Report - vodafone-internet.it/

Report Overview

Submitted URL
vodafone-internet.it/
IP
185.81.6.235
ASN
#52030 Server Plan S.r.l.
Submitted
2023-02-06 12:51:51
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
64

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	44.228.217.71
pagead2.googlesyndication.com	101	2021-02-20T16:52:05Z	2023-03-13T08:39:15Z	540 B	641 B	142.250.74.130
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	64 kB	34.120.237.76
cookiehub.net	49609	2018-11-07T22:21:05Z	2023-03-13T07:27:27Z	767 B	1.1 kB	143.204.55.105
vodafone-internet.it	unknown	2022-07-02T00:03:52Z	2023-03-13T12:01:21Z	8.7 kB	185 kB	185.81.6.235
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.33.119.27
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
cdn.usefathom.com	35845	2018-08-31T12:04:23Z	2023-03-13T08:49:04Z	842 B	1.3 kB	194.242.11.186
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	142.250.74.131
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	390 B	67 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing
2023-02-02	medium	vodafone-internet.it/	Generic/Spear Phishing

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-06	medium	vodafone-internet.it/	Phishing
2023-02-06	medium	vodafone-internet.it/	Phishing
2023-02-06	medium	vodafone-internet.it/img/vodafonelogo.webp	Phishing
2023-02-06	medium	vodafone-internet.it/img/bollinoverde.svg	Phishing
2023-02-06	medium	vodafone-internet.it/vendor/bootstrap/js/bootstrap.bundle.min.js	Phishing
2023-02-06	medium	vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js	Phishing
2023-02-06	medium	vodafone-internet.it/vendor/jquery/jquery.min.js	Phishing
2023-02-06	medium	vodafone-internet.it/card/vendor/jquery/jquery.min.js	Phishing
2023-02-06	medium	vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js	Phishing
2023-02-06	medium	vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js	Phishing
2023-02-06	medium	vodafone-internet.it/card/js/global.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	vodafone-internet.it/vendor/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL vodafone-internet.it/vendor/jquery/jquery.min.js IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 17:27:29 Times Seen139141 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js	6.9 kB	2023-03-09	2024-02-20
Pretty URL vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2024-02-20 04:48:41 Times Seen18 Hash 238df71a21377a7fe63d5f14a37bbf01 7b55f593294579fa27ae52ef727d572b395e7ab5 68b1c52929075b718094bbdcaf73434a9e8230082fbd00bcb85e02cdffa34d10 Loading...

	cookiehub.net/c2/f59855b3.js	86 kB	2023-03-13	2023-03-13
Pretty URL cookiehub.net/c2/f59855b3.js IP 143.204.55.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:06:21 Last Seen2023-03-13 18:24:14 Times Seen1 Hash 73cd5b5762afb213e886f62772db023f f37235ce6c1f8042f7b0e518c549521875a2a4ff 5e8be73d185aee1817fac275e9eb97467598f8fa773ed5e67142a1498dafcc8b Loading...

	vodafone-internet.it/	459 B	2023-03-09	2023-11-28
Pretty URL vodafone-internet.it/ IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2023-11-28 15:49:02 Times Seen8 Hash cd2fdd3eb7cd75f6e3a26be457bb00ef cc428e2e58968a84e26cda11eb17dc014c9ee114 6e678da31bb60d9828c0fd0a0b957e69060b19f3f9c1dc61500821147ae10621 Loading...

	vodafone-internet.it/	155 B	2023-03-09	2023-10-13
Pretty URL vodafone-internet.it/ IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2023-10-13 15:00:58 Times Seen7 Hash 0f50569c1c28872ce2f780bc79928bb7 53ae91c5fddecefaa89bab54075bb3cfc0a35da6 64956ae3c64c8ad5cb4fc4123e9c2ab60e53037aa05372c292e4823848389680 Loading...

	cdn.usefathom.com/script.js	6.0 kB	2023-03-13	2023-03-26
Pretty URL cdn.usefathom.com/script.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:06:21 Last Seen2023-03-26 01:08:42 Times Seen3 Hash 69ca573281e8997b6030a0dc05377211 f9b50af585529c8c5c24740bd5dbadf98b8d6f8e a08a36382b2b15278e2ec7b6a6029f59ede9ad29ff1ae1553291f0dd9bbaeea4 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 17:27:43 Times Seen37067789 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js	35 kB	2023-03-07	2024-04-24
Pretty URL vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-24 21:26:50 Times Seen1327 Hash 281cd50dd9f58c5550620fc148a7bc39 dfb8410ffc10a57d69b81620087c5a0b6027765a 484081bfe6c76d77610eb71a6e71206fe5304d62c037f058b403592192069306 Loading...

	vodafone-internet.it/card/vendor/jquery/jquery.min.js	87 kB	2023-03-07	2024-04-24
Pretty URL vodafone-internet.it/card/vendor/jquery/jquery.min.js IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2024-04-24 19:58:53 Times Seen2188 Hash 473957cfb255a781b42cb2af51d54a3b 67bdacbd077ee59f411109fd119ee9f58db15a5f 75b707d8761e2bfbd25fbd661f290a4f7fd11c48e1bf53a36dc6bd8a0034fa35 Loading...

	vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js	23 kB	2023-03-07	2024-04-25
Pretty URL vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2024-04-25 10:11:23 Times Seen989 Hash 93c1dd8416ac2af1850652d5b620a142 6a76e4c7db479053350580469aa010febfdcacd0 17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50 Loading...

	vodafone-internet.it/card/js/global.js	1.5 kB	2023-03-09	2024-02-20
Pretty URL vodafone-internet.it/card/js/global.js IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2024-02-20 04:48:41 Times Seen16 Hash 71e6b16c2e381c6621279b8d4e69e6f6 d08bf4cd9533a65f12cfa37d3f5ec4aa207a603d de2f08882496aea4b1ee26bf14e388c43e9c92aa68ef3b7ed5700b031bde8339 Loading...

	vodafone-internet.it/	2.0 kB	2023-03-09	2024-02-20
Pretty URL vodafone-internet.it/ IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2024-02-20 04:48:40 Times Seen9 Hash d7018144a3ba38daac726dbf959d31c7 7d9e84348226aaea89352a4cf00048bd0f0cba71 059a78b8c992a7c266a9c2a926b61a7e2e8f532df3c33db56eb83d1157a6cf4c Loading...

	vodafone-internet.it/vendor/bootstrap/js/bootstrap.bundle.min.js	84 kB	2023-03-07	2024-04-25
Pretty URL vodafone-internet.it/vendor/bootstrap/js/bootstrap.bundle.min.js IP 185.81.6.235 ASN #52030 Server Plan S.r.l. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:43 Last Seen2024-04-25 10:33:59 Times Seen7274 Hash 7f389f5d2622ce2090eca7c36bcb90bc ab27031159724e2421f6ff5c70f48e657abe9d39 8d7089253dca29c9cd8d9deb7ec69b0a3d445f88f6a26478c719be1f90adcb01 Loading...

HTTP Transactions (53)

URL IP Response Size

vodafone-internet.it/

185.81.6.235

301 Moved Permanently

237 B

URL HTTP/1.1
vodafone-internet.it/
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
237 B (237 bytes)
Hash
c8cdb7383856d7253aa92edadb708782
5d1eae32c59eb82420b2d7e7eed723ee007b520c
3cc806f7e16eff0088fabda6df6bf668a146b385904bed5b2a3da871c0ba666c

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 06 Feb 2023 12:51:40 GMT
Server: Apache
Location: https://vodafone-internet.it/
Content-Length: 237
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12084
Expires: Mon, 06 Feb 2023 16:13:05 GMT
Date: Mon, 06 Feb 2023 12:51:41 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15119
Expires: Mon, 06 Feb 2023 17:03:40 GMT
Date: Mon, 06 Feb 2023 12:51:41 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 12:34:04 GMT
content-type: application/json
age: 1057
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6725
Expires: Mon, 06 Feb 2023 14:43:46 GMT
Date: Mon, 06 Feb 2023 12:51:41 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: UUB3ejiugPbpatcDgcjnOlHtPA0yHo0bmrUVGXQmKBVM58uQf17KVeezAxTzJlRhAom46ZOPxqk=
x-amz-request-id: 4QX36AXN9H5T8YRM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 12:24:56 GMT
age: 1605
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 12:51:41 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

vodafone-internet.it/

185.81.6.235

200 OK

7.2 kB

URL HTTP/2
vodafone-internet.it/
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (387), with CRLF line terminators
Size
7.2 kB (7158 bytes)
Hash
ff04de5265963b008798053d985a8a8a
774610a883de4314fc659bcccd80d158e4613e00
4b5fdd6abea7d77423deec3bae3068511597e378b5c95a077831130416132f35

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
last-modified: Sat, 04 Feb 2023 15:23:04 GMT
etag: "180e25-85b6-5f3e15fcd500f-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7158
content-type: text/html
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/img/unlimited.png

185.81.6.235

200 OK

998 B

URL HTTP/2
vodafone-internet.it/img/unlimited.png
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Size
998 B (998 bytes)
Hash
dda6c80d05006e0950bd4d4f5e04fe45
b8424b92699585d3c90977bd25a3a374f5cbf082
8c62684e5e54c94d701c2cd9e611d371415ae5d4a44fbb38cf4ebeff92ed3144

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /img/unlimited.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Oct 2022 09:52:44 GMT
etag: "181a25-3e6-5ebd8de9ffe6d"
accept-ranges: bytes
content-length: 998
content-type: image/png
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/vendor/bootstrap/css/bootstrap.min.css

185.81.6.235

200 OK

24 kB

URL HTTP/2
vodafone-internet.it/vendor/bootstrap/css/bootstrap.min.css
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (65326)
Size
24 kB (23916 bytes)
Hash
89615fe7d49bd6546a64456a7d3c804d
6470bc374c9380960a0c4acf54f8ecd1a9f9faaf
271463e90b4fb1cc2c58c80f122c0b3714cf13ab6e6ca94d477e4ea51644396a

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /vendor/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "1a073c-27288-5e286f5823700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 23916
content-type: text/css
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:51:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vodafone-internet.it/img/Fwa.png

185.81.6.235

200 OK

2.6 kB

URL HTTP/2
vodafone-internet.it/img/Fwa.png
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 108 x 108, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2554 bytes)
Hash
ae4edf2d94b4123d60ee99d94f3c6d88
de0cc335f401e5acbd5b3253e9f74585ca8ce60f
6e96ef71d6ffb55468d68477ee86c90d556233c009f775ab6869dfa4151aa4e1

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /img/Fwa.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 23 Sep 2022 09:07:53 GMT
etag: "1819e8-9fa-5e954835cbeb1"
accept-ranges: bytes
content-length: 2554
content-type: image/png
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/img/insieme.png

185.81.6.235

200 OK

3.0 kB

URL HTTP/2
vodafone-internet.it/img/insieme.png
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3043 bytes)
Hash
7eb9a8810a5a45a5771b85c523b469c7
f6b223015946789663f3f5dc6e7c3e6383985a18
5f071d6247717e871019a3bb1c5a9d14dc21c4756a058dcbaf0f800662d08dc0

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /img/insieme.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 11:51:16 GMT
etag: "181a17-be3-5ed6cdb61ee35"
accept-ranges: bytes
content-length: 3043
content-type: image/png
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/img/semplice.png

185.81.6.235

200 OK

3.7 kB

URL HTTP/2
vodafone-internet.it/img/semplice.png
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 171 x 168, 8-bit colormap, interlaced\012- data
Size
3.7 kB (3650 bytes)
Hash
13b24c13ef5824f3b20052cc0e362719
e04b9ee99a273dc983647096edc260a65a8546ce
8c3214f6a4024e08b74f349aea9bc3e24ee5725cbd062447f3593499abb3837c

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /img/semplice.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:34:42 GMT
etag: "181a20-e42-5e28720c81880"
accept-ranges: bytes
content-length: 3650
content-type: image/png
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/img/vodafonelogo.webp

185.81.6.235

200 OK

4.9 kB

URL HTTP/2
vodafone-internet.it/img/vodafonelogo.webp
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
4.9 kB (4880 bytes)
Hash
143b4e078fa31bb76dd07289c00c4a5c
4134ec3e10c7fd971c2b33e885eeb53b396e7267
616930b6c659cc917bf8bf270289e1ec24f559a573809377894631f057e63ca9

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /img/vodafonelogo.webp HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 06 Jul 2022 23:23:42 GMT
etag: "181a2d-153c-5e32b42858354-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4880
content-type: image/webp
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/img/icozerocosti.png

185.81.6.235

200 OK

5.9 kB

URL HTTP/2
vodafone-internet.it/img/icozerocosti.png
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 168 x 168, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5916 bytes)
Hash
258cd9f92bcc11d18deb3a3d6f89151c
3d9780e34560b0cc97d34d1d55416c5d58a6ac36
685c5b78f75f09da6e9f89c1380ef0431fed8c9a9649e4c39356026704277f43

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /img/icozerocosti.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "181a16-171c-5e286f5823700"
accept-ranges: bytes
content-length: 5916
content-type: image/png
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/card/css/main.css

185.81.6.235

200 OK

2.7 kB

URL HTTP/2
vodafone-internet.it/card/css/main.css
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text
Size
2.7 kB (2668 bytes)
Hash
0d45aea69c9d7854e7619d26400f2832
ce02df8ce1d17b0cc4c7463bd82f37260ba12632
fee95eac02863712153dc31267a13d068635d971e325fd50f6912497838d5c9c

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /card/css/main.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 09:15:06 GMT
etag: "1819de-3165-5e9407f508f87-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2668
content-type: text/css
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e4a518e0fac452224bd27ac4d0ed035e
abff3896be977c3262df3bfd266a53c2c54023d1
8d5b2334319801ca021b15be745e91176ae9a387a7a2d439e01310c34c38d32f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D5B2334319801CA021B15BE745E91176AE9A387A7A2D439E01310C34C38D32F"
Last-Modified: Sun, 05 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2394
Expires: Mon, 06 Feb 2023 13:31:35 GMT
Date: Mon, 06 Feb 2023 12:51:41 GMT
Connection: keep-alive

vodafone-internet.it/css/landing-page.min.css

185.81.6.235

200 OK

642 B

URL HTTP/2
vodafone-internet.it/css/landing-page.min.css
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (1656)
Size
642 B (642 bytes)
Hash
824936d72c7a93cee79c49b69c6711e9
eac13fda862da1636ac104977f9e98858cbd665c
1da5aa57c4d78eebe2295aa8faefaf3e9027f572adeedb6e9bb27dbfc5611bb8

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /css/landing-page.min.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 06 Jul 2022 23:29:24 GMT
etag: "1819e7-766-5e32b56e153c3-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 642
content-type: text/css
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/img/bollinoverde.svg

185.81.6.235

200 OK

638 B

URL HTTP/2
vodafone-internet.it/img/bollinoverde.svg
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Size
638 B (638 bytes)
Hash
090d57ffd60bcf545683ed572fd4ee7b
f75e83a823730e6dbff6b269f71a27e73b2a8f41
179f5b01afa24ff51fa08d57aa03a71b50a6ffd1136b8c7cb193fdb76513c526

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /img/bollinoverde.svg HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "181a02-578-5e286f5823700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 638
content-type: image/svg+xml
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=AW-10935671887

142.250.74.168

200 OK

66 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-10935671887
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4048)
Size
66 kB (65939 bytes)
Hash
4b5aa01143f8972ad217897698078cbf
a078e94290c1c85f89f1b8dbf1a09f574a77cc0f
711b023cef8bf40d74f3b5f08e103916b444ec6fe4423eb42616dc1bc2a44799

HTTP Headers

GET /gtag/js?id=AW-10935671887 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 06 Feb 2023 12:51:41 GMT
expires: Mon, 06 Feb 2023 12:51:41 GMT
cache-control: private, max-age=900
last-modified: Mon, 06 Feb 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65939
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

vodafone-internet.it/vendor/bootstrap/js/bootstrap.bundle.min.js

185.81.6.235

200 OK

22 kB

URL HTTP/2
vodafone-internet.it/vendor/bootstrap/js/bootstrap.bundle.min.js
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (65299)
Size
22 kB (21804 bytes)
Hash
740c84bdec4ddb8462c86a7a1e4b5e82
1f83ac50a77da1d784f9596466b436cce90bc774
73cfc5b732c42973cc81b5b0da06daf83db28921836ab79f1ce9046db162cbc0

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /vendor/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "1a0740-148b8-5e286f5823700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 21804
content-type: application/javascript
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js

185.81.6.235

200 OK

9.2 kB

URL HTTP/2
vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (32108)
Size
9.2 kB (9223 bytes)
Hash
fd7ee4bc8f21678e6962e3ea808e0e8d
329e5ca00433bac4bff49e1bd27de4c636d12700
06a1da7ad3af90ac203629fbd8f4a5741f103f721aae847c8f70329a8ac20262

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /card/vendor/bootstrap-wizard/bootstrap.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "1819e1-875d-5e286f5823700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9223
content-type: application/javascript
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/vendor/jquery/jquery.min.js

185.81.6.235

200 OK

31 kB

URL HTTP/2
vodafone-internet.it/vendor/jquery/jquery.min.js
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (65451)
Size
31 kB (30910 bytes)
Hash
888c5fa4504182a0224b264a1fda0e73
65f058a7dead59a8063362241865526eb0148f16
7d757e510b1f0c4d44fd98cc0121da8ca4f44793f8583debdef300fb1dbd3715

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /vendor/jquery/jquery.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:38 GMT
etag: "1a0763-15d84-5e286f5a0bb80-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30910
content-type: application/javascript
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/card/vendor/jquery/jquery.min.js

185.81.6.235

200 OK

30 kB

URL HTTP/2
vodafone-internet.it/card/vendor/jquery/jquery.min.js
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (32058), with CRLF line terminators
Size
30 kB (30147 bytes)
Hash
9be8097803999b702fa83ec17dd66984
283299e8c5a59c73e949e4a275e0a70f9cf08f9f
c3702d18d04969c4d2c56a024a957ed897ec418bc15d66cea9eca0f1101a0c48

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /card/vendor/jquery/jquery.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "1a0729-15287-5e286f5823700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30147
content-type: application/javascript
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js

185.81.6.235

200 OK

1.8 kB

URL HTTP/2
vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with very long lines (527)
Size
1.8 kB (1842 bytes)
Hash
fb49ce276a061600e0d3585b3c5e2644
9d383bdc48d9408afcc7b21a5710d878b9196a58
13c195dc6855c6a873e395a160137c55f029920133c41b713c6e905710e1a4de

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "1819e3-1b05-5e286f5823700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1842
content-type: application/javascript
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js

185.81.6.235

200 OK

7.5 kB

URL HTTP/2
vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
Unicode text, UTF-8 text, with very long lines (23122)
Size
7.5 kB (7502 bytes)
Hash
a658066e859d78ed3e8e9a6cc59ada04
ebafea8979cd5e63c4ab252364a3cf7653008457
b1c168c4f75a6107b7e7b4e0b747a69203e3f9ec55996d9e7a9bf41daf4be8b2

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /card/vendor/jquery-validate/jquery.validate.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "1a0727-5add-5e286f5823700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7502
content-type: application/javascript
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

vodafone-internet.it/card/js/global.js

185.81.6.235

200 OK

424 B

URL HTTP/2
vodafone-internet.it/card/js/global.js
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
ASCII text, with CRLF line terminators
Size
424 B (424 bytes)
Hash
ce77990a3dacdf6cb8e02dc9aa4261ff
4f8668a85c7d6c5b1a7bbb9d6a94592128e22de1
21dc0f4b5c10b611741ff8d55e1271c5111616d54c52adb1ca39e229150fdc80

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing
fortinet	Phishing

HTTP Headers

GET /card/js/global.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: "1819e0-5fa-5e286f5823700-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 424
content-type: application/javascript
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:51:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 12:51:19 GMT
age: 22
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

vodafone-internet.it/favicon.ico

185.81.6.235

200 OK

631 B

URL HTTP/2
vodafone-internet.it/favicon.ico
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
631 B (631 bytes)
Hash
4c0fcae0081fa020651a25843721e96c
e98ff3f0b66a24291119994af0071de52788aabf
49a6fe204061eed715bbc16b84d60de44f625a4234f777d2376947f4f6c732ba

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 02 Jul 2022 09:20:33 GMT
etag: "1819d5-260-5e2cf03d4936f-gzip"
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 631
content-type: image/x-icon
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:51:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vodafone-internet.it/img/favicon-152.png

185.81.6.235

200 OK

20 kB

URL HTTP/2
vodafone-internet.it/img/favicon-152.png
IP
185.81.6.235:0
ASN
#52030 Server Plan S.r.l.

File type
PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20098 bytes)
Hash
529fef145268bc9971225261c2c8db01
48d5c5e6343d4b36dea64220149bc98a65c846e7
1e50b135bb62de3d2d3036e0f0014826bf9433c760534d81bf83bf50fd37ef96

Detections

Analyzer	Verdict	Alert
openphish	Generic/Spear Phishing

HTTP Headers

GET /img/favicon-152.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 16 Sep 2022 13:42:09 GMT
etag: "181a09-4e82-5e8cb87458083"
accept-ranges: bytes
content-length: 20098
content-type: image/png
date: Mon, 06 Feb 2023 12:51:41 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:51:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9256
Expires: Mon, 06 Feb 2023 15:25:57 GMT
Date: Mon, 06 Feb 2023 12:51:41 GMT
Connection: keep-alive

cdn.usefathom.com/?h=https%3A%2F%2Fvodafone-internet.it&p=%2F&r=&sid=YBYQZQOT&qs=%7B%7D&cid=32308428

194.242.11.186

200 OK

43 B

URL HTTP/2
cdn.usefathom.com/?h=https%3A%2F%2Fvodafone-internet.it&p=%2F&r=&sid=YBYQZQOT&qs=%7B%7D&cid=32308428
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22

HTTP Headers

GET /?h=https%3A%2F%2Fvodafone-internet.it&p=%2F&r=&sid=YBYQZQOT&qs=%7B%7D&cid=32308428 HTTP/1.1
Host: cdn.usefathom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 06 Feb 2023 12:51:42 GMT
content-type: image/gif
content-length: 43
server: BunnyCDN-NO1-830
cdn-pullzone: 506217
cdn-uid: aa90c48b-f401-4fa1-aac1-c94c8f3ae560
cdn-requestcountrycode: NO
cache-control: public, max-age=0
pragma: no-cache
x-vapor-base64-encode: True
tk: N
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/06/2023 12:51:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: abc87ca51ab034c6ae7b5ecc2c9eba7e
cdn-cache: MISS
X-Firefox-Spdy: h2

push.services.mozilla.com/

44.228.217.71

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.228.217.71:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VAw68bvCiQ21A3V8RSLxbg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2kHtP7YUm/1XR8MH5+Jw1I1f7OU=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:51:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=1396095550.1675687947&url=https%3A%2F%2Fvodafone-internet.it%2F&gtm=45be3210

142.250.74.130

200 OK

42 B

URL HTTP/2
pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=1396095550.1675687947&url=https%3A%2F%2Fvodafone-internet.it%2F&gtm=45be3210
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

POST /pagead/landing?gcs=G100&gcd=G100&rnd=1396095550.1675687947&url=https%3A%2F%2Fvodafone-internet.it%2F&gtm=45be3210 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 06 Feb 2023 12:51:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:51:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18989
Expires: Mon, 06 Feb 2023 18:08:12 GMT
Date: Mon, 06 Feb 2023 12:51:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18989
Expires: Mon, 06 Feb 2023 18:08:12 GMT
Date: Mon, 06 Feb 2023 12:51:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18989
Expires: Mon, 06 Feb 2023 18:08:12 GMT
Date: Mon, 06 Feb 2023 12:51:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18989
Expires: Mon, 06 Feb 2023 18:08:12 GMT
Date: Mon, 06 Feb 2023 12:51:43 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9808 bytes)
Hash
ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 54100
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9809 bytes)
Hash
5f54c8725e5dab88b12d42876fa61b12
89c734d690981e30f9d566a7763a1870724d65aa
b8cc5148ae01e1a1fe32f56bdce71de086da320cdd8a55a746609c9773fdaf77

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31cf5553-4c3f-4c6d-8dfb-d292e38275bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9809
x-amzn-requestid: 533de5fa-8173-430e-a657-4386728723eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc-VEGbIAMFSmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0ec1-4e160c5c2a46d2913cc8e71e;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: BgSfqU3WmIhR8N86AEfaU7pXN7jIKs_lKJVD6yCSaJBl5AVx13e5hw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:54:03 GMT
etag: "89c734d690981e30f9d566a7763a1870724d65aa"
content-type: image/jpeg
age: 53860
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10905 bytes)
Hash
1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:13:39 GMT
age: 52684
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10514 bytes)
Hash
9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 54094
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7851 bytes)
Hash
13572f84ad268caedcc897f2ad7b9baf
afb91ab43953e8915a2169618d2ab5e330cde0a1
0fb8b09608dc293b2084953b948cc7d8a7aa7bcb525090a7e44d5cb2a725fab3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7851
x-amzn-requestid: 11d3fe95-844b-4e5d-b31c-f99e96e2b608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHeEIAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-602b91422dff88a750b8e3e9;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7LXNdWi5iKCUI61c2z3spsg5_DGu1jnZ4cIACc3MCmqWP57RveBMGw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 54100
etag: "afb91ab43953e8915a2169618d2ab5e330cde0a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8981 bytes)
Hash
714723c38877e0d1655c7118a88ec064
809a42ce7c76cea0ce16af8172d852723c3a5f02
6bad7253694d155de31a8f5a3c635545a39aac340ca49d1bc10efb6739d4a356

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8981
x-amzn-requestid: 0054e925-c381-4737-bd92-32b2af3a604e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQHRFoAMFw6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-45ea5ee33d07326c593d21d3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ixAMZh_xOYWVESJ0jOEPOXZ4GQBDUZZsh26yEDYfl8APcBF2x2sZYg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 54100
etag: "809a42ce7c76cea0ce16af8172d852723c3a5f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cookiehub.net/c2/f59855b3.js

143.204.55.105

200 OK

0 B

URL HTTP/2
cookiehub.net/c2/f59855b3.js
IP
143.204.55.105:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c2/f59855b3.js HTTP/1.1
Host: cookiehub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 06 Feb 2023 12:51:42 GMT
last-modified: Mon, 23 Jan 2023 14:53:13 GMT
etag: W/"73cd5b5762afb213e886f62772db023f"
x-amz-version-id: wM2gV6gDN_MUaEHSWZoP3Vd_WyxZX4p9
server: AmazonS3
content-encoding: br
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OXX7EN13TXnOGQG3f0N2g7vDUlQh3IkRKHEECholek_Ih0kwol61nQ==
cache-control: max-age=86400
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2

cdn.usefathom.com/script.js

194.242.11.186

200 OK

0 B

URL HTTP/2
cdn.usefathom.com/script.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /script.js HTTP/1.1
Host: cdn.usefathom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 06 Feb 2023 12:51:41 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 506217
cdn-uid: aa90c48b-f401-4fa1-aac1-c94c8f3ae560
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=0
etag: W/"d41d8cd98f00b204e9800998ecf8427e"
last-modified: Wed, 01 Feb 2023 19:49:01 GMT
x-vapor-base64-encode: True
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/03/2023 19:17:56
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fcf8648206d79735d0b06941d1fa9e2a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cookiehub.net/c2/css/2.4.11.css

143.204.55.105

200 OK

0 B

URL HTTP/2
cookiehub.net/c2/css/2.4.11.css
IP
143.204.55.105:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c2/css/2.4.11.css HTTP/1.1
Host: cookiehub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Sun, 05 Feb 2023 18:16:46 GMT
last-modified: Wed, 21 Dec 2022 23:39:11 GMT
etag: W/"c9978fccc00e99b936b78b1afa12b71f"
x-amz-version-id: se9wT0DRsMu2YoXyXqnLY3kRTJTcqEPY
server: AmazonS3
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Xb7WUWiPtxuDWoisSx9lWPr9OS2_CKtgdhj16I8gnCPWJLgwW6npgg==
age: 66896
cache-control: max-age=86400
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL