3125edc4d2a03aa6ae5d07da9 a57ee68d11601b0fd8e5037fc241ff65a754473c 99464ceb71bc9bbdcc72275faefe44f98eb5cbb6b5d8ee665b87b35376f1a96e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/css/all.min.css?ver=2.8.0.4 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Sun, 17 Mar 2024 11:37:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12370
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/bb-plugin/cache/863d7e6e662af89250294248d2268100-layout-bundle.css?ver=2.8.0.4-1.4.9.2 | 85.208.102.91 | 200 OK | 7.8 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/bb-plugin/cache/863d7e6e662af89250294248d2268100-layout-bundle.css?ver=2.8.0.4-1.4.9.2 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (59138), with no line terminators Hash863d7e6e662af89250294248d2268100 79b7314441910f8e2194e6d5327b976944e1d635 e0b0ef2e39c1a02c4377be224f6e37c440fd36e3871ad5ed070ae49d16028413
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/bb-plugin/cache/863d7e6e662af89250294248d2268100-layout-bundle.css?ver=2.8.0.4-1.4.9.2 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Sun, 17 Mar 2024 12:14:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7793
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/maxmegamenu/style.css?ver=c08b1f | 85.208.102.91 | 200 OK | 5.0 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/maxmegamenu/style.css?ver=c08b1f IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (990) Hashe25f566c2d22ca814361cf756b384c95 3449f356df8db871318397d669ffc0ba230f3361 9283797191f9e7ea3bf176e1a863a703ab1a286db798c5aaac8f40cc7c757fd3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/maxmegamenu/style.css?ver=c08b1f HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Tue, 23 Jun 2020 11:25:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5014
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/css/dashicons.min.css?ver=6.4.3 | 85.208.102.91 | 200 OK | 35 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/css/dashicons.min.css?ver=6.4.3 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (58981) Hashd68d6bf519169d86e155bad0bed833f8 27ba9c67d0e775fc4e6dd62011daf4c3902698fc c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dashicons.min.css?ver=6.4.3 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 21:14:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35110
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/css/frontend.min.css?ver=2.32.0 | 85.208.102.91 | 200 OK | 0 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/css/frontend.min.css?ver=2.32.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/css/frontend.min.css?ver=2.32.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 10:05:27 GMT
accept-ranges: bytes
content-length: 0
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/css/button-label.min.css?ver=2.32.0 | 85.208.102.91 | 200 OK | 1.1 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/css/button-label.min.css?ver=2.32.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (11704), with no line terminators Hash966abecd10c042d4f7652df608e74d28 96189de451b2404ca94a7f545dc5fa62e3089eb6 f7527759744985d41b6d46670d0a1e65d8c6bf6418171682722ce5776f4aa13b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/css/button-label.min.css?ver=2.32.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 10:05:27 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1117
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/yith-product-shipping-for-woocommerce-premium/assets/css/yith-wcps-style.css?ver=6.4.3 | 85.208.102.91 | 200 OK | 289 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/yith-product-shipping-for-woocommerce-premium/assets/css/yith-wcps-style.css?ver=6.4.3 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hashbf0ab41da469bb92c7751f3c57eac60c e8858e2af260b26a2c9b0749aa2b96ebe5a84139 96687fbc6ce1da6ee117d5b5d51400373dc9d2528f7c1f8062d26cee9ce9ee91
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-product-shipping-for-woocommerce-premium/assets/css/yith-wcps-style.css?ver=6.4.3 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Fri, 16 Feb 2024 20:40:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 289
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/astra-addon/astra-addon-65ca0733d89f00-45070173.css?ver=4.6.4 | 85.208.102.91 | 200 OK | 11 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/astra-addon/astra-addon-65ca0733d89f00-45070173.css?ver=4.6.4 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash62f035c4bcc67342eb1b5eb6fc6a308c 14c90594f277af8ac035d098a71671ea805d8921 2e43b4a738cfafd8ce13b9477677dc01be5fc106c9b0153473b4c2e7b5e85a90
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/astra-addon/astra-addon-65ca0733d89f00-45070173.css?ver=4.6.4 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Mon, 12 Feb 2024 11:55:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11366
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/monarch/css/style.css?ver=1.4.14 | 85.208.102.91 | 200 OK | 12 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/monarch/css/style.css?ver=1.4.14 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (718) Hashda967565cb2fce059a631f0f90adf079 138db4815bcbfab11d16d800ecd5bda5d8666e9b f820d93daf383e178bda2912f5bee00e90e56390597820622643fa8e5e487143
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/monarch/css/style.css?ver=1.4.14 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Sun, 04 Apr 2021 20:44:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11882
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/css/popup-style.css?ver=1.37.0 | 85.208.102.91 | 200 OK | 1.8 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/css/popup-style.css?ver=1.37.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hash904b8922215df450b256b6f568aaaa18 3dab276b405fa3e51ccadfe70e59ec3f970d78bc a0c038278de102e6e3f916bd95e60d7c548610f70bccde72b01abf8b1e5e3ae3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/css/popup-style.css?ver=1.37.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Fri, 16 Feb 2024 20:40:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1833
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/css/animate.min.css?ver=1.37.0 | 85.208.102.91 | 200 OK | 4.0 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/css/animate.min.css?ver=1.37.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (57923), with CRLF line terminators Hash69470ea0e3f4b843864f7f1f63b083b5 550552502154009f1a803581c2522a94f0df6dd8 0883dd596b1ec2b47a6ae7d176e720ea8b4ca8e67bad6b5a35f135b53590e75e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/css/animate.min.css?ver=1.37.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: text/css
last-modified: Fri, 16 Feb 2024 20:40:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4011
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-regular-400.woff2 | 85.208.102.91 | 200 OK | 13 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-regular-400.woff2 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13224, version 331.-31196 Hashb91d376b8d7646d671cd820950d5f7f1 13517529affa39e2585c591acae6dc336b6aa917 e42a88444448ac3d60549cc7c1ff2c8a9cac721034c073d80a14a44e79730cca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31557600
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: font/woff2
last-modified: Sun, 17 Mar 2024 11:37:53 GMT
accept-ranges: bytes
content-length: 13224
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 85.208.102.91 | 200 OK | 30 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Thu, 11 Jan 2024 01:58:05 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29744
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 85.208.102.91 | 200 OK | 4.7 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Thu, 21 Sep 2023 09:18:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4678
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.2.1 | 85.208.102.91 | 200 OK | 7.2 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.2.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hashdffa195b546cf1dfd52f2206955eb892 a3d48e8f126eb96d12191d76ed71ad2bc8651d59 6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.2.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Tue, 26 Mar 2024 18:17:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7223
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.6.1 | 85.208.102.91 | 200 OK | 3.3 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (9242) Hashef56117d1bb5cc41aa6bd127a49c7640 b9c2ed774177fc0fceba5cb58113024b23fe4fb7 d151f8c0b2659cfb63704d68654ad8d9437ae9da4410536f63ddec21689a0620
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3277
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.6.1 | 85.208.102.91 | 200 OK | 989 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3058), with no line terminators Hashe56bc891d47a0687c80dbe086a5b1e90 a9e643e186e62cbb3f0e518f473b8702c2945802 4f0a4e5ff7378b48f06c23a8ff4e52633c828fee56f2495085eeea5c1a7f8aba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 989
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.6.1 | 85.208.102.91 | 200 OK | 893 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1679) Hash53e07784d8fab2f50b99ff9868124992 d8739feb2845a3fa4a8c085aeabc4eb0e6945590 1533d5bc82424a9a3ac37a7fe543925909d25715d16938b9e02c728c86fd86e8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 893
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.6.1 | 85.208.102.91 | 200 OK | 684 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2139), with no line terminators Hash6d3b3d63df025e97f370c5efab2c96da 78c0c8e7504f9314b2e9fd714bbab530af52f2af 8c0b5e384ae00c512f4bb1ba5e2fe622fab4bfc541c99555df38c19c329d3fe6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 684
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/js/button-label-frontend.min.js?ver=2.32.0 | 85.208.102.91 | 200 OK | 137 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/js/button-label-frontend.min.js?ver=2.32.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hashad85c2431d7ca1de416c1a42b7e7b8fe 04863dd9769d30a208f32df0612814255dd0b9c5 41f769d0f852418a27f19b64150b944298440eb0c730ca2881a7b1efc190a5a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-woocommerce-catalog-mode-premium/assets/js/button-label-frontend.min.js?ver=2.32.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Tue, 12 Mar 2024 10:05:28 GMT
accept-ranges: bytes
content-length: 137
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/zxcvbn-async.min.js?ver=1.0 | 85.208.102.91 | 200 OK | 187 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/zxcvbn-async.min.js?ver=1.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (316) Hashc6f045d5e79f0a4f5ce90419ca598162 45d70af2ab1d5d4ff738afc052758a0242f31a00 e93e18f2f34a865e27d2d839eaccca6bec750d357f1c937980026d6d25507c2c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/zxcvbn-async.min.js?ver=1.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 21:14:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 187
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 | 85.208.102.91 | 200 OK | 2.3 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (8171), with no line terminators Hashdda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Sun, 14 May 2023 23:08:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2320
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 | 85.208.102.91 | 200 OK | 2.4 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashfd7ef2e4737acd74fd0dcdc3b515e304 0d792b33f12a48ee8aaaf2560a63a5682470645b 1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Thu, 11 Jan 2024 01:58:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2402
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 85.208.102.91 | 200 OK | 35 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators Hash9a98016751e498c06d434cc022ca1a44 6aa9af5fe436eab9c313de9f0bea072c04637624 da9ed5720b674f0d297fe621ac2d8d518c4e622bef1e9b0d4ae489dee9aa43f8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Thu, 11 Jan 2024 01:58:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34605
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 | 85.208.102.91 | 200 OK | 1.5 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (4592) Hash7bd48eb3bd568033e96caf0fb62e6690 b38066999294b99d92d95db5f38bc15707eb1f22 7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Thu, 21 Sep 2023 09:18:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1486
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef | 85.208.102.91 | 200 OK | 3.6 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Hashc2c4e2a562e06e1cb22293a5b920aca6 a7b5a369ac4883f1ee7fa701b238d20238b675ca 698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Thu, 21 Sep 2023 09:18:07 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3568
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-admin/js/password-strength-meter.min.js?ver=6.4.3 | 85.208.102.91 | 200 OK | 558 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-admin/js/password-strength-meter.min.js?ver=6.4.3 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (1088) Hashb2e45ac2d733c572ee0b3b5dd53c7cc0 f0d35678945439784d91ded2f48936c0396095dc fcbe9e9ff2d1c20cab10bf43dc49914e188b44ae21f34257b4a0ef5cae90f7ac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-admin/js/password-strength-meter.min.js?ver=6.4.3 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Mon, 03 May 2021 10:47:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 558
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=8.6.1 | 85.208.102.91 | 200 OK | 702 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2030), with no line terminators Hash1bdca34c6f84842342302db4cc57ad2f 0dd7a4df92ee184351dc6fa1054eb3bfcbc12c0d 6fda6c841fc495a3908216cab9d2d142126be52f24a24b9bf8a35f575b22fb3f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/password-strength-meter.min.js?ver=8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 702
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/monarch/core/admin/fonts/modules.ttf | 85.208.102.91 | 200 OK | 37 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/monarch/core/admin/fonts/modules.ttf IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules Hashde27b3e66b2f8017e000aa9d8d24d60e e6d716de8f35ba6daf55d57e7fe0ed8d8e50f1f7 d201a2c3118a00c82cc48e89815f5139f23956bbe248107dcf522acc77b97c09
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/monarch/core/admin/fonts/modules.ttf HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31557600
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: font/ttf
last-modified: Sun, 04 Apr 2021 20:44:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36647
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/themes/astra/assets/js/minified/style.min.js?ver=4.6.9 | 85.208.102.91 | 200 OK | 3.2 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/themes/astra/assets/js/minified/style.min.js?ver=4.6.9 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (12346), with no line terminators Hash09656d4e3ea9059c1ae87d5ef9834d75 5ab46416e196b300650fc5792b84ffd228f5e020 ef47d91110dbaf4637b7344abfc4d2cf01fd9c5be5d8479077a52fc13caf256a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/js/minified/style.min.js?ver=4.6.9 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Thu, 21 Mar 2024 12:01:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3164
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.6.1 | 85.208.102.91 | 200 OK | 4.3 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (14500), with no line terminators Hashaf44f82a13e50f4ab09a194247ac71bc e1c921fa718e918e70a25cd278a9ff5b8be9c2bf 881f4e9fde0d4d4bdcf1eae9fd2d68378c5203969e6ceedf59b4e29567f238a9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/sourcebuster/sourcebuster.min.js?ver=8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4348
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.6.1 | 85.208.102.91 | 200 OK | 683 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1509), with no line terminators Hashd135f91be7d973a9f688aae99ae5b86e 59c1a7ece70b5f3ded1cde917ac7991723964402 9d8a587ab4a60001f720cb0833192cccd56e583a8df7774c292acb907d6078fb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/order-attribution.min.js?ver=8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 683
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/bb-plugin/cache/b07c38231e0843958ae0bde67efbc9f5-layout-bundle.js?ver=2.8.0.4-1.4.9.2 | 85.208.102.91 | 200 OK | 9.5 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/bb-plugin/cache/b07c38231e0843958ae0bde67efbc9f5-layout-bundle.js?ver=2.8.0.4-1.4.9.2 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2779), with CRLF, LF line terminators Hashb07c38231e0843958ae0bde67efbc9f5 81039d13bda66b80f0a027b6a9b391f5607281ec dc8995a787dae8bf4e1a619668911751f2b7a13aa951145f7c624750aca61e1b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/bb-plugin/cache/b07c38231e0843958ae0bde67efbc9f5-layout-bundle.js?ver=2.8.0.4-1.4.9.2 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Sun, 17 Mar 2024 12:00:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9452
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14 | 85.208.102.91 | 200 OK | 999 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2516) Hash4a92000ffde74f28c7a5f7c7a6d139a6 0841cdbc84da7396bb1c817a697dd524bfb32a19 80fa756dda143f69fb3ce750e905cc8188150dc4c6b7539bf3627fe26530b405
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/monarch/js/idle-timer.min.js?ver=1.4.14 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Sun, 04 Apr 2021 20:44:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 999
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/monarch/js/custom.js?ver=1.4.14 | 85.208.102.91 | 200 OK | 5.2 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/monarch/js/custom.js?ver=1.4.14 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (351) Hashe707ec1abd4ca9c8fd45bd6fdd4b4224 086db688c9c66f930e166e59c4d6ec3eee90449f 43b5c9ad80f0a5d1c63568583e9cf6cd5ca8454a680f4ee80d5d63d00b15a360
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/monarch/js/custom.js?ver=1.4.14 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Sun, 04 Apr 2021 20:44:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5249
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/yith-product-shipping-for-woocommerce-premium/assets/js/yith-wcps-scripts.js?ver=1.31.0 | 85.208.102.91 | 200 OK | 185 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/yith-product-shipping-for-woocommerce-premium/assets/js/yith-wcps-scripts.js?ver=1.31.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hashf9cfa30c6df83973cc40e7f0c65f7db4 491d0b55798b4feadec9f3e2480e71e577191bf5 2b47c1bc7d1e65bbbd14f49d01926c7e780bcfecebd068851673680c76e0ae2b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-product-shipping-for-woocommerce-premium/assets/js/yith-wcps-scripts.js?ver=1.31.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 20:40:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 185
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/bb-plugin/js/jquery.imagesloaded.min.js?ver=2.8.0.4 | 85.208.102.91 | 200 OK | 1.7 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/bb-plugin/js/jquery.imagesloaded.min.js?ver=2.8.0.4 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (5477) Hashdeaa4a99a2a6422b494135b29da00411 e0ae4cd91481ce0a23238fe534ad1eb5d9a8d5cd bc6141baf0bde0e41c12e9311f5a97c158a7cb99f923afeb67d13abeaacb652b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bb-plugin/js/jquery.imagesloaded.min.js?ver=2.8.0.4 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Sun, 17 Mar 2024 11:37:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1714
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/astra-addon/astra-addon-65ca0733dacbb5-43993256.js?ver=4.6.4 | 85.208.102.91 | 200 OK | 10 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/astra-addon/astra-addon-65ca0733dacbb5-43993256.js?ver=4.6.4 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (55133), with no line terminators Hash7c35a74eaa47af3b37397802b5df5c05 172afaad26e7ac8bdd3085f7b0b603afadd4c30b 29ad6e6df0c9da8673fa556f64ab5894b35edd9065103dcd27010b4045b7a028
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/astra-addon/astra-addon-65ca0733dacbb5-43993256.js?ver=4.6.4 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Mon, 12 Feb 2024 11:55:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10065
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/astra-addon/addons/woocommerce/assets/js/minified/single-product-ajax-cart.min.js?ver=4.6.4 | 85.208.102.91 | 200 OK | 1.1 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/astra-addon/addons/woocommerce/assets/js/minified/single-product-ajax-cart.min.js?ver=4.6.4 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3013), with no line terminators Hash7ba02d299264878c7d75ca17729e38c6 505f0370963e732285776566283ede883d88b325 8b7de1c2bb2e8f5754b2ab46d1a86184c2867e2d30ec0ebf907e8767b7833597
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/astra-addon/addons/woocommerce/assets/js/minified/single-product-ajax-cart.min.js?ver=4.6.4 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Mon, 12 Feb 2024 11:48:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1050
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/monarch/core/admin/js/common.js?ver=4.9.3 | 85.208.102.91 | 200 OK | 490 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/monarch/core/admin/js/common.js?ver=4.9.3 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hashd71b75b2327258b1d01d50590c1f67ca b7820e4ffb6becc133c48f66d9f683545530b959 1ca76922f55b389b8f590ae7e3bcc3a2dccdce3aff1e5a4335af081b76a414ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/monarch/core/admin/js/common.js?ver=4.9.3 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Sun, 04 Apr 2021 20:44:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 490
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/underscore.min.js?ver=1.13.4 | 85.208.102.91 | 200 OK | 7.2 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/underscore.min.js?ver=1.13.4 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (18798) Hashf88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Sun, 14 May 2023 23:08:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7179
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/wp-util.min.js?ver=6.4.3 | 85.208.102.91 | 200 OK | 690 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/wp-util.min.js?ver=6.4.3 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1391) Hash19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-util.min.js?ver=6.4.3 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Sun, 14 May 2023 23:08:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 690
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/js/popup-handler.min.js?ver=1.37.0 | 85.208.102.91 | 200 OK | 3.0 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/js/popup-handler.min.js?ver=1.37.0 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (10446), with no line terminators Hashf89bc54468310b4374a8c036e245c331 b9dd3b5565238069b122cad7b53339f6433da40b e2b9e56ea0a7001d9827a8260bc2ac29b97d859a110ca5333942b863d1ff780a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/yith-easy-login-register-popup-for-woocommerce/assets/js/popup-handler.min.js?ver=1.37.0 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 20:40:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2994
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-includes/js/hoverIntent.min.js?ver=1.10.2 | 85.208.102.91 | 200 OK | 668 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/hoverIntent.min.js?ver=1.10.2 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1464) Hash8c0498e2f1f7a684a8d2a3feb934b64b 76099689ccaee466d4608da621c403b368dcae03 ed5b5df9ceacfe76857ac51964972b0b417a215b2f50e837fd6b64bad7339c40
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Tue, 02 Aug 2022 10:36:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 668
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.3.1 | 85.208.102.91 | 200 OK | 4.9 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.3.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (315) Hash5480f11a9755afeba769fb68b05f0673 80f114abe8c8e140f25a747a97945584f7238a71 a875e1d5f8cfe252cc8f5e04d750dd8c771fb8aceabd435d548425a445ab61d3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/megamenu/js/maxmegamenu.js?ver=3.3.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 16 Feb 2024 20:39:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4943
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.6.1 | 85.208.102.91 | 200 OK | 3.5 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (13786), with no line terminators Hashc3825b9d2bb7e067a90db543db343f68 7ef77fddc64dd62688f242c7ae9ce4e9516b1eaa 70bb06a0005a4c1776d94eb9216dfb3841a5722ae2ed0c930664378b7d5c9504
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart-variation.min.js?ver=8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3472
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.8.6.1 | 85.208.102.91 | 200 OK | 6.1 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.8.6.1 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (21528), with no line terminators Hashc86be8ae8c832ede5942b756002d5087 8f5a56906a682f18e9ed67eb0ecbc374295853d7 066596962b048eb4c27276ca15e157d35d26a391dfb0a6f3fb8df42e4a542296
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/woocommerce/assets/js/flexslider/jquery.flexslider.min.js?ver=2.7.2-wc.8.6.1 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: application/javascript
last-modified: Fri, 23 Feb 2024 14:55:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6051
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-solid-900.woff2 | 85.208.102.91 | 200 OK | 78 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-solid-900.woff2 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 78268, version 331.-31196 Hashd824df7eb2e268626a2dd9a6a741ac4e 0ccb2c814a7e4ca12c4778821633809cb0361eaa 9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/bb-plugin/fonts/fontawesome/5.15.4/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31557600
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: font/woff2
last-modified: Sun, 17 Mar 2024 11:37:53 GMT
accept-ranges: bytes
content-length: 78268
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/2020/05/cropped-LOGO-MFI-2.png | 85.208.102.91 | 200 OK | 27 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/2020/05/cropped-LOGO-MFI-2.png IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typePNG image data, 529 x 150, 8-bit/color RGBA, non-interlaced Hash54adb253ea026f2db1cd638f7e9e1afe 43bc55ca7e3d9e026d8fb5a87e4217b24363bbde d93ef3fdda34ccbb54069703114697869baaea2a860aeb819970af360cccd34a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/05/cropped-LOGO-MFI-2.png HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:44 GMT
content-type: image/png
last-modified: Thu, 21 May 2020 07:09:53 GMT
accept-ranges: bytes
content-length: 27211
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=4.6.9 | 85.208.102.91 | 200 OK | 849 B |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=4.6.9 IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (6262), with no line terminators Hash46171f870d2f86c8dc890f720051d725 69517521dbd165b65076918a6189b227ca3d0547 e85eb7545abc714702c2915f279387996712e167faf245de971465405a4bdaa9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=4.6.9 HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:45 GMT
content-type: text/css
last-modified: Thu, 21 Mar 2024 12:01:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 849
date: Thu, 28 Mar 2024 09:18:45 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/themes/astra/assets/fonts/astra.woff | 85.208.102.91 | 200 OK | 3.3 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/themes/astra/assets/fonts/astra.woff IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeWeb Open Font Format, TrueType, length 3304, version 1.0 Hashbfe0ed8503c926d68f58ed0408dfe0d0 0346d02d96ff7d2a0278bc10f4dfdf365c80eac3 ec7ef7aa5fd1e019f1c26193e95e46d481d4983673936a9dda086705ada6e3d5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/astra/assets/fonts/astra.woff HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=31557600
expires: Fri, 28 Mar 2025 15:18:45 GMT
content-type: font/woff
last-modified: Thu, 21 Mar 2024 12:01:49 GMT
accept-ranges: bytes
content-length: 3304
date: Thu, 28 Mar 2024 09:18:45 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 IP216.58.207.227:443
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48208, version 1.0 Hashc49b7c3643f781d71645c5a40a78b5bf e71138026b38afc443fb60da5ffc2244c4f5eb11 8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.medicalfarmitalia.it
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:47:16 GMT
expires: Fri, 28 Mar 2025 02:47:16 GMT
cache-control: public, max-age=31536000
age: 23489
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 IP216.58.207.227:443
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48208, version 1.0 Hashc49b7c3643f781d71645c5a40a78b5bf e71138026b38afc443fb60da5ffc2244c4f5eb11 8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.medicalfarmitalia.it
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:47:16 GMT
expires: Fri, 28 Mar 2025 02:47:16 GMT
cache-control: public, max-age=31536000
age: 23489
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.7 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7748, version 1.0 Hasha09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.medicalfarmitalia.it
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Mar 2024 03:11:04 GMT
expires: Sat, 22 Mar 2025 03:11:04 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
age: 540461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkq0.woff2 | 216.58.207.227 | 200 OK | 21 kB |
URL GET HTTP/2fonts.gstatic.com/s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkq0.woff2 IP216.58.207.227:443
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21108, version 1.0 Hash6a24bfe835a2b2e2d8b239f49f06d2f2 25f3bc091405c886ba3386f8d1ed899444734154 5aaa941328e6c9b4c140a8dfb8ab73187627cbf522c4b3309c71ec68be0b6325
GET /s/lora/v35/0QI6MX1D_JOuGQbT0gvTJPa787weuxJBkq0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.medicalfarmitalia.it
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21108
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Mar 2024 22:06:22 GMT
expires: Sat, 22 Mar 2025 22:06:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 31 Jan 2024 23:12:26 GMT
content-type: font/woff2
age: 472343
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 IP216.58.207.227:443
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48208, version 1.0 Hashc49b7c3643f781d71645c5a40a78b5bf e71138026b38afc443fb60da5ffc2244c4f5eb11 8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.medicalfarmitalia.it
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:47:16 GMT
expires: Fri, 28 Mar 2025 02:47:16 GMT
cache-control: public, max-age=31536000
age: 23489
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.medicalfarmitalia.it/wp-includes/js/zxcvbn.min.js | 85.208.102.91 | 200 OK | 390 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-includes/js/zxcvbn.min.js IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (53869) Size390 kB (389493 bytes) Hash027c098ebca6235056092f7b954dfc5f 1ea18e5e6ece74f6f3a7c1a57d2ac2462c9c666b daa6634ed8d6376bfd22d8f68942d00e1b56db0fa8c9f90ba2af52734dd5593b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/zxcvbn.min.js HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-03-28%2009%3A18%3A45%7C%7C%7Cep%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-03-28%2009%3A18%3A45%7C%7C%7Cep%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:45 GMT
content-type: application/javascript
last-modified: Sat, 26 Oct 2019 03:47:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 389493
date: Thu, 28 Mar 2024 09:18:45 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/2020/05/cropped-FAVICON-192x192.jpg | 85.208.102.91 | 200 OK | 6.4 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/2020/05/cropped-FAVICON-192x192.jpg IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3 Hash5e8cb5b2940f7e90b4c14a1158648727 f6a810e74d0b08beb6586ca695c035d157b75925 b5d6e4dca671420e98299cbd773446e1d8051ba57e53b332888354f3a90d739e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/05/cropped-FAVICON-192x192.jpg HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-03-28%2009%3A18%3A45%7C%7C%7Cep%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-03-28%2009%3A18%3A45%7C%7C%7Cep%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:46 GMT
content-type: image/jpeg
last-modified: Thu, 14 May 2020 09:39:13 GMT
accept-ranges: bytes
content-length: 6443
date: Thu, 28 Mar 2024 09:18:46 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/wp-content/uploads/2020/05/cropped-FAVICON-32x32.jpg | 85.208.102.91 | 200 OK | 1.1 kB |
URL GET HTTP/3www.medicalfarmitalia.it/wp-content/uploads/2020/05/cropped-FAVICON-32x32.jpg IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3 Hash0d927d3c9ccdd5d6883723d7e0df0d93 c43b6f3234294b072d86a217fecb7afbcd310584 71984eb80858f35f7d56b13189cc6778545b0bcc0fb65f49a722975b79a3e016
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/05/cropped-FAVICON-32x32.jpg HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe
Cookie: sbjs_migrations=1418474375998%3D1; sbjs_current_add=fd%3D2024-03-28%2009%3A18%3A45%7C%7C%7Cep%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe%7C%7C%7Crf%3D%28none%29; sbjs_first_add=fd%3D2024-03-28%2009%3A18%3A45%7C%7C%7Cep%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe%7C%7C%7Crf%3D%28none%29; sbjs_current=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_first=typ%3Dtypein%7C%7C%7Csrc%3D%28direct%29%7C%7C%7Cmdm%3D%28none%29%7C%7C%7Ccmp%3D%28none%29%7C%7C%7Ccnt%3D%28none%29%7C%7C%7Ctrm%3D%28none%29%7C%7C%7Cid%3D%28none%29; sbjs_udata=vst%3D1%7C%7C%7Cuip%3D%28none%29%7C%7C%7Cuag%3DMozilla%2F5.0%20%28X11%3B%20Linux%20x86_64%3B%20rv%3A96.0%29%20Gecko%2F20100101%20Firefox%2F96.0; sbjs_session=pgs%3D1%7C%7C%7Ccpg%3Dhttps%3A%2F%2Fwww.medicalfarmitalia.it%2Fthemes%2Ftheme1197%2Fmodules%2Fblockcurrencies%2Ftranslations%2Ffiles%2Ffig.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: max-age=31536000, public
expires: Fri, 28 Mar 2025 15:18:46 GMT
content-type: image/jpeg
last-modified: Thu, 14 May 2020 09:39:13 GMT
accept-ranges: bytes
content-length: 1074
date: Thu, 28 Mar 2024 09:18:46 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
|
|
| www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe | 85.208.102.91 | 404 Not Found | 250 kB |
URL User Request GET HTTP/2www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Size250 kB (249898 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /themes/theme1197/modules/blockcurrencies/translations/files/fig.exe HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-powered-by: PHP/7.4.33
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://www.medicalfarmitalia.it/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
|
|
| project34.jaumegarcia.com/wp-content/uploads/2020/03/icasi-bianco.png | 85.208.102.91 | 404 Not Found | 0 B |
URL GET HTTP/2project34.jaumegarcia.com/wp-content/uploads/2020/03/icasi-bianco.png IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuercPanel, Inc. Subjectproject34.jaumegarcia.com Fingerprint2C:C0:4A:80:33:4C:DE:DE:7A:7D:21:96:27:FE:1C:01:7E:2A:FF:13 ValidityTue, 16 Jan 2024 00:00:00 GMT - Mon, 15 Apr 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2020/03/icasi-bianco.png HTTP/1.1
Host: project34.jaumegarcia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-powered-by: PHP/8.0.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://project34.jaumegarcia.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Thu, 28 Mar 2024 09:18:47 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Raleway%3A500%2C%2C400%2C600%7CLora%3A400%7CPoppins%3A500%2C400%2C300&display=fallback&ver=4.6.9 | 142.250.74.106 | 200 OK | 12 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Raleway%3A500%2C%2C400%2C600%7CLora%3A400%7CPoppins%3A500%2C400%2C300&display=fallback&ver=4.6.9 IP142.250.74.106:443
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File typeASCII text, with very long lines (1572) Hash3cd1e828124743f7e2dc330cb7740f23 23b7ea0ed23c250d4ca3f20055d23f72c49b4070 c14588ebb48196811b8645f91b6c782f593bf8cf28c60cfdaf19649a0a8cc337
GET /css?family=Raleway%3A500%2C%2C400%2C600%7CLora%3A400%7CPoppins%3A500%2C400%2C300&display=fallback&ver=4.6.9 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 28 Mar 2024 09:18:45 GMT
date: Thu, 28 Mar 2024 09:18:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe | 85.208.102.91 | 404 Not Found | 250 kB |
URL User Request GET HTTP/3www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe IP85.208.102.91:443 ASN#208769 Nicalia Internet, S.L.U
CertificateIssuercPanel, Inc. Subjectmedicalfarmitalia.it Fingerprint56:0D:FE:DE:21:7D:87:6D:F7:1F:D4:D0:90:5F:85:0C:22:AB:16:AC ValidityMon, 25 Mar 2024 00:00:00 GMT - Sun, 23 Jun 2024 23:59:59 GMT
Size250 kB (249898 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /themes/theme1197/modules/blockcurrencies/translations/files/fig.exe HTTP/1.1
Host: www.medicalfarmitalia.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
x-powered-by: PHP/7.4.33
pragma: no-cache
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://www.medicalfarmitalia.it/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
date: Thu, 28 Mar 2024 09:18:44 GMT
server: LiteSpeed
strict-transport-security: max-age=15768000
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,700 | 142.250.74.106 | 200 OK | 11 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,700 IP142.250.74.106:443
Requested byhttps://www.medicalfarmitalia.it/themes/theme1197/modules/blockcurrencies/translations/files/fig.exe CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File typeASCII text, with very long lines (1572) Hashb69c29c8c917c014d6f4b79752d8ce0b 71a580b2e8792ba930815bcca3bda73e7715ca3f 5cccc465f4c8cdcec789a0b28846823f18646206351bc9ff794f1aec7f58f5b0
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.medicalfarmitalia.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 28 Mar 2024 09:18:45 GMT
date: Thu, 28 Mar 2024 09:18:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|