Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
0s -
max time network
125s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system -
submitted
26/12/2023, 09:26 UTC
Static task
static1
Behavioral task
behavioral1
Sample
63b04d2f29ec38a7c015be468b38a835.html
Resource
win7-20231129-en
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
63b04d2f29ec38a7c015be468b38a835.html
Resource
win10v2004-20231215-en
3 signatures
150 seconds
General
-
Target
63b04d2f29ec38a7c015be468b38a835.html
-
Size
62KB
-
MD5
63b04d2f29ec38a7c015be468b38a835
-
SHA1
4cf82c8bd7d23f9d23832ce6e34a2c48cde86379
-
SHA256
972e0cde5c39e97564809395b224ccd95c2f826f3da8ab07d73c9a2ce033a35f
-
SHA512
b27b5a5f01395fb5fc87efba085faf6e65821e4d37d3376cbbac77d4bc8b206f18f532a1444b44ff189ec2d0d3f4fb610e44c41437aaddd48047d1103f17f912
-
SSDEEP
768:/USDdjPx5oUJiP/X51gQZPMpbvj23awB9bRAYlQnuSfQAAwn2ejd1d2Sg6K8Ouf9:/hJoUcDHZEpbUv9bRAYlkFjd1AB8Okv1
Score
1/10
Malware Config
Signatures
-
description ioc Process Key created \REGISTRY\USER\S-1-5-21-1497073144-2389943819-3385106915-1000\Software\Microsoft\Internet Explorer\Main iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-1497073144-2389943819-3385106915-1000\SOFTWARE\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-1497073144-2389943819-3385106915-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive iexplore.exe Set value (int) \REGISTRY\USER\S-1-5-21-1497073144-2389943819-3385106915-1000\SOFTWARE\Microsoft\Internet Explorer\Recovery\AdminActive\{33A3F897-AC6B-11EE-BD28-7AA08ABF42A0} = "0" iexplore.exe Key created \REGISTRY\USER\S-1-5-21-1497073144-2389943819-3385106915-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch iexplore.exe Set value (str) \REGISTRY\USER\S-1-5-21-1497073144-2389943819-3385106915-1000\SOFTWARE\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" iexplore.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 868 iexplore.exe 868 iexplore.exe -
Suspicious use of WriteProcessMemory 3 IoCs
description pid Process procid_target PID 868 wrote to memory of 2648 868 iexplore.exe 18 PID 868 wrote to memory of 2648 868 iexplore.exe 18 PID 868 wrote to memory of 2648 868 iexplore.exe 18
Processes
-
C:\Program Files\Internet Explorer\iexplore.exe"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\63b04d2f29ec38a7c015be468b38a835.html1⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:868 -
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:868 CREDAT:17410 /prefetch:22⤵PID:2648
-
Network
-
Remote address:8.8.8.8:53Request2.136.104.51.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request2.181.190.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request2.181.190.20.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Requestwww.blogger.comIN AResponsewww.blogger.comIN CNAMEblogger.l.google.comblogger.l.google.comIN A216.58.212.201
-
Remote address:8.8.8.8:53Request1.bp.blogspot.comIN AResponse1.bp.blogspot.comIN CNAMEphotos-ugc.l.googleusercontent.comphotos-ugc.l.googleusercontent.comIN A142.250.200.33
-
Remote address:8.8.8.8:53Requestresources.blogblog.comIN AResponseresources.blogblog.comIN CNAMEblogger.l.google.comblogger.l.google.comIN A216.58.212.201
-
GEThttp://1.bp.blogspot.com/-QOY6UqBdfQw/UIB4dC3x_PI/AAAAAAAACaE/qvmRJlOrvl4/w72-h72-p-k-no-nu/fettuccine-al-salmone.jpgRemote address:142.250.200.33:80RequestGET /-QOY6UqBdfQw/UIB4dC3x_PI/AAAAAAAACaE/qvmRJlOrvl4/w72-h72-p-k-no-nu/fettuccine-al-salmone.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v9a1"
Expires: Sun, 07 Jan 2024 08:11:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="fettuccine-al-salmone.jpg"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:35 GMT
Server: fife
Content-Length: 3478
X-XSS-Protection: 0
-
Remote address:142.250.200.33:80RequestGET /-HM0WJBWLd14/TVhGwIJmLKI/AAAAAAAAAGI/xRfpzO9eoKE/s320/Lady+Chef.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v62"
Expires: Sun, 07 Jan 2024 08:11:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Lady Chef.jpg"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:35 GMT
Server: fife
Content-Length: 30169
X-XSS-Protection: 0
-
Remote address:8.8.8.8:53Request3.bp.blogspot.comIN AResponse3.bp.blogspot.comIN CNAMEphotos-ugc.l.googleusercontent.comphotos-ugc.l.googleusercontent.comIN A142.250.200.33
-
Remote address:8.8.8.8:53Requestlh5.googleusercontent.comIN AResponselh5.googleusercontent.comIN CNAMEgooglehosted.l.googleusercontent.comgooglehosted.l.googleusercontent.comIN A216.58.212.193
-
Remote address:8.8.8.8:53Requestlh5.googleusercontent.comIN A
-
Remote address:8.8.8.8:53Request4.bp.blogspot.comIN AResponse4.bp.blogspot.comIN CNAMEphotos-ugc.l.googleusercontent.comphotos-ugc.l.googleusercontent.comIN A142.250.200.33
-
Remote address:8.8.8.8:53Request4.bp.blogspot.comIN A
-
Remote address:8.8.8.8:53Requestlh4.googleusercontent.comIN AResponselh4.googleusercontent.comIN CNAMEgooglehosted.l.googleusercontent.comgooglehosted.l.googleusercontent.comIN A216.58.212.193
-
Remote address:8.8.8.8:53Request2.bp.blogspot.comIN AResponse2.bp.blogspot.comIN CNAMEphotos-ugc.l.googleusercontent.comphotos-ugc.l.googleusercontent.comIN A142.250.200.33
-
GEThttp://1.bp.blogspot.com/-rrN-020cfbQ/UIBnTvZaSQI/AAAAAAAACXE/TlZXYAivjZ4/w72-h72-p-k-no-nu/tortasoffice_yogurt.jpgRemote address:142.250.200.33:80RequestGET /-rrN-020cfbQ/UIBnTvZaSQI/AAAAAAAACXE/TlZXYAivjZ4/w72-h72-p-k-no-nu/tortasoffice_yogurt.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v971"
Expires: Sun, 07 Jan 2024 08:11:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="tortasoffice_yogurt.jpg"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:35 GMT
Server: fife
Content-Length: 4329
X-XSS-Protection: 0
-
Remote address:8.8.8.8:53Requestcresycaradonna.files.wordpress.comIN AResponsecresycaradonna.files.wordpress.comIN CNAMEs8.files.wordpress.coms8.files.wordpress.comIN A192.0.72.30s8.files.wordpress.comIN A192.0.72.31
-
Remote address:8.8.8.8:53Requestcresycaradonna.files.wordpress.comIN A
-
Remote address:8.8.8.8:53Requesttools.net-parade.itIN AResponsetools.net-parade.itIN A31.11.34.110
-
Remote address:142.250.180.2:80RequestGET /pagead/show_ads.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: pagead2.googlesyndication.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Sat, 06 Jan 2024 08:11:34 GMT
Expires: Sat, 06 Jan 2024 08:11:34 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 2510346138947886211
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 14066
X-XSS-Protection: 0
-
GEThttp://3.bp.blogspot.com/-hVXr0RFU-Fc/T-BWDuLuOPI/AAAAAAAABzE/fZiZ9FBJHgE/w72-h72-p-k-no-nu/DSC08078.JPGRemote address:142.250.200.33:80RequestGET /-hVXr0RFU-Fc/T-BWDuLuOPI/AAAAAAAABzE/fZiZ9FBJHgE/w72-h72-p-k-no-nu/DSC08078.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v731"
Expires: Sun, 07 Jan 2024 08:11:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="DSC08078.JPG"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:35 GMT
Server: fife
Content-Length: 3186
X-XSS-Protection: 0
-
GEThttp://3.bp.blogspot.com/-eHLjIEwoPmM/UH8z74lgaaI/AAAAAAAACV4/Ud-20FXFwPk/w72-h72-p-k-no-nu/liq.jpgRemote address:142.250.200.33:80RequestGET /-eHLjIEwoPmM/UH8z74lgaaI/AAAAAAAACV4/Ud-20FXFwPk/w72-h72-p-k-no-nu/liq.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v95e"
Expires: Sun, 07 Jan 2024 08:11:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="liq.jpg"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:35 GMT
Server: fife
Content-Length: 3785
X-XSS-Protection: 0
-
GEThttp://2.bp.blogspot.com/-SglWZLO0jdE/UFwBDtuVjeI/AAAAAAAABZA/HWDzK_paALY/w72-h72-p-k-no-nu/tortacappuccino.jpgRemote address:142.250.200.33:80RequestGET /-SglWZLO0jdE/UFwBDtuVjeI/AAAAAAAABZA/HWDzK_paALY/w72-h72-p-k-no-nu/tortacappuccino.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v590"
Expires: Sun, 07 Jan 2024 08:11:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="tortacappuccino.jpg"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:35 GMT
Server: fife
Content-Length: 4515
X-XSS-Protection: 0
-
GEThttp://2.bp.blogspot.com/-V1Ec6Q27OJg/UFgQdhMJshI/AAAAAAAABQE/mRYY3qCzsBM/w72-h72-p-k-no-nu/piatto-pronto-tovaglia-giallo-paletta-per-dolci_dettaglio_ricette_slider_grande3.jpgRemote address:142.250.200.33:80RequestGET /-V1Ec6Q27OJg/UFgQdhMJshI/AAAAAAAABQE/mRYY3qCzsBM/w72-h72-p-k-no-nu/piatto-pronto-tovaglia-giallo-paletta-per-dolci_dettaglio_ricette_slider_grande3.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v501"
Expires: Sun, 07 Jan 2024 08:11:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="piatto-pronto-tovaglia-giallo-paletta-per-dolci_dettaglio_ricette_slider_grande3.jpg"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:35 GMT
Server: fife
Content-Length: 4437
X-XSS-Protection: 0
-
GEThttp://2.bp.blogspot.com/-2tEB1tXzD0c/UIRbZXa69qI/AAAAAAAACgQ/zb6dWCYvimY/w72-h72-p-k-no-nu/torta-croccante-al-latte.jpgRemote address:142.250.200.33:80RequestGET /-2tEB1tXzD0c/UIRbZXa69qI/AAAAAAAACgQ/zb6dWCYvimY/w72-h72-p-k-no-nu/torta-croccante-al-latte.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "va04"
Expires: Sun, 07 Jan 2024 08:11:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="torta-croccante-al-latte.jpg"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:35 GMT
Server: fife
Content-Length: 5144
X-XSS-Protection: 0
-
Remote address:31.11.34.110:80RequestGET /images/b180_verde.png HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: tools.net-parade.it
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tools.net-parade.it/images/b180_verde.png
Server: Microsoft-IIS/8.5
Date: Sat, 06 Jan 2024 08:11:35 GMT
Content-Length: 172
-
Remote address:8.8.8.8:53Request95.221.229.192.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request33.200.250.142.in-addr.arpaIN PTRResponse33.200.250.142.in-addr.arpaIN PTRlhr48s30-in-f11e100net
-
Remote address:8.8.8.8:53Request201.212.58.216.in-addr.arpaIN PTRResponse201.212.58.216.in-addr.arpaIN PTRams16s21-in-f91e100net201.212.58.216.in-addr.arpaIN PTRams16s21-in-f201�H201.212.58.216.in-addr.arpaIN PTRlhr25s27-in-f9�H
-
Remote address:8.8.8.8:53Request2.180.250.142.in-addr.arpaIN PTRResponse2.180.250.142.in-addr.arpaIN PTRlhr25s32-in-f21e100net
-
Remote address:8.8.8.8:53Request110.34.11.31.in-addr.arpaIN PTRResponse110.34.11.31.in-addr.arpaIN PTRwebsn3s100arubait
-
Remote address:8.8.8.8:53Request193.212.58.216.in-addr.arpaIN PTRResponse193.212.58.216.in-addr.arpaIN PTRlhr25s27-in-f11e100net193.212.58.216.in-addr.arpaIN PTRams16s21-in-f193�H193.212.58.216.in-addr.arpaIN PTRams16s21-in-f1�H
-
GEThttp://4.bp.blogspot.com/-WB-cCPEmlaA/UL8OwEX808I/AAAAAAAAFTU/lNCTHMt4cU0/w72-h72-p-k-no-nu/tronchetto-di-natale-5.jpgRemote address:142.250.200.33:80RequestGET /-WB-cCPEmlaA/UL8OwEX808I/AAAAAAAAFTU/lNCTHMt4cU0/w72-h72-p-k-no-nu/tronchetto-di-natale-5.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v1535"
Expires: Sun, 07 Jan 2024 08:11:37 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="tronchetto-di-natale-5.jpg"
X-Content-Type-Options: nosniff
Date: Sat, 06 Jan 2024 08:11:37 GMT
Server: fife
Content-Length: 3257
X-XSS-Protection: 0
-
Remote address:192.0.72.30:80RequestGET /2011/09/tiramisu-fragole-ricetta-monoporzione.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/jxr, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: cresycaradonna.files.wordpress.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Date: Sat, 06 Jan 2024 08:11:36 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://cresycaradonna.files.wordpress.com/2011/09/tiramisu-fragole-ricetta-monoporzione.jpg
-
Remote address:8.8.8.8:53Request3.200.250.142.in-addr.arpaIN PTRResponse3.200.250.142.in-addr.arpaIN PTRlhr48s29-in-f31e100net
-
Remote address:8.8.8.8:53Request3.200.250.142.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request241.154.82.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request55.36.223.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request30.72.0.192.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request233.38.18.104.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requests10.histats.comIN AResponses10.histats.comIN CNAMEs10.histats.com.cdn.cloudflare.nets10.histats.com.cdn.cloudflare.netIN A104.20.79.99s10.histats.com.cdn.cloudflare.netIN A104.20.80.99
-
Remote address:8.8.8.8:53Requestocsp05.actalis.itIN AResponseocsp05.actalis.itIN CNAMEocsp.actalis.itocsp.actalis.itIN A109.70.240.130
-
Remote address:104.20.79.99:80RequestGET /js15.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: s10.histats.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 4405
Connection: keep-alive
Content-Encoding: gzip
ETag: "980881274"
Last-Modified: Thu, 16 Apr 2020 10:44:16 GMT
Vary: Accept-Encoding
Cache-Control: max-age=28800
CF-Cache-Status: HIT
Age: 19690
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 84127dd03f6f79b8-LHR
-
Remote address:8.8.8.8:53Requestwww.vedovineri.itIN AResponse
-
Remote address:8.8.8.8:53Requestwww.vedovineri.itIN A
-
GEThttp://ocsp05.actalis.it/VA/AUTH-ROOT/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSw4x5v4bTlizjNRmTdkYSy7q0R9gQUUtiIOsifeGbtifN7OHCUyQICNtACEBJzd5ejFYht%2FrdsfmpaA1Q%3DRemote address:109.70.240.130:80RequestGET /VA/AUTH-ROOT/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSw4x5v4bTlizjNRmTdkYSy7q0R9gQUUtiIOsifeGbtifN7OHCUyQICNtACEBJzd5ejFYht%2FrdsfmpaA1Q%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: ocsp05.actalis.it
ResponseHTTP/1.1 200
Date: Sat, 06 Jan 2024 08:11:38 GMT
Content-Type: application/ocsp-response
Content-Length: 2055
Connection: keep-alive
Last-Modified: Wed, 03 Jan 2024 16:03:17 GMT
Expires: Mon, 18 Mar 2024 15:36:56 GMT
ETag: "989213e38f8eb6f91160d7fa81087b4eb56c11c0"
Cache-Control: max-age=10,public,no-transform,must-revalidate
-
Remote address:8.8.8.8:53Requestfbcdn-sphotos-b-a.akamaihd.netIN AResponsefbcdn-sphotos-b-a.akamaihd.netIN CNAMEfbcdn-sphotos-b-a.akamaihd.net.edgesuite.net
-
Remote address:8.8.8.8:53Requestsphotos-b.ak.fbcdn.netIN AResponse
-
Remote address:8.8.8.8:53Requestocsp06.actalis.itIN AResponseocsp06.actalis.itIN A109.70.240.114
-
GEThttp://ocsp06.actalis.it/VA/AUTHDV-G3/MFEwTzBNMEswSTAJBgUrDgMCGgUABBROJtlvaAzyepGCxfu9qEfsEKGHVgQUQoNtgHwJhGf9gFer8Sb1d8gignECEFmitek5pvL%2BbWFA3KogSzI%3DRemote address:109.70.240.114:80RequestGET /VA/AUTHDV-G3/MFEwTzBNMEswSTAJBgUrDgMCGgUABBROJtlvaAzyepGCxfu9qEfsEKGHVgQUQoNtgHwJhGf9gFer8Sb1d8gignECEFmitek5pvL%2BbWFA3KogSzI%3D HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: ocsp06.actalis.it
ResponseHTTP/1.1 200
Date: Sat, 06 Jan 2024 08:11:39 GMT
Content-Type: application/ocsp-response
Content-Length: 3926
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2024 06:27:21 GMT
Expires: Sun, 07 Jan 2024 06:27:20 GMT
ETag: "77d1a587dc6fa8f64db4931b719c9e348243f7fb"
Cache-Control: max-age=10,public,no-transform,must-revalidate
-
Remote address:8.8.8.8:53Request130.240.70.109.in-addr.arpaIN PTRResponse130.240.70.109.in-addr.arpaIN PTRh31actalisit
-
Remote address:8.8.8.8:53Requests4.histats.comIN AResponses4.histats.comIN A149.56.240.27s4.histats.comIN A149.56.240.131s4.histats.comIN A54.39.128.117s4.histats.comIN A149.56.240.129s4.histats.comIN A54.39.156.32s4.histats.comIN A149.56.240.127s4.histats.comIN A149.56.240.130s4.histats.comIN A54.39.128.162s4.histats.comIN A142.4.219.198s4.histats.comIN A149.56.240.128s4.histats.comIN A149.56.240.31s4.histats.comIN A158.69.254.144s4.histats.comIN A149.56.240.132
-
Remote address:8.8.8.8:53Requestconnect.facebook.netIN AResponseconnect.facebook.netIN CNAMEscontent.xx.fbcdn.netscontent.xx.fbcdn.netIN A163.70.147.23
-
Remote address:8.8.8.8:53Requestconnect.facebook.netIN A
-
Remote address:8.8.8.8:53Request99.79.20.104.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request99.79.20.104.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request27.240.56.149.in-addr.arpaIN PTRResponse27.240.56.149.in-addr.arpaIN PTRns534106 ip-149-56-240net
-
Remote address:8.8.8.8:53Request27.240.56.149.in-addr.arpaIN PTRResponse27.240.56.149.in-addr.arpaIN PTRns534106 ip-149-56-240net
-
Remote address:8.8.8.8:53Request114.240.70.109.in-addr.arpaIN PTRResponse114.240.70.109.in-addr.arpaIN PTRh15actalisit
-
Remote address:8.8.8.8:53Request114.240.70.109.in-addr.arpaIN PTRResponse114.240.70.109.in-addr.arpaIN PTRh15actalisit
-
Remote address:8.8.8.8:53Request40.13.222.173.in-addr.arpaIN PTRResponse40.13.222.173.in-addr.arpaIN PTRa173-222-13-40deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request40.13.222.173.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request193.179.17.96.in-addr.arpaIN PTRResponse193.179.17.96.in-addr.arpaIN PTRa96-17-179-193deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request193.179.17.96.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Requestconnect.facebook.netIN AResponseconnect.facebook.netIN CNAMEscontent.xx.fbcdn.netscontent.xx.fbcdn.netIN A163.70.147.23
-
Remote address:8.8.8.8:53Requestconnect.facebook.netIN AResponseconnect.facebook.netIN CNAMEscontent.xx.fbcdn.netscontent.xx.fbcdn.netIN A163.70.147.23
-
Remote address:8.8.8.8:53Request9.228.82.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request9.228.82.20.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Requestgoogleads.g.doubleclick.netIN AResponsegoogleads.g.doubleclick.netIN A172.217.16.226
-
Remote address:8.8.8.8:53Requestgoogleads.g.doubleclick.netIN A
-
Remote address:8.8.8.8:53Requestanimacucina.altervista.orgIN AResponse
-
Remote address:8.8.8.8:53Requestanimacucina.altervista.orgIN A
-
Remote address:8.8.8.8:53Requestwww.facebook.comIN AResponsewww.facebook.comIN CNAMEstar-mini.c10r.facebook.comstar-mini.c10r.facebook.comIN A157.240.221.35
-
Remote address:8.8.8.8:53Request226.16.217.172.in-addr.arpaIN PTRResponse226.16.217.172.in-addr.arpaIN PTRlhr48s28-in-f21e100net226.16.217.172.in-addr.arpaIN PTRmad08s04-in-f2�H
-
Remote address:8.8.8.8:53Request226.16.217.172.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request35.221.240.157.in-addr.arpaIN PTRResponse35.221.240.157.in-addr.arpaIN PTRedge-star-mini-shv-01-lhr8facebookcom
-
Remote address:8.8.8.8:53Request35.221.240.157.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Requesttpc.googlesyndication.comIN AResponsetpc.googlesyndication.comIN A142.250.180.1
-
Remote address:8.8.8.8:53Requesttpc.googlesyndication.comIN A
-
Remote address:8.8.8.8:53Requestwww.google.comIN AResponsewww.google.comIN A142.250.200.4
-
Remote address:8.8.8.8:53Requestwww.google.comIN A
-
Remote address:8.8.8.8:53Request1.180.250.142.in-addr.arpaIN PTRResponse1.180.250.142.in-addr.arpaIN PTRlhr25s32-in-f11e100net
-
Remote address:8.8.8.8:53Request1.180.250.142.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request15.164.165.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request15.164.165.52.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request4.200.250.142.in-addr.arpaIN PTRResponse4.200.250.142.in-addr.arpaIN PTRlhr48s29-in-f41e100net
-
Remote address:8.8.8.8:53Request4.200.250.142.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request161.19.199.152.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request161.19.199.152.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request18.134.221.88.in-addr.arpaIN PTRResponse18.134.221.88.in-addr.arpaIN PTRa88-221-134-18deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request18.134.221.88.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request18.134.221.88.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request18.134.221.88.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request173.178.17.96.in-addr.arpaIN PTRResponse173.178.17.96.in-addr.arpaIN PTRa96-17-178-173deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request173.178.17.96.in-addr.arpaIN PTR
-
Remote address:8.8.8.8:53Request200.197.79.204.in-addr.arpaIN PTRResponse200.197.79.204.in-addr.arpaIN PTRa-0001a-msedgenet
-
Remote address:8.8.8.8:53Request200.197.79.204.in-addr.arpaIN PTRResponse200.197.79.204.in-addr.arpaIN PTRa-0001a-msedgenet
-
Remote address:8.8.8.8:53Request104.241.123.92.in-addr.arpaIN PTRResponse104.241.123.92.in-addr.arpaIN PTRa92-123-241-104deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request104.241.123.92.in-addr.arpaIN PTRResponse104.241.123.92.in-addr.arpaIN PTRa92-123-241-104deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request119.110.54.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request119.110.54.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Requesttse1.mm.bing.netIN AResponsetse1.mm.bing.netIN CNAMEmm-mm.bing.net.trafficmanager.netmm-mm.bing.net.trafficmanager.netIN CNAMEdual-a-0001.a-msedge.netdual-a-0001.a-msedge.netIN A204.79.197.200dual-a-0001.a-msedge.netIN A13.107.21.200
-
Remote address:8.8.8.8:53Requesttse1.mm.bing.netIN AResponsetse1.mm.bing.netIN CNAMEmm-mm.bing.net.trafficmanager.netmm-mm.bing.net.trafficmanager.netIN CNAMEdual-a-0001.a-msedge.netdual-a-0001.a-msedge.netIN A204.79.197.200dual-a-0001.a-msedge.netIN A13.107.21.200
-
Remote address:8.8.8.8:53Request217.135.221.88.in-addr.arpaIN PTRResponse217.135.221.88.in-addr.arpaIN PTRa88-221-135-217deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request217.135.221.88.in-addr.arpaIN PTRResponse217.135.221.88.in-addr.arpaIN PTRa88-221-135-217deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request176.178.17.96.in-addr.arpaIN PTRResponse176.178.17.96.in-addr.arpaIN PTRa96-17-178-176deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request176.178.17.96.in-addr.arpaIN PTR
-
142.250.200.33:80http://1.bp.blogspot.com/-QOY6UqBdfQw/UIB4dC3x_PI/AAAAAAAACaE/qvmRJlOrvl4/w72-h72-p-k-no-nu/fettuccine-al-salmone.jpghttp1.7kB 4.3kB 12 7
HTTP Request
GET http://1.bp.blogspot.com/-QOY6UqBdfQw/UIB4dC3x_PI/AAAAAAAACaE/qvmRJlOrvl4/w72-h72-p-k-no-nu/fettuccine-al-salmone.jpgHTTP Response
200 -
142.250.200.33:80http://1.bp.blogspot.com/-HM0WJBWLd14/TVhGwIJmLKI/AAAAAAAAAGI/xRfpzO9eoKE/s320/Lady+Chef.jpghttp2.5kB 31.7kB 32 27
HTTP Request
GET http://1.bp.blogspot.com/-HM0WJBWLd14/TVhGwIJmLKI/AAAAAAAAAGI/xRfpzO9eoKE/s320/Lady+Chef.jpgHTTP Response
200 -
922 B 104 B 7 2
-
1.4kB 5.1kB 18 11
-
142.250.200.33:80http://1.bp.blogspot.com/-rrN-020cfbQ/UIBnTvZaSQI/AAAAAAAACXE/TlZXYAivjZ4/w72-h72-p-k-no-nu/tortasoffice_yogurt.jpghttp827 B 5.1kB 10 7
HTTP Request
GET http://1.bp.blogspot.com/-rrN-020cfbQ/UIBnTvZaSQI/AAAAAAAACXE/TlZXYAivjZ4/w72-h72-p-k-no-nu/tortasoffice_yogurt.jpgHTTP Response
200 -
2.7kB 6.2kB 25 14
-
1.6kB 5.1kB 17 9
-
10.3kB 209.9kB 177 166
-
328 B 132 B 7 3
-
1.1kB 15.2kB 17 14
HTTP Request
GET http://pagead2.googlesyndication.com/pagead/show_ads.jsHTTP Response
200 -
142.250.200.33:80http://3.bp.blogspot.com/-hVXr0RFU-Fc/T-BWDuLuOPI/AAAAAAAABzE/fZiZ9FBJHgE/w72-h72-p-k-no-nu/DSC08078.JPGhttp822 B 4.8kB 10 7
HTTP Request
GET http://3.bp.blogspot.com/-hVXr0RFU-Fc/T-BWDuLuOPI/AAAAAAAABzE/fZiZ9FBJHgE/w72-h72-p-k-no-nu/DSC08078.JPGHTTP Response
200 -
142.250.200.33:80http://3.bp.blogspot.com/-eHLjIEwoPmM/UH8z74lgaaI/AAAAAAAACV4/Ud-20FXFwPk/w72-h72-p-k-no-nu/liq.jpghttp811 B 4.5kB 10 7
HTTP Request
GET http://3.bp.blogspot.com/-eHLjIEwoPmM/UH8z74lgaaI/AAAAAAAACV4/Ud-20FXFwPk/w72-h72-p-k-no-nu/liq.jpgHTTP Response
200 -
2.8kB 17.9kB 34 28
-
1.3kB 10.8kB 20 15
-
142.250.200.33:80http://2.bp.blogspot.com/-SglWZLO0jdE/UFwBDtuVjeI/AAAAAAAABZA/HWDzK_paALY/w72-h72-p-k-no-nu/tortacappuccino.jpghttp823 B 5.3kB 10 7
HTTP Request
GET http://2.bp.blogspot.com/-SglWZLO0jdE/UFwBDtuVjeI/AAAAAAAABZA/HWDzK_paALY/w72-h72-p-k-no-nu/tortacappuccino.jpgHTTP Response
200 -
142.250.200.33:80http://2.bp.blogspot.com/-V1Ec6Q27OJg/UFgQdhMJshI/AAAAAAAABQE/mRYY3qCzsBM/w72-h72-p-k-no-nu/piatto-pronto-tovaglia-giallo-paletta-per-dolci_dettaglio_ricette_slider_grande3.jpghttp888 B 5.2kB 10 7
HTTP Request
GET http://2.bp.blogspot.com/-V1Ec6Q27OJg/UFgQdhMJshI/AAAAAAAABQE/mRYY3qCzsBM/w72-h72-p-k-no-nu/piatto-pronto-tovaglia-giallo-paletta-per-dolci_dettaglio_ricette_slider_grande3.jpgHTTP Response
200 -
142.250.200.33:80http://2.bp.blogspot.com/-2tEB1tXzD0c/UIRbZXa69qI/AAAAAAAACgQ/zb6dWCYvimY/w72-h72-p-k-no-nu/torta-croccante-al-latte.jpghttp878 B 5.9kB 11 8
HTTP Request
GET http://2.bp.blogspot.com/-2tEB1tXzD0c/UIRbZXa69qI/AAAAAAAACgQ/zb6dWCYvimY/w72-h72-p-k-no-nu/torta-croccante-al-latte.jpgHTTP Response
200 -
1.3kB 648 B 9 5
HTTP Request
GET http://tools.net-parade.it/images/b180_verde.pngHTTP Response
301 -
196 B 144 B 4 3
-
1.3kB 10.9kB 20 15
-
2.4kB 19.5kB 33 27
-
142.250.200.33:80http://4.bp.blogspot.com/-WB-cCPEmlaA/UL8OwEX808I/AAAAAAAAFTU/lNCTHMt4cU0/w72-h72-p-k-no-nu/tronchetto-di-natale-5.jpghttp848 B 4.0kB 10 6
HTTP Request
GET http://4.bp.blogspot.com/-WB-cCPEmlaA/UL8OwEX808I/AAAAAAAAFTU/lNCTHMt4cU0/w72-h72-p-k-no-nu/tronchetto-di-natale-5.jpgHTTP Response
200 -
334 B 92 B 7 2
-
242 B 132 B 5 3
-
192.0.72.30:80http://cresycaradonna.files.wordpress.com/2011/09/tiramisu-fragole-ricetta-monoporzione.jpghttp671 B 634 B 7 5
HTTP Request
GET http://cresycaradonna.files.wordpress.com/2011/09/tiramisu-fragole-ricetta-monoporzione.jpgHTTP Response
301 -
4.2kB 52.1kB 50 42
-
1.6kB 6.2kB 20 14
-
772 B 5.8kB 11 8
HTTP Request
GET http://s10.histats.com/js15.jsHTTP Response
200 -
334 B 132 B 7 3
-
109.70.240.130:80http://ocsp05.actalis.it/VA/AUTH-ROOT/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSw4x5v4bTlizjNRmTdkYSy7q0R9gQUUtiIOsifeGbtifN7OHCUyQICNtACEBJzd5ejFYht%2FrdsfmpaA1Q%3Dhttp431 B 2.6kB 4 4
HTTP Request
GET http://ocsp05.actalis.it/VA/AUTH-ROOT/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSw4x5v4bTlizjNRmTdkYSy7q0R9gQUUtiIOsifeGbtifN7OHCUyQICNtACEBJzd5ejFYht%2FrdsfmpaA1Q%3DHTTP Response
200 -
109.70.240.114:80http://ocsp06.actalis.it/VA/AUTHDV-G3/MFEwTzBNMEswSTAJBgUrDgMCGgUABBROJtlvaAzyepGCxfu9qEfsEKGHVgQUQoNtgHwJhGf9gFer8Sb1d8gignECEFmitek5pvL%2BbWFA3KogSzI%3Dhttp621 B 4.6kB 8 8
HTTP Request
GET http://ocsp06.actalis.it/VA/AUTHDV-G3/MFEwTzBNMEswSTAJBgUrDgMCGgUABBROJtlvaAzyepGCxfu9qEfsEKGHVgQUQoNtgHwJhGf9gFer8Sb1d8gignECEFmitek5pvL%2BbWFA3KogSzI%3DHTTP Response
200 -
838 B 5.0kB 12 9
-
1.5kB 5.4kB 14 11
-
156 B 3
-
156 B 3
-
2.0kB 12.4kB 26 19
-
1.2kB 5.3kB 16 11
-
1.2kB 5.3kB 16 11
-
1.5kB 5.8kB 20 15
-
156 B 3
-
5.4kB 12.7kB 41 28
-
3.0kB 19.0kB 39 32
-
1.2kB 5.3kB 16 12
-
1.5kB 5.3kB 19 13
-
2.2kB 6.9kB 25 17
-
1.2kB 523 B 12 7
-
850 B 439 B 9 7
-
1.2kB 700 B 11 7
-
2.9kB 30.0kB 37 32
-
1.5kB 8.3kB 16 12
-
1.5kB 8.2kB 16 11
-
14.9kB 389.5kB 295 287
-
1.4kB 8.2kB 15 11
-
1.5kB 8.2kB 16 11
-
1.5kB 8.2kB 16 11
-
71 B 157 B 1 1
DNS Request
2.136.104.51.in-addr.arpa
-
142 B 157 B 2 1
DNS Request
2.181.190.20.in-addr.arpa
DNS Request
2.181.190.20.in-addr.arpa
-
61 B 108 B 1 1
DNS Request
www.blogger.com
DNS Response
216.58.212.201
-
63 B 124 B 1 1
DNS Request
1.bp.blogspot.com
DNS Response
142.250.200.33
-
68 B 115 B 1 1
DNS Request
resources.blogblog.com
DNS Response
216.58.212.201
-
63 B 124 B 1 1
DNS Request
3.bp.blogspot.com
DNS Response
142.250.200.33
-
142 B 116 B 2 1
DNS Request
lh5.googleusercontent.com
DNS Request
lh5.googleusercontent.com
DNS Response
216.58.212.193
-
126 B 124 B 2 1
DNS Request
4.bp.blogspot.com
DNS Request
4.bp.blogspot.com
DNS Response
142.250.200.33
-
71 B 116 B 1 1
DNS Request
lh4.googleusercontent.com
DNS Response
216.58.212.193
-
63 B 124 B 1 1
DNS Request
2.bp.blogspot.com
DNS Response
142.250.200.33
-
160 B 129 B 2 1
DNS Request
cresycaradonna.files.wordpress.com
DNS Request
cresycaradonna.files.wordpress.com
DNS Response
192.0.72.30192.0.72.31
-
65 B 81 B 1 1
DNS Request
tools.net-parade.it
DNS Response
31.11.34.110
-
73 B 144 B 1 1
DNS Request
95.221.229.192.in-addr.arpa
-
73 B 111 B 1 1
DNS Request
33.200.250.142.in-addr.arpa
-
73 B 171 B 1 1
DNS Request
201.212.58.216.in-addr.arpa
-
72 B 110 B 1 1
DNS Request
2.180.250.142.in-addr.arpa
-
71 B 104 B 1 1
DNS Request
110.34.11.31.in-addr.arpa
-
73 B 171 B 1 1
DNS Request
193.212.58.216.in-addr.arpa
-
144 B 110 B 2 1
DNS Request
3.200.250.142.in-addr.arpa
DNS Request
3.200.250.142.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
241.154.82.20.in-addr.arpa
-
71 B 157 B 1 1
DNS Request
55.36.223.20.in-addr.arpa
-
70 B 135 B 1 1
DNS Request
30.72.0.192.in-addr.arpa
-
72 B 134 B 1 1
DNS Request
233.38.18.104.in-addr.arpa
-
61 B 141 B 1 1
DNS Request
s10.histats.com
DNS Response
104.20.79.99104.20.80.99
-
63 B 98 B 1 1
DNS Request
ocsp05.actalis.it
DNS Response
109.70.240.130
-
126 B 118 B 2 1
DNS Request
www.vedovineri.it
DNS Request
www.vedovineri.it
-
76 B 194 B 1 1
DNS Request
fbcdn-sphotos-b-a.akamaihd.net
-
68 B 125 B 1 1
DNS Request
sphotos-b.ak.fbcdn.net
-
63 B 79 B 1 1
DNS Request
ocsp06.actalis.it
DNS Response
109.70.240.114
-
73 B 101 B 1 1
DNS Request
130.240.70.109.in-addr.arpa
-
60 B 268 B 1 1
DNS Request
s4.histats.com
DNS Response
149.56.240.27149.56.240.13154.39.128.117149.56.240.12954.39.156.32149.56.240.127149.56.240.13054.39.128.162142.4.219.198149.56.240.128149.56.240.31158.69.254.144149.56.240.132
-
132 B 114 B 2 1
DNS Request
connect.facebook.net
DNS Request
connect.facebook.net
DNS Response
163.70.147.23
-
142 B 133 B 2 1
DNS Request
99.79.20.104.in-addr.arpa
DNS Request
99.79.20.104.in-addr.arpa
-
144 B 224 B 2 2
DNS Request
27.240.56.149.in-addr.arpa
DNS Request
27.240.56.149.in-addr.arpa
-
146 B 202 B 2 2
DNS Request
114.240.70.109.in-addr.arpa
DNS Request
114.240.70.109.in-addr.arpa
-
144 B 137 B 2 1
DNS Request
40.13.222.173.in-addr.arpa
DNS Request
40.13.222.173.in-addr.arpa
-
144 B 137 B 2 1
DNS Request
193.179.17.96.in-addr.arpa
DNS Request
193.179.17.96.in-addr.arpa
-
132 B 228 B 2 2
DNS Request
connect.facebook.net
DNS Request
connect.facebook.net
DNS Response
163.70.147.23
DNS Response
163.70.147.23
-
140 B 156 B 2 1
DNS Request
9.228.82.20.in-addr.arpa
DNS Request
9.228.82.20.in-addr.arpa
-
146 B 89 B 2 1
DNS Request
googleads.g.doubleclick.net
DNS Request
googleads.g.doubleclick.net
DNS Response
172.217.16.226
-
144 B 123 B 2 1
DNS Request
animacucina.altervista.org
DNS Request
animacucina.altervista.org
-
62 B 107 B 1 1
DNS Request
www.facebook.com
DNS Response
157.240.221.35
-
146 B 140 B 2 1
DNS Request
226.16.217.172.in-addr.arpa
DNS Request
226.16.217.172.in-addr.arpa
-
146 B 126 B 2 1
DNS Request
35.221.240.157.in-addr.arpa
DNS Request
35.221.240.157.in-addr.arpa
-
142 B 87 B 2 1
DNS Request
tpc.googlesyndication.com
DNS Request
tpc.googlesyndication.com
DNS Response
142.250.180.1
-
120 B 76 B 2 1
DNS Request
www.google.com
DNS Request
www.google.com
DNS Response
142.250.200.4
-
144 B 110 B 2 1
DNS Request
1.180.250.142.in-addr.arpa
DNS Request
1.180.250.142.in-addr.arpa
-
144 B 146 B 2 1
DNS Request
15.164.165.52.in-addr.arpa
DNS Request
15.164.165.52.in-addr.arpa
-
144 B 110 B 2 1
DNS Request
4.200.250.142.in-addr.arpa
DNS Request
4.200.250.142.in-addr.arpa
-
146 B 144 B 2 1
DNS Request
161.19.199.152.in-addr.arpa
DNS Request
161.19.199.152.in-addr.arpa
-
288 B 137 B 4 1
DNS Request
18.134.221.88.in-addr.arpa
DNS Request
18.134.221.88.in-addr.arpa
DNS Request
18.134.221.88.in-addr.arpa
DNS Request
18.134.221.88.in-addr.arpa
-
144 B 137 B 2 1
DNS Request
173.178.17.96.in-addr.arpa
DNS Request
173.178.17.96.in-addr.arpa
-
146 B 212 B 2 2
DNS Request
200.197.79.204.in-addr.arpa
DNS Request
200.197.79.204.in-addr.arpa
-
146 B 278 B 2 2
DNS Request
104.241.123.92.in-addr.arpa
DNS Request
104.241.123.92.in-addr.arpa
-
144 B 316 B 2 2
DNS Request
119.110.54.20.in-addr.arpa
DNS Request
119.110.54.20.in-addr.arpa
-
124 B 346 B 2 2
DNS Request
tse1.mm.bing.net
DNS Request
tse1.mm.bing.net
DNS Response
204.79.197.20013.107.21.200
DNS Response
204.79.197.20013.107.21.200
-
146 B 278 B 2 2
DNS Request
217.135.221.88.in-addr.arpa
DNS Request
217.135.221.88.in-addr.arpa
-
144 B 137 B 2 1
DNS Request
176.178.17.96.in-addr.arpa
DNS Request
176.178.17.96.in-addr.arpa