| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hash67fc460ed2f69dde3c410ec607ef3510 ba9f582ec321351e5c06c9b2c381f06b685ef274 85df74fac7d59d76840b6359bac24648fede201c0048f2a8382af6468225ffb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85DF74FAC7D59D76840B6359BAC24648FEDE201C0048F2A8382AF6468225FFB8"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12761
Expires: Fri, 24 Feb 2023 10:33:41 GMT
Date: Fri, 24 Feb 2023 07:01:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hash6f313739c4c44174fc9a97ac63621b46 319da68d06694330ad9f7901bcde1ca0a6eeac0d 321236ee07769c741890815bc56fd2700ff1974b0534368b9ff2e96320ae4fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "321236EE07769C741890815BC56FD2700FF1974B0534368B9FF2E96320AE4FEE"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17464
Expires: Fri, 24 Feb 2023 11:52:04 GMT
Date: Fri, 24 Feb 2023 07:01:00 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/s/gts1p5/hZaYaCrqGjk | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/hZaYaCrqGjk IP142.250.74.131:0
Hash5f76232fef743cde1e701fb164157bde 42c5d817f2a689ffd1de57f07226d553bd285819 3a308050922d84c4ba9468cde3e8fe6fca4b570a5a16394b4c622bc36e812a6d
POST /s/gts1p5/hZaYaCrqGjk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash7f03faaba3392caae6dae54467bfdf6d 57ea1f14e8bfbcca8190c706d708c9fda12442c1 02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Feb 2023 06:54:00 GMT
content-type: application/json
age: 420
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hash7fb59e5d3cdf08b94e5f41fdeb9aec6c ff644039db3b9f74d7e2fab10f93581bea10614a 861573a00d75364e15783c5e448c4f8b4da48b38d9beba3ebd33a87f993489a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "861573A00D75364E15783C5E448C4F8B4DA48B38D9BEBA3EBD33A87F993489A5"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7522
Expires: Fri, 24 Feb 2023 09:06:22 GMT
Date: Fri, 24 Feb 2023 07:01:00 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb5ba6334e73496995e3e3a9ecd0eb323 ad80d3b7718c28364e8c2004fb38a13a1747e462 aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1CPrMYYUgGoLHbRhWzOhcPeIj4OC4880icZCgqwb/V7hzwlYiinRhmcWfHJp+iHr+Qpu0IjckYo=
x-amz-request-id: WDWP5T7DETJ42F0F
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Feb 2023 06:49:23 GMT
age: 697
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/img/smile.png | 104.26.11.31 | 200 OK | 11 kB |
URL HTTP/2vodafone-internet.it/img/smile.png IP104.26.11.31:0
File typeRIFF (little-endian) data, Web/P image\012- data Hashb8024c0ae730ca05102f90ef0e593446 2a7e6cf154dce81fee10b6ba0699318fe75b3497 05056636fd154af32f44e997203f28b8259bc6b11c0b225c27f35cd597edcb3c
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /img/smile.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 10938
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=21550
content-disposition: inline; filename="smile.webp"
vary: Accept
etag: "180f19-542e-5f4fb297de182"
last-modified: Sat, 18 Feb 2023 15:34:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d7CJ4hO54Vn4eA6lSTN8PwWuGsw2sykuliIiQyg18NzaaJdLStuv0q3BopZazpcVjN2SsIQittyTN11wR1paKxs4JoH0dhVIyEo07ht4mL1nwb9ntYbl3mG%2FENBMyvMbkdziA5cj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac0b4ee-OSL
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/img/unlimited.png | 104.26.11.31 | 200 OK | 462 B |
URL HTTP/2vodafone-internet.it/img/unlimited.png IP104.26.11.31:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash89f65f4c27b95cbf348b9304e73b97f8 c6c89e5120cc702471bc02e0ee0f1a44502eabf9 04ba5aa336565b376f671392cb52abcce1e5c27a5ee27817fbd44efc6b17ec99
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /img/unlimited.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 462
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=998
content-disposition: inline; filename="unlimited.webp"
vary: Accept
etag: "181a25-3e6-5ebd8de9ffe6d"
last-modified: Tue, 25 Oct 2022 09:52:44 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tm1GH234ZNfOVAqfFcrTKeiHXlLgx4eNob84xaVEW3c17iOi0ArBVuF1eIiztpHpQie%2FFM9zleqrmWgyaD3M8sbH8dHX%2FmUPq01pbWI8xjLlrCJE0n%2FMKIu9I0okIFr8vM5tcBcT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78abdb4ee-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hashae80128001f907652136b511f0f80830 197da26a40cc7e0203135a0b50c928b9f418c4d5 2fa53a14e332a727af32ca3e125ce08900b8f8e1c4fffe4a53065c83b3ce0b23
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6441
Cache-Control: max-age=91740
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:00 GMT
Etag: "63f70adf-116"
Expires: Sat, 25 Feb 2023 08:30:00 GMT
Last-Modified: Thu, 23 Feb 2023 06:42:39 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278
|
|
| vodafone-internet.it/img/insieme.png | 104.26.11.31 | 200 OK | 2.0 kB |
URL HTTP/2vodafone-internet.it/img/insieme.png IP104.26.11.31:0
File typeRIFF (little-endian) data, Web/P image\012- data Hashe056ba903ca3802fee4f78bc4b56c61b 57899d637dac21dd64be126322e4194ed09acd29 f86630b218914b292731f13b3b43bbf6b0538fa5ac0d1221a5ee3edce8fe20bb
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /img/insieme.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 2004
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3043
content-disposition: inline; filename="insieme.webp"
vary: Accept
etag: "181a17-be3-5ed6cdb61ee35"
last-modified: Mon, 14 Nov 2022 11:51:16 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Ftfo4qTZafhmVHM0zf%2Br6jzOc6K9vJJPY0BZUO6dskhKd6L%2BASkxe7t7QvWgN5igPhOYRRGsquMXDi%2FX5VHbjPnFUC5ysd6yXGdZG%2F%2BPpCSGpCqIWwP37aK2dF5tjdYcBa2YpWuM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac4b4ee-OSL
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/img/semplice.png | 104.26.11.31 | 200 OK | 1.9 kB |
URL HTTP/2vodafone-internet.it/img/semplice.png IP104.26.11.31:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash243932226d6586285416fe273816ac18 558b88b10a5a2761367be8f61b40a59e7ca6d723 b1cd2a93f94e9e270baf1abd14cd67bf8c05f18062ddc745f0e6f1353573088b
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /img/semplice.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 1910
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3650
content-disposition: inline; filename="semplice.webp"
vary: Accept
etag: "181a20-e42-5e28720c81880"
last-modified: Tue, 28 Jun 2022 19:34:42 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oCSVleXZvR%2BbnoxP0Baah7j3a9iTvPfKeCBdanaIAoIdTKnlUdIBcLp%2FQqDF%2FoYWIkmnsJhsctjjTTvQor%2FP1l6%2BEnuuXSkmcy0mKWG1avGBgJDC%2BZTGXubOgQvtoYbAOansUygq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac5b4ee-OSL
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/img/icozerocosti.png | 104.26.11.31 | 200 OK | 1.3 kB |
URL HTTP/2vodafone-internet.it/img/icozerocosti.png IP104.26.11.31:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash41d314e0cfa3cd79533f44beaac9f52d a6cac2b8631a276b1b69ebe61992993fae169008 e7e9c8d1ad52a86b64e10b04f9043e96dec3186fb3866340d6b5e17c25dacdc5
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /img/icozerocosti.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 1340
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=5916
content-disposition: inline; filename="icozerocosti.webp"
vary: Accept
etag: "181a16-171c-5e286f5823700"
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eztzL8cbjcvenQCjsNnjj2J7%2Bixs1PWXJYkAc6KFEU9TP2urWfagfad%2F99MWlDNR5vxaRHCHfhlpuNG8ZhXePMEf%2Bdbb1NJ41vTMwg7FP6FeC5PLjqZmKKcHXZSueFywC3sqlcPg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac1b4ee-OSL
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/img/Fwa.png | 104.26.11.31 | 200 OK | 1.4 kB |
URL HTTP/2vodafone-internet.it/img/Fwa.png IP104.26.11.31:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash8b17e57ba0d205318c4288b7f666c56d d0db8098959770341dc7e8287e6bf77b4eaf6265 3fb3ba24fef8c5336e63c91d4f889e1723dfb73920c27f054eaf0a5e1246953b
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /img/Fwa.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 1390
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2554
content-disposition: inline; filename="Fwa.webp"
vary: Accept
etag: "1819e8-9fa-5e954835cbeb1"
last-modified: Fri, 23 Sep 2022 09:07:53 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xj7TMNxyvo3UrXH2ZY1QB1BA%2FM5FklgtjSQTDkobwC4cRa1vHoCHG6MJxxYjGkLOiZowM9h40iMT%2Fd1fxXp6LCXF%2FENLRVdSuuN4IgZUZWwE1kEzh6vs3v%2BxaErtZ5nUkfNCcy6A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac6b4ee-OSL
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js | 104.26.11.31 | 200 OK | 4.2 kB |
URL HTTP/2vodafone-internet.it/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP104.26.11.31:0
Hasha6c26597a16b68e388a1ca4053d30343 e14d9331761ed740de151a03828d207b1906dd1b 507181a84232b8b64306c8ecd01142ee68f6a993e5ed02497bad22bef5958e2e
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: application/javascript
last-modified: Wed, 22 Feb 2023 10:50:59 GMT
etag: W/"63f5f393-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rWqYkCvflj9p%2BC3WwytC5PAgKSug3ocDGztJLPDM53RMS8WgaVf5SppZlh30ZQhElIo823la2WNxMKih6%2Fuhtf5oF9HssmRLy0%2BKfNSMX9XvUqcvazhQtTsowgC%2F%2FlcSotqP4TVm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e653d78ab6b4ee-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 26 Feb 2023 07:01:00 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash56cd85a02d031d2f7b794f1f2cfda4eb 878162e77393da15f0a1c8bf8a83a777a6caf317 15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| vodafone-internet.it/card/css/main.css | 104.26.11.31 | 200 OK | 69 kB |
URL HTTP/2vodafone-internet.it/card/css/main.css IP104.26.11.31:0
Hash798e5bdee1d9921f9dac150d632b828e 2f4d702f284c3439b9b93a3918a50c9306b8d060 64be14b1ed338af362a3c465ef3f8e11e88d681aa6b934c2eb76f2ec277868f9
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /card/css/main.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:15:06 GMT
etag: W/"1819de-3165-5e9407f508f87-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dewIX2zZBFjRrkOvG5%2F5xXIpkoHpkwMHvyIuDMHlQEdL6o%2FAymmiKmu1ueBG%2BpnLb3mRXVS0v0ublg3ht0hbIA6vcrw07ko7Yklq3UGbulWR6taGBfSEJgh354UewIloSfyk8DsJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ab0b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hash9b1b3ed9ddbb502ccdccb948cc4d84f4 dbde2b113c19d246c974885ffa86a10594d3f128 42e1714838db0490fe047aa90b96d86bd8dba3d558a0e9ffa6fe926aef705616
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "42E1714838DB0490FE047AA90B96D86BD8DBA3D558A0E9FFA6FE926AEF705616"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2766
Expires: Fri, 24 Feb 2023 07:47:07 GMT
Date: Fri, 24 Feb 2023 07:01:01 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash56cd85a02d031d2f7b794f1f2cfda4eb 878162e77393da15f0a1c8bf8a83a777a6caf317 15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hash5fa728a339ca32e616d483e61d0aebcd 6a63966de94d16390c8f1e47e5b67fe5bb67f7cd 7e83729d554404e59f1f1ff809ac776d3596487e2b062a1e38af8e29f33c0686
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E83729D554404E59F1F1FF809AC776D3596487E2B062A1E38AF8E29F33C0686"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7447
Expires: Fri, 24 Feb 2023 09:05:08 GMT
Date: Fri, 24 Feb 2023 07:01:01 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash295ecb42da084d2556789eada5291422 24c3605ff6984776ca77a2aa3b3b4bba4267f76f f787cdc01fe5b6c0889f133cdf9cd0e38973f4cb8515014e8a14418521af04bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| vodafone-internet.it/img/favicon-152.png | 104.26.11.31 | 200 OK | 13 kB |
URL HTTP/2vodafone-internet.it/img/favicon-152.png IP104.26.11.31:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash5b6e3df101c025173bbe0cdbb892d8f8 77215a98f22e27bb6af33503a2fda18d7aaf5683 95ae6952f59d6459c3067a548a18383c41ac1dbb477b68d8869bab2e87699491
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /img/favicon-152.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: image/webp
content-length: 13436
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=20098
content-disposition: inline; filename="favicon-152.webp"
vary: Accept
etag: "181a09-4e82-5e8cb87458083"
last-modified: Fri, 16 Sep 2022 13:42:09 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HXVcMh%2F18c4v979bttPtKDonxKxEheFQF4xS3DC2%2FtlV4P3yGfW%2B1vBIb6z%2BgnnJ3b4YDFOSaDSkyRpOp0JKoQpQ3PHRVKYDChbdHj58kZrquH0i7ccG%2FqVqeZEuAhsnmiN9iA7F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653db4f69b4ee-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash295ecb42da084d2556789eada5291422 24c3605ff6984776ca77a2aa3b3b4bba4267f76f f787cdc01fe5b6c0889f133cdf9cd0e38973f4cb8515014e8a14418521af04bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| vodafone-internet.it/favicon.ico | 104.26.11.31 | 200 OK | 11 kB |
URL HTTP/2vodafone-internet.it/favicon.ico IP104.26.11.31:0
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Hash54b238201c5a7a095e8ee7fb47792043 d03b7160a55e9919fe1c2d2c56b65d585c9e7f63 55029c8a9df4a8c84b09ed0cb2e2cf76a322187e45c0e8230d81774f451811d5
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: image/x-icon
last-modified: Sat, 02 Jul 2022 09:20:33 GMT
etag: W/"1819d5-260-5e2cf03d4936f-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O5n8sRdhXxC%2B6dO4C5G21bxl2jWIhWCx5kzsiAUffl3YfkBDhYQwGwNUCoMOg79%2FaLnxv17WXseePW8Hbp5KYfdnZysA86QEOVVPasrdOQKcnN9wzD68RAtf1jbMOeZjLyYVSqXK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653db4f6bb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/cdn-cgi/rum? | 104.26.11.31 | 204 No Content | 0 B |
URL HTTP/2vodafone-internet.it/cdn-cgi/rum? IP104.26.11.31:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
POST /cdn-cgi/rum? HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 7465
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Feb 2023 07:01:01 GMT
access-control-allow-origin: https://vodafone-internet.it
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 79e653dc98b1b4ee-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| u.heatmap.it/conf/vodafone-internet.it.js | 46.105.202.39 | 200 OK | 49 B |
URL HTTP/2u.heatmap.it/conf/vodafone-internet.it.js IP46.105.202.39:0
Hashd4ea387ca5224a350409c509e2b22355 07335f0567d1563604b1c9d0abf21268698aea02 7701b5c57d20eadf0f384724b62a014f6cd094ac1cbe6c8f9ac391d72a0dfc19
GET /conf/vodafone-internet.it.js HTTP/1.1
Host: u.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:56:22 GMT
content-type: text/javascript;charset=UTF-8
expires: Fri, 24 Feb 2023 07:01:22 GMT
cache-control: max-age=300
x-request-id: 1052967045
content-encoding: br
x-grace: full
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 49
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 35.165.197.103 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.165.197.103:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cNHc2o9Tfy5YYqUYpnUqeQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PTyNFSWaMPIKlUAHzwRpQWSk4rg=
|
|
| vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js | 104.26.11.31 | 200 OK | 7.9 kB |
URL HTTP/2vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js IP104.26.11.31:0
File typeUnicode text, UTF-8 text, with very long lines (23122) Hashe238dfa4ea4be23a55c04cc817fd138d f3afcf46ede0df129b4e07664a47392bca459189 9383cc9f81f4aa113727aad89a6c88d0411c818897403c0cf2a359f7f218e026
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /card/vendor/jquery-validate/jquery.validate.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1a0727-5add-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uBsL%2FzOGy4T5KPweaGcOj70il%2BnmMsH7TC3ZRzWAgKYgdMQ%2BVVAYhGkpTb%2Feh80JYj72%2BV%2Bia5xEM2KStoTL6g8r6iWwnxXfGhj9pjqbhn8u7kHz7gUx%2BrLpt8dUct50APHbzsGY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd8fb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| eu8.heatmap.it/log/pv?pid=113361&u=https%3A%2F%2Fvodafone-internet.it%2F&tpl=.&pt=Vodafone%20%7C%20Offerta%20Fibra%20e%20Adsl&t=335249 | 149.202.77.192 | 204 No Content | 0 B |
URL HTTP/1.1eu8.heatmap.it/log/pv?pid=113361&u=https%3A%2F%2Fvodafone-internet.it%2F&tpl=.&pt=Vodafone%20%7C%20Offerta%20Fibra%20e%20Adsl&t=335249 IP149.202.77.192:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /log/pv?pid=113361&u=https%3A%2F%2Fvodafone-internet.it%2F&tpl=.&pt=Vodafone%20%7C%20Offerta%20Fibra%20e%20Adsl&t=335249 HTTP/1.1
Host: eu8.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 24 Feb 2023 07:01:01 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Expires: Fri, 24 Feb 2023 07:01:00 GMT
Cache-Control: no-cache
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash98e2ebdefc03d3b428acd1cf198890c7 f0abb16d9a73455a3b53756fbe22f34c19a51cc5 0e733a7a2c8c801f2dfc2f647987541a76d3237df69da029cae251df6ac95938
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=744281721.1677222096&url=https%3A%2F%2Fvodafone-internet.it%2F>m=45be32m0 | 142.250.74.130 | 200 OK | 42 B |
URL HTTP/2pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=744281721.1677222096&url=https%3A%2F%2Fvodafone-internet.it%2F>m=45be32m0 IP142.250.74.130:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /pagead/landing?gcs=G100&gcd=G100&rnd=744281721.1677222096&url=https%3A%2F%2Fvodafone-internet.it%2F>m=45be32m0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 24 Feb 2023 07:01:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash4733770bf092ca1324e01dff373722a1 1524c31178714c399a4b4751744b261768c41277 26776ee98fd94df1d3adbadb39aaad24b847a689c2119c2ed62a70640f4b5b18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.225 | 200 OK | 503 B |
IP23.36.76.225:0 ASN#20940 Akamai International B.V.
Hashcd04d923e6b3cbd7cac3c56d18ca9016 7d3205fb454124635afcbfcf2265ce504c778ef1 fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg | 34.120.237.76 | 200 OK | 9.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfedefde8c4f90a6f10f769419f2ff485 35cbe3e6981dc9fd1bcbb8743c61ff28fde443fc 65adf7a2930673f45f83cafb75cde5ec3f61ed1bed2018cd27cd4da068e511ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9387
x-amzn-requestid: a2db2470-843a-4180-8cca-8338ed4237bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9E4GDcIAMF5cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb8-3a87935b42932f213cb9a7ee;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: l1tRZuNCzOvT9pYZy-izhx68s7DJtp_mrVjPrxntb-KP-FAqpZ85dg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:38:08 GMT
age: 33774
etag: "35cbe3e6981dc9fd1bcbb8743c61ff28fde443fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2a5f3d376fe6a3a78a5d1fe136f962fb 3e9b03cc296e954d63526a4e7e75beea3130fc3b c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: 3fd9f8c8-cf10-4222-a2cc-5f18ff7b2e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D3HqmoAMFeBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-352315613cc0c2bc7eb28e05;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGDTF9U77Y1pmqtYk-yDa2GsiRraTcwCOBV-yAzDPT2PvS89NeCtZg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:34:34 GMT
age: 33988
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3c525276d82309185ba5b9a0bde424d5 96ef51351075441f83d09834292f255d94cd7911 891bcdc08687c6280b63bd7312a925185272a374179fd7ca7bf62aec32408daf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11372
x-amzn-requestid: 77208ac4-31c7-4a46-9406-11f0a98a65ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D4H6IoAMFQBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-40611ab960eaadb202172abe;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AsEOTXIKoTdG7UQ_pSUfMvHtLsMHLt70DVeSQl2iIG0d5db3gfuk8g==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:46:23 GMT
age: 33279
etag: "96ef51351075441f83d09834292f255d94cd7911"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6df093-e4fa-441b-a18d-8d5eb3f8872b.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6df093-e4fa-441b-a18d-8d5eb3f8872b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdd41b65d04b02876ca020b4769ca7bcb aa00f3f35f4826c1987a9ec712b190607e78175b ab7b9af9a11ef8b8dece802beb9b88998ba07ecbaa5f64a624736ccb972e8f44
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6df093-e4fa-441b-a18d-8d5eb3f8872b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9860
x-amzn-requestid: 5bae7f8c-874f-45d6-908f-97c680037398
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Auq1FHPHIAMFWEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f5be86-5cac87a14c19b36011e5ac6f;Sampled=0
x-amzn-remapped-date: Wed, 22 Feb 2023 07:04:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZfmF7f34sOJ1La2RAByS6ZBqDYvBpZ-0mJlJ0Nj9nvG08xttDiwySA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 07:14:17 GMT
age: 85605
etag: "aa00f3f35f4826c1987a9ec712b190607e78175b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a98720b-53ac-4018-8bb9-955bb22a9e52.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a98720b-53ac-4018-8bb9-955bb22a9e52.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash78bcc318c65f1f7b827f7ff792f14595 6bd53a60048a57322c3fc5d12c9f849e38fd2765 d83a699697cb6c728563b667e82a538237472ec86f841b34bc5f7639c94702e8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a98720b-53ac-4018-8bb9-955bb22a9e52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11089
x-amzn-requestid: 8738c63f-1ac3-4ce9-afe7-d5bed232e4b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ax-wyHd6IAMF-WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7119e-1fe3416019806b2550524e41;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 07:11:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xymqCKJ4l9GYOEuebuGELmu8Qq0F8eg6rp790Z4aKV_U8alWeGWfCQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 07:52:40 GMT
age: 83302
etag: "6bd53a60048a57322c3fc5d12c9f849e38fd2765"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb3b6ebc-5855-4918-8e65-4c3468945c6b.jpeg | 34.120.237.76 | 200 OK | 5.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb3b6ebc-5855-4918-8e65-4c3468945c6b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3b580b7d86b6b2236519ec9b61645ff9 ff021ed34ca2c2996eb7ad1307d685c495e9c41e 9283f7e8c354fce1239ef737370c9abf85f2c362ac302bd63840d8d88e54779a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb3b6ebc-5855-4918-8e65-4c3468945c6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5901
x-amzn-requestid: 24747426-8c11-4fb8-8a72-e5d888d0fbd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9EkEGLIAMFaZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb6-3078e3ed3397c8f86c861607;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H5Nt8P25gc9rZRG4Olji8LjqmqddrXFnaHLtcCx2Jrls-m1gJNFdmA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:46:25 GMT
age: 33277
etag: "ff021ed34ca2c2996eb7ad1307d685c495e9c41e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/cdn-cgi/rum? | 104.26.11.31 | 204 No Content | 0 B |
URL HTTP/2vodafone-internet.it/cdn-cgi/rum? IP104.26.11.31:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
POST /cdn-cgi/rum? HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 549
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 24 Feb 2023 07:01:09 GMT
access-control-allow-origin: https://vodafone-internet.it
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 79e6540b7bfab4ee-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 | 104.16.57.101 | 200 OK | 0 B |
URL HTTP/2static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP104.16.57.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e653d80aa00b69-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /card/vendor/bootstrap-wizard/bootstrap.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1819e1-875d-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bu1NMuqv08GFwiqY5Uo6fs%2FCJcH3Lq192SaQmcWfwl9Jl9bBZVxZhRdYX%2FOStUYd%2FmyDqUNZIS1XP6G6FFIZl9LH%2BgPvxWX5SmFVlqB8MMtep5uay4DrlT90RtdMFYkZ%2FUN4aZc8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd88b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/img/V3.webp | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/img/V3.webp IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /img/V3.webp HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: image/webp
last-modified: Thu, 27 Oct 2022 18:54:05 GMT
etag: W/"1819ea-6f66-5ec08aa570dd1-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0tpVzVTRnTKyxIXuzX611QkPeGTR2V8cDav8wo12ocYIPCXaBunbnUgGeSFpFdDFTddrkq%2BMGppfQUPz9Xcckbe36wkIBeEPF3EMvauVLz8ORzr%2BnF6%2FQAUzrO%2B3oYNSVjBs4ANi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d92cdeb4ee-OSL
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/ | 104.26.11.31 | 200 OK | 0 B |
IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/html
last-modified: Thu, 23 Feb 2023 05:01:25 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1UlxC92mKsP88U2ZzTJUIMUMb3uxs1S9i7yZG4ivq6UKaUJyCZmtX1MYsRgD7lQijOVQSbuStCkbz5WSubsCggd979WQsB%2F4V57uXo4kNwIAaCpQl4uVINij%2FjIgZ0TA%2FjmbN3fe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d5b8c0b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1819e3-1b05-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9nEFsOcCgmYfdfjnC0RJtCkBg7D1rdoeGmqA%2FZLVBvKjCMbF0o3aZgV1cs9DO6fOMktJepvQgirGpN2iDJtpzqnAwLvhrwffEblEB3uhwfXh%2FzHlhc65ScwqaetrSPBJubio0w5n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd86b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/card/vendor/jquery/jquery.min.js | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/card/vendor/jquery/jquery.min.js IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /card/vendor/jquery/jquery.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1a0729-15287-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fVqJKnfjZzKqkKtH48lB7SdD3SPSGS5suWl0vxz3ciXiJKyQ6OjNYM1iWt4XR7O24bm95Nnywn8XCFGWJ1wkzeMZgDzYi9vYtD%2FhOKmomC3NFHFZC5xP8sgZ7VhE4d2EM9Gf4RYU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd91b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/vendor/bootstrap/css/bootstrap.min.css | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/vendor/bootstrap/css/bootstrap.min.css IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /vendor/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/css
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1a073c-27288-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JaWgTtV1OxmzAbPUAyHGGekF69C17Wq27hP8Pi%2F68jhJtLc7AaT%2B7CoFIjOF3zolGAiULtH4%2BmPMJreod9mnVeKKg4fB93u%2F2DvchNISElXse%2Bi%2Fg8NZg2SPIA7ryeRAJU4bFyp4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d77aadb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/css/landing-page.min.css | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/css/landing-page.min.css IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | quad9 | Sinkholed | |
GET /css/landing-page.min.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/css
last-modified: Wed, 06 Jul 2022 23:29:24 GMT
etag: W/"1819e7-766-5e32b56e153c3-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bps0xSn977qb73Zr9iXjHZoKyAaGimojhFlL92MU0t1NjATfPCr5kgIlxnNGbEoRsbdUHODmb1gVKG3zCdqodROSNNgoSsKq2%2BcPlZRMbQj9O90kfUdvgDr%2FwvwlCwH3Rw1hYUk0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ab8b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/img/vodafonelogo.webp | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/img/vodafonelogo.webp IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /img/vodafonelogo.webp HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
last-modified: Wed, 06 Jul 2022 23:23:42 GMT
etag: W/"181a2d-153c-5e32b42858354-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2c8yz7%2FucNTqVGt9JZ5UkWMHlhnGmHfQbSeqvLY207V2Q7on0mevODjZpRnlHmgvLo3gSQBq9x6mGMrs0E%2BIZSw%2BLUYB1SPp9Xp4unqcpQ%2Ffb%2F%2F%2BtZsj8tTixBKTijU9pRzIR19G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ab9b4ee-OSL
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/vendor/jquery/jquery.min.js | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/vendor/jquery/jquery.min.js IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /vendor/jquery/jquery.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:38 GMT
etag: W/"1a0763-15d84-5e286f5a0bb80-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BXYrniF9r1iacj9UfgWej7wqR%2Fer2xAtaKI96tmvA1BeEqXXvTV1iD909A4iNz4a5IyG1cAK1vExiiKj3OiHxXwH7nN51DiOJRHIQ4piHjyq0ZftFOkGS4ImEfAGUecQlwdf804K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd93b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/card/js/global.js | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/card/js/global.js IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /card/js/global.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1530
etag: W/"1819e0-5fa-5e286f5823700-gzip"
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B0VPlNPYB7CEaX9tGLZA5bgAU4XITvg965wRjao1aEnhQe%2Bx2R9nHPGyTE%2FMGVdXjVCip0GI0ZLDB96lNlMcuPlsmcPlv6MF8seFX%2FYa2wwfPDwkrWCyDKfZ402hI%2Fgyf%2FUtdxst"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd84b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=PT+Serif%7CFrancois+One&subset=latin%2Clatin-ext&display=swap | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=PT+Serif%7CFrancois+One&subset=latin%2Clatin-ext&display=swap IP142.250.74.106:0
GET /css?family=PT+Serif%7CFrancois+One&subset=latin%2Clatin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Feb 2023 07:01:01 GMT
date: Fri, 24 Feb 2023 07:01:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| vodafone-internet.it/img/bollinoverde.svg | 104.26.11.31 | 200 OK | 0 B |
URL HTTP/2vodafone-internet.it/img/bollinoverde.svg IP104.26.11.31:0
Analyzer | Verdict | Alert | openphish | Vodafone | | fortinet | Phishing | | quad9 | Sinkholed | |
GET /img/bollinoverde.svg HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/svg+xml
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"181a02-578-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QWy%2BtJBcWJMO%2BY3vLBjENAikm%2Bw%2B1OrW8sttbDbc5vlch54DNWw0hSs0bUHay8srzm%2FhdfCZ1Eoytvz2anksTJ391VIqGSM65idsDhR96VIr22fxiMS%2FGJjYslUoU2FsEJWsY%2F2K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78abbb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cookiehub.net/c2/css/2.4.11.css | 143.204.55.60 | 200 OK | 0 B |
URL HTTP/2cookiehub.net/c2/css/2.4.11.css IP143.204.55.60:0
GET /c2/css/2.4.11.css HTTP/1.1
Host: cookiehub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Fri, 24 Feb 2023 02:26:12 GMT
last-modified: Wed, 21 Dec 2022 23:39:11 GMT
etag: W/"c9978fccc00e99b936b78b1afa12b71f"
x-amz-server-side-encryption: AES256
x-amz-version-id: se9wT0DRsMu2YoXyXqnLY3kRTJTcqEPY
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J87eVpGt-LYcxqmYy3oH-5E3PNq6HiC7KivGybgGDuwjhhnwNuwKPQ==
age: 16490
cache-control: max-age=86400
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|