Report - vodafone-internet.it/

Report Overview

Submitted URL
vodafone-internet.it/
IP
104.26.11.31
ASN
#13335 CLOUDFLARENET
Submitted
2023-02-24 07:01:10
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
114

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T18:12:07Z	2.4 kB	4.9 kB	142.250.74.131
eu8.heatmap.it	316636	2018-01-18T20:02:33Z	2023-03-12T10:50:00Z	495 B	210 B	149.202.77.192
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-14T05:09:04Z	3.4 kB	8.9 kB	23.36.76.225
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T18:13:28Z	337 B	1.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-14T05:09:37Z	413 B	5.9 kB	34.160.144.191
vodafone-internet.it	unknown	2022-07-02T00:03:52Z	2023-03-13T12:01:21Z	10 kB	140 kB	104.26.11.31
u.heatmap.it	30294	2013-04-19T08:35:00Z	2023-03-13T09:50:50Z	395 B	414 B	46.105.202.39
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-14T05:17:01Z	465 B	393 B	104.16.57.101
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-14T02:50:33Z	447 B	630 B	142.250.74.106
cookiehub.net	49609	2018-11-07T22:21:05Z	2023-03-13T07:27:27Z	399 B	585 B	143.204.55.60
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-14T05:09:37Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-14T05:09:38Z	606 B	127 B	35.165.197.103
pagead2.googlesyndication.com	101	2021-02-20T16:52:05Z	2023-03-14T04:22:09Z	539 B	641 B	142.250.74.130
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	63 kB	34.120.237.76
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-14T08:09:39Z	341 B	603 B	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone
2023-02-23	medium	vodafone-internet.it/	Vodafone

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-24	medium	vodafone-internet.it/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	Phishing
2023-02-24	medium	vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js	Phishing
2023-02-24	medium	vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js	Phishing
2023-02-24	medium	vodafone-internet.it/img/V3.webp	Phishing
2023-02-24	medium	vodafone-internet.it/	Phishing
2023-02-24	medium	vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js	Phishing
2023-02-24	medium	vodafone-internet.it/card/vendor/jquery/jquery.min.js	Phishing
2023-02-24	medium	vodafone-internet.it/img/vodafonelogo.webp	Phishing
2023-02-24	medium	vodafone-internet.it/vendor/jquery/jquery.min.js	Phishing
2023-02-24	medium	vodafone-internet.it/card/js/global.js	Phishing
2023-02-24	medium	vodafone-internet.it/img/bollinoverde.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed
2023-02-24	medium	vodafone-internet.it	Sinkholed

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	17 kB	2023-03-08	2024-02-28
Pretty URL static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:00 Last Seen2024-02-28 12:44:37 Times Seen1362 Hash 33100f2355611b2375f05486299abf05 0b2d1b75f6695e67b884bee2eb72165d6e881a26 0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3 Loading...

	vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js	23 kB	2023-03-07	2024-04-15
Pretty URL vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:52 Last Seen2024-04-15 20:34:02 Times Seen984 Hash 93c1dd8416ac2af1850652d5b620a142 6a76e4c7db479053350580469aa010febfdcacd0 17a879e50c3ab3078afaded288e257fb66e94806b76ff7e796b54226f9848f50 Loading...

	u.heatmap.it/log.js	27 kB	2023-03-07	2024-02-12
Pretty URL u.heatmap.it/log.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:18 Last Seen2024-02-12 06:30:14 Times Seen236 Hash 2c8c474cec023a5432131bbb33e4b122 20bc5f385e7f388a7ea76a45a0b5306d7d70828a 008702ed20b35006a694d4dc03dbb3f38c759a7db77b016857bd3641e7b54ce7 Loading...

	u.heatmap.it/conf/vodafone-internet.it.js	44 B	2023-03-14	2023-03-14
Pretty URL u.heatmap.it/conf/vodafone-internet.it.js IP 46.105.202.39 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:48:34 Last Seen2023-03-14 09:48:34 Times Seen1 Hash 2b6468673ce4dafc305d7887735da9af d4a0edf26bce68a0a83f512f35dc6cf59fbd33ca b77082ea3bb44cc40da9418a1ce518901cfad94be125aecc86dfefe7cb656cd2 Loading...

	vodafone-internet.it/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	12 kB	2023-03-07	2024-04-19
Pretty URL vodafone-internet.it/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-19 10:49:24 Times Seen42898 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	vodafone-internet.it/vendor/bootstrap/js/bootstrap.bundle.min.js	84 kB	2023-03-07	2024-04-18
Pretty URL vodafone-internet.it/vendor/bootstrap/js/bootstrap.bundle.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:43 Last Seen2024-04-18 12:01:12 Times Seen7243 Hash 7f389f5d2622ce2090eca7c36bcb90bc ab27031159724e2421f6ff5c70f48e657abe9d39 8d7089253dca29c9cd8d9deb7ec69b0a3d445f88f6a26478c719be1f90adcb01 Loading...

	vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js	35 kB	2023-03-07	2024-04-16
Pretty URL vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-16 20:02:06 Times Seen1323 Hash 281cd50dd9f58c5550620fc148a7bc39 dfb8410ffc10a57d69b81620087c5a0b6027765a 484081bfe6c76d77610eb71a6e71206fe5304d62c037f058b403592192069306 Loading...

	vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js	6.9 kB	2023-03-09	2024-02-20
Pretty URL vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2024-02-20 04:48:41 Times Seen18 Hash 238df71a21377a7fe63d5f14a37bbf01 7b55f593294579fa27ae52ef727d572b395e7ab5 68b1c52929075b718094bbdcaf73434a9e8230082fbd00bcb85e02cdffa34d10 Loading...

	vodafone-internet.it/card/js/global.js	805 B	2023-03-14	2023-03-14
Pretty URL vodafone-internet.it/card/js/global.js IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:48:34 Last Seen2023-03-14 09:48:34 Times Seen1 Hash 30f7590b1a6feadbc1771126656fd579 3c7622770e18aa25bce4d9c49eb029a603f4fc6b 0759004fc5e4464b655aae9a80a945fa2b96973f5709be4c04beaaa66af457d9 Loading...

	vodafone-internet.it/	190 B	2023-03-07	2024-02-12
Pretty URL vodafone-internet.it/ IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38:59 Last Seen2024-02-12 06:30:11 Times Seen97 Hash 3bdd50e41eb7e360739bcc69841c9222 b2330b890bcc7ddfa4640a81e56330bb8a5a4e1d e6937cd629498af6c9ea7dd13606fdd21875bcc815a93ac4b7f0219b36a2aa14 Loading...

	www.googletagmanager.com/gtag/js?id=AW-10935671887	181 kB	2023-03-14	2023-03-14
Pretty URL www.googletagmanager.com/gtag/js?id=AW-10935671887 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:48:34 Last Seen2023-03-14 09:48:34 Times Seen1 Hash d36e05103b1374e6b033dfa9394826e3 a5ba2af290604a23157b1508719f0f30becd6151 831cd9a8f9b61c4d1637f71dc890921fc0db62807c8d39d3597e37bedf4a3895 Loading...

	cdn.usefathom.com/script.js	6.0 kB	2023-03-13	2023-03-26
Pretty URL cdn.usefathom.com/script.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:06:21 Last Seen2023-03-26 01:08:42 Times Seen3 Hash 69ca573281e8997b6030a0dc05377211 f9b50af585529c8c5c24740bd5dbadf98b8d6f8e a08a36382b2b15278e2ec7b6a6029f59ede9ad29ff1ae1553291f0dd9bbaeea4 Loading...

	vodafone-internet.it/vendor/jquery/jquery.min.js	90 kB	2023-03-07	2024-04-19
Pretty URL vodafone-internet.it/vendor/jquery/jquery.min.js IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-19 12:10:37 Times Seen138273 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	cookiehub.net/c2/f59855b3.js	86 kB	2023-03-14	2023-03-14
Pretty URL cookiehub.net/c2/f59855b3.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 09:48:34 Last Seen2023-03-14 09:48:34 Times Seen1 Hash a2e5d39ad389cc6e467ba7646b62ce8a 9122988b5c9b36e66177a6ae7bf794396b4812e1 f99cb3b90ec2887b71c9833b312b07e40328d91158f2d4bd0bea716159b6ee1f Loading...

	vodafone-internet.it/	459 B	2023-03-09	2023-11-28
Pretty URL vodafone-internet.it/ IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2023-11-28 15:49:02 Times Seen8 Hash cd2fdd3eb7cd75f6e3a26be457bb00ef cc428e2e58968a84e26cda11eb17dc014c9ee114 6e678da31bb60d9828c0fd0a0b957e69060b19f3f9c1dc61500821147ae10621 Loading...

	vodafone-internet.it/	155 B	2023-03-09	2023-10-13
Pretty URL vodafone-internet.it/ IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2023-10-13 15:00:58 Times Seen7 Hash 0f50569c1c28872ce2f780bc79928bb7 53ae91c5fddecefaa89bab54075bb3cfc0a35da6 64956ae3c64c8ad5cb4fc4123e9c2ab60e53037aa05372c292e4823848389680 Loading...

	vodafone-internet.it/	2.0 kB	2023-03-09	2024-02-20
Pretty URL vodafone-internet.it/ IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:47:00 Last Seen2024-02-20 04:48:40 Times Seen9 Hash d7018144a3ba38daac726dbf959d31c7 7d9e84348226aaea89352a4cf00048bd0f0cba71 059a78b8c992a7c266a9c2a926b61a7e2e8f532df3c33db56eb83d1157a6cf4c Loading...

	vodafone-internet.it/card/vendor/jquery/jquery.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL vodafone-internet.it/card/vendor/jquery/jquery.min.js IP 104.26.11.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2024-04-19 07:42:13 Times Seen2181 Hash 473957cfb255a781b42cb2af51d54a3b 67bdacbd077ee59f411109fd119ee9f58db15a5f 75b707d8761e2bfbd25fbd661f290a4f7fd11c48e1bf53a36dc6bd8a0034fa35 Loading...

HTTP Transactions (58)

URL IP Response Size

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
67fc460ed2f69dde3c410ec607ef3510
ba9f582ec321351e5c06c9b2c381f06b685ef274
85df74fac7d59d76840b6359bac24648fede201c0048f2a8382af6468225ffb8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85DF74FAC7D59D76840B6359BAC24648FEDE201C0048F2A8382AF6468225FFB8"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12761
Expires: Fri, 24 Feb 2023 10:33:41 GMT
Date: Fri, 24 Feb 2023 07:01:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6f313739c4c44174fc9a97ac63621b46
319da68d06694330ad9f7901bcde1ca0a6eeac0d
321236ee07769c741890815bc56fd2700ff1974b0534368b9ff2e96320ae4fee

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "321236EE07769C741890815BC56FD2700FF1974B0534368B9FF2E96320AE4FEE"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17464
Expires: Fri, 24 Feb 2023 11:52:04 GMT
Date: Fri, 24 Feb 2023 07:01:00 GMT
Connection: keep-alive

ocsp.pki.goog/s/gts1p5/hZaYaCrqGjk

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/hZaYaCrqGjk
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5f76232fef743cde1e701fb164157bde
42c5d817f2a689ffd1de57f07226d553bd285819
3a308050922d84c4ba9468cde3e8fe6fca4b570a5a16394b4c622bc36e812a6d

HTTP Headers

POST /s/gts1p5/hZaYaCrqGjk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Feb 2023 06:54:00 GMT
content-type: application/json
age: 420
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7fb59e5d3cdf08b94e5f41fdeb9aec6c
ff644039db3b9f74d7e2fab10f93581bea10614a
861573a00d75364e15783c5e448c4f8b4da48b38d9beba3ebd33a87f993489a5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "861573A00D75364E15783C5E448C4F8B4DA48B38D9BEBA3EBD33A87F993489A5"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7522
Expires: Fri, 24 Feb 2023 09:06:22 GMT
Date: Fri, 24 Feb 2023 07:01:00 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 1CPrMYYUgGoLHbRhWzOhcPeIj4OC4880icZCgqwb/V7hzwlYiinRhmcWfHJp+iHr+Qpu0IjckYo=
x-amz-request-id: WDWP5T7DETJ42F0F
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Feb 2023 06:49:23 GMT
age: 697
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

vodafone-internet.it/img/smile.png

104.26.11.31

200 OK

11 kB

URL HTTP/2
vodafone-internet.it/img/smile.png
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
11 kB (10938 bytes)
Hash
b8024c0ae730ca05102f90ef0e593446
2a7e6cf154dce81fee10b6ba0699318fe75b3497
05056636fd154af32f44e997203f28b8259bc6b11c0b225c27f35cd597edcb3c

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /img/smile.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 10938
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=21550
content-disposition: inline; filename="smile.webp"
vary: Accept
etag: "180f19-542e-5f4fb297de182"
last-modified: Sat, 18 Feb 2023 15:34:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d7CJ4hO54Vn4eA6lSTN8PwWuGsw2sykuliIiQyg18NzaaJdLStuv0q3BopZazpcVjN2SsIQittyTN11wR1paKxs4JoH0dhVIyEo07ht4mL1nwb9ntYbl3mG%2FENBMyvMbkdziA5cj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac0b4ee-OSL
X-Firefox-Spdy: h2

vodafone-internet.it/img/unlimited.png

104.26.11.31

200 OK

462 B

URL HTTP/2
vodafone-internet.it/img/unlimited.png
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
462 B (462 bytes)
Hash
89f65f4c27b95cbf348b9304e73b97f8
c6c89e5120cc702471bc02e0ee0f1a44502eabf9
04ba5aa336565b376f671392cb52abcce1e5c27a5ee27817fbd44efc6b17ec99

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /img/unlimited.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 462
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=998
content-disposition: inline; filename="unlimited.webp"
vary: Accept
etag: "181a25-3e6-5ebd8de9ffe6d"
last-modified: Tue, 25 Oct 2022 09:52:44 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tm1GH234ZNfOVAqfFcrTKeiHXlLgx4eNob84xaVEW3c17iOi0ArBVuF1eIiztpHpQie%2FFM9zleqrmWgyaD3M8sbH8dHX%2FmUPq01pbWI8xjLlrCJE0n%2FMKIu9I0okIFr8vM5tcBcT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78abdb4ee-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
ae80128001f907652136b511f0f80830
197da26a40cc7e0203135a0b50c928b9f418c4d5
2fa53a14e332a727af32ca3e125ce08900b8f8e1c4fffe4a53065c83b3ce0b23

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6441
Cache-Control: max-age=91740
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:00 GMT
Etag: "63f70adf-116"
Expires: Sat, 25 Feb 2023 08:30:00 GMT
Last-Modified: Thu, 23 Feb 2023 06:42:39 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 278

vodafone-internet.it/img/insieme.png

104.26.11.31

200 OK

2.0 kB

URL HTTP/2
vodafone-internet.it/img/insieme.png
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.0 kB (2004 bytes)
Hash
e056ba903ca3802fee4f78bc4b56c61b
57899d637dac21dd64be126322e4194ed09acd29
f86630b218914b292731f13b3b43bbf6b0538fa5ac0d1221a5ee3edce8fe20bb

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /img/insieme.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 2004
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3043
content-disposition: inline; filename="insieme.webp"
vary: Accept
etag: "181a17-be3-5ed6cdb61ee35"
last-modified: Mon, 14 Nov 2022 11:51:16 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Ftfo4qTZafhmVHM0zf%2Br6jzOc6K9vJJPY0BZUO6dskhKd6L%2BASkxe7t7QvWgN5igPhOYRRGsquMXDi%2FX5VHbjPnFUC5ysd6yXGdZG%2F%2BPpCSGpCqIWwP37aK2dF5tjdYcBa2YpWuM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac4b4ee-OSL
X-Firefox-Spdy: h2

vodafone-internet.it/img/semplice.png

104.26.11.31

200 OK

1.9 kB

URL HTTP/2
vodafone-internet.it/img/semplice.png
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.9 kB (1910 bytes)
Hash
243932226d6586285416fe273816ac18
558b88b10a5a2761367be8f61b40a59e7ca6d723
b1cd2a93f94e9e270baf1abd14cd67bf8c05f18062ddc745f0e6f1353573088b

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /img/semplice.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 1910
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3650
content-disposition: inline; filename="semplice.webp"
vary: Accept
etag: "181a20-e42-5e28720c81880"
last-modified: Tue, 28 Jun 2022 19:34:42 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oCSVleXZvR%2BbnoxP0Baah7j3a9iTvPfKeCBdanaIAoIdTKnlUdIBcLp%2FQqDF%2FoYWIkmnsJhsctjjTTvQor%2FP1l6%2BEnuuXSkmcy0mKWG1avGBgJDC%2BZTGXubOgQvtoYbAOansUygq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac5b4ee-OSL
X-Firefox-Spdy: h2

vodafone-internet.it/img/icozerocosti.png

104.26.11.31

200 OK

1.3 kB

URL HTTP/2
vodafone-internet.it/img/icozerocosti.png
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.3 kB (1340 bytes)
Hash
41d314e0cfa3cd79533f44beaac9f52d
a6cac2b8631a276b1b69ebe61992993fae169008
e7e9c8d1ad52a86b64e10b04f9043e96dec3186fb3866340d6b5e17c25dacdc5

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /img/icozerocosti.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 1340
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=5916
content-disposition: inline; filename="icozerocosti.webp"
vary: Accept
etag: "181a16-171c-5e286f5823700"
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eztzL8cbjcvenQCjsNnjj2J7%2Bixs1PWXJYkAc6KFEU9TP2urWfagfad%2F99MWlDNR5vxaRHCHfhlpuNG8ZhXePMEf%2Bdbb1NJ41vTMwg7FP6FeC5PLjqZmKKcHXZSueFywC3sqlcPg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac1b4ee-OSL
X-Firefox-Spdy: h2

vodafone-internet.it/img/Fwa.png

104.26.11.31

200 OK

1.4 kB

URL HTTP/2
vodafone-internet.it/img/Fwa.png
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
1.4 kB (1390 bytes)
Hash
8b17e57ba0d205318c4288b7f666c56d
d0db8098959770341dc7e8287e6bf77b4eaf6265
3fb3ba24fef8c5336e63c91d4f889e1723dfb73920c27f054eaf0a5e1246953b

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /img/Fwa.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
content-length: 1390
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2554
content-disposition: inline; filename="Fwa.webp"
vary: Accept
etag: "1819e8-9fa-5e954835cbeb1"
last-modified: Fri, 23 Sep 2022 09:07:53 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xj7TMNxyvo3UrXH2ZY1QB1BA%2FM5FklgtjSQTDkobwC4cRa1vHoCHG6MJxxYjGkLOiZowM9h40iMT%2Fd1fxXp6LCXF%2FENLRVdSuuN4IgZUZWwE1kEzh6vs3v%2BxaErtZ5nUkfNCcy6A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ac6b4ee-OSL
X-Firefox-Spdy: h2

vodafone-internet.it/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.26.11.31

200 OK

4.2 kB

URL HTTP/2
vodafone-internet.it/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
4.2 kB (4215 bytes)
Hash
a6c26597a16b68e388a1ca4053d30343
e14d9331761ed740de151a03828d207b1906dd1b
507181a84232b8b64306c8ecd01142ee68f6a993e5ed02497bad22bef5958e2e

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: application/javascript
last-modified: Wed, 22 Feb 2023 10:50:59 GMT
etag: W/"63f5f393-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rWqYkCvflj9p%2BC3WwytC5PAgKSug3ocDGztJLPDM53RMS8WgaVf5SppZlh30ZQhElIo823la2WNxMKih6%2Fuhtf5oF9HssmRLy0%2BKfNSMX9XvUqcvazhQtTsowgC%2F%2FlcSotqP4TVm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e653d78ab6b4ee-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 26 Feb 2023 07:01:00 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
56cd85a02d031d2f7b794f1f2cfda4eb
878162e77393da15f0a1c8bf8a83a777a6caf317
15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vodafone-internet.it/card/css/main.css

104.26.11.31

200 OK

69 kB

URL HTTP/2
vodafone-internet.it/card/css/main.css
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
69 kB (68732 bytes)
Hash
798e5bdee1d9921f9dac150d632b828e
2f4d702f284c3439b9b93a3918a50c9306b8d060
64be14b1ed338af362a3c465ef3f8e11e88d681aa6b934c2eb76f2ec277868f9

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /card/css/main.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 09:15:06 GMT
etag: W/"1819de-3165-5e9407f508f87-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dewIX2zZBFjRrkOvG5%2F5xXIpkoHpkwMHvyIuDMHlQEdL6o%2FAymmiKmu1ueBG%2BpnLb3mRXVS0v0ublg3ht0hbIA6vcrw07ko7Yklq3UGbulWR6taGBfSEJgh354UewIloSfyk8DsJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ab0b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b1b3ed9ddbb502ccdccb948cc4d84f4
dbde2b113c19d246c974885ffa86a10594d3f128
42e1714838db0490fe047aa90b96d86bd8dba3d558a0e9ffa6fe926aef705616

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "42E1714838DB0490FE047AA90B96D86BD8DBA3D558A0E9FFA6FE926AEF705616"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2766
Expires: Fri, 24 Feb 2023 07:47:07 GMT
Date: Fri, 24 Feb 2023 07:01:01 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
56cd85a02d031d2f7b794f1f2cfda4eb
878162e77393da15f0a1c8bf8a83a777a6caf317
15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5fa728a339ca32e616d483e61d0aebcd
6a63966de94d16390c8f1e47e5b67fe5bb67f7cd
7e83729d554404e59f1f1ff809ac776d3596487e2b062a1e38af8e29f33c0686

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E83729D554404E59F1F1FF809AC776D3596487E2B062A1E38AF8E29F33C0686"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7447
Expires: Fri, 24 Feb 2023 09:05:08 GMT
Date: Fri, 24 Feb 2023 07:01:01 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
295ecb42da084d2556789eada5291422
24c3605ff6984776ca77a2aa3b3b4bba4267f76f
f787cdc01fe5b6c0889f133cdf9cd0e38973f4cb8515014e8a14418521af04bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vodafone-internet.it/img/favicon-152.png

104.26.11.31

200 OK

13 kB

URL HTTP/2
vodafone-internet.it/img/favicon-152.png
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
13 kB (13436 bytes)
Hash
5b6e3df101c025173bbe0cdbb892d8f8
77215a98f22e27bb6af33503a2fda18d7aaf5683
95ae6952f59d6459c3067a548a18383c41ac1dbb477b68d8869bab2e87699491

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /img/favicon-152.png HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: image/webp
content-length: 13436
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=20098
content-disposition: inline; filename="favicon-152.webp"
vary: Accept
etag: "181a09-4e82-5e8cb87458083"
last-modified: Fri, 16 Sep 2022 13:42:09 GMT
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HXVcMh%2F18c4v979bttPtKDonxKxEheFQF4xS3DC2%2FtlV4P3yGfW%2B1vBIb6z%2BgnnJ3b4YDFOSaDSkyRpOp0JKoQpQ3PHRVKYDChbdHj58kZrquH0i7ccG%2FqVqeZEuAhsnmiN9iA7F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653db4f69b4ee-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
295ecb42da084d2556789eada5291422
24c3605ff6984776ca77a2aa3b3b4bba4267f76f
f787cdc01fe5b6c0889f133cdf9cd0e38973f4cb8515014e8a14418521af04bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

vodafone-internet.it/favicon.ico

104.26.11.31

200 OK

11 kB

URL HTTP/2
vodafone-internet.it/favicon.ico
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11144 bytes)
Hash
54b238201c5a7a095e8ee7fb47792043
d03b7160a55e9919fe1c2d2c56b65d585c9e7f63
55029c8a9df4a8c84b09ed0cb2e2cf76a322187e45c0e8230d81774f451811d5

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: image/x-icon
last-modified: Sat, 02 Jul 2022 09:20:33 GMT
etag: W/"1819d5-260-5e2cf03d4936f-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O5n8sRdhXxC%2B6dO4C5G21bxl2jWIhWCx5kzsiAUffl3YfkBDhYQwGwNUCoMOg79%2FaLnxv17WXseePW8Hbp5KYfdnZysA86QEOVVPasrdOQKcnN9wzD68RAtf1jbMOeZjLyYVSqXK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653db4f6bb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

vodafone-internet.it/cdn-cgi/rum?

104.26.11.31

204 No Content

0 B

URL HTTP/2
vodafone-internet.it/cdn-cgi/rum?
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 7465
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Fri, 24 Feb 2023 07:01:01 GMT
access-control-allow-origin: https://vodafone-internet.it
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 79e653dc98b1b4ee-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

u.heatmap.it/conf/vodafone-internet.it.js

46.105.202.39

200 OK

49 B

URL HTTP/2
u.heatmap.it/conf/vodafone-internet.it.js
IP
46.105.202.39:0
ASN
#16276 OVH SAS

File type
ASCII text
Size
49 B (49 bytes)
Hash
d4ea387ca5224a350409c509e2b22355
07335f0567d1563604b1c9d0abf21268698aea02
7701b5c57d20eadf0f384724b62a014f6cd094ac1cbe6c8f9ac391d72a0dfc19

HTTP Headers

GET /conf/vodafone-internet.it.js HTTP/1.1
Host: u.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 06:56:22 GMT
content-type: text/javascript;charset=UTF-8
expires: Fri, 24 Feb 2023 07:01:22 GMT
cache-control: max-age=300
x-request-id: 1052967045
content-encoding: br
x-grace: full
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 49
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.165.197.103

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.165.197.103:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cNHc2o9Tfy5YYqUYpnUqeQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PTyNFSWaMPIKlUAHzwRpQWSk4rg=

vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js

104.26.11.31

200 OK

7.9 kB

URL HTTP/2
vodafone-internet.it/card/vendor/jquery-validate/jquery.validate.min.js
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (23122)
Size
7.9 kB (7859 bytes)
Hash
e238dfa4ea4be23a55c04cc817fd138d
f3afcf46ede0df129b4e07664a47392bca459189
9383cc9f81f4aa113727aad89a6c88d0411c818897403c0cf2a359f7f218e026

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /card/vendor/jquery-validate/jquery.validate.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1a0727-5add-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uBsL%2FzOGy4T5KPweaGcOj70il%2BnmMsH7TC3ZRzWAgKYgdMQ%2BVVAYhGkpTb%2Feh80JYj72%2BV%2Bia5xEM2KStoTL6g8r6iWwnxXfGhj9pjqbhn8u7kHz7gUx%2BrLpt8dUct50APHbzsGY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd8fb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

eu8.heatmap.it/log/pv?pid=113361&u=https%3A%2F%2Fvodafone-internet.it%2F&tpl=.&pt=Vodafone%20%7C%20Offerta%20Fibra%20e%20Adsl&t=335249

149.202.77.192

204 No Content

0 B

URL HTTP/1.1
eu8.heatmap.it/log/pv?pid=113361&u=https%3A%2F%2Fvodafone-internet.it%2F&tpl=.&pt=Vodafone%20%7C%20Offerta%20Fibra%20e%20Adsl&t=335249
IP
149.202.77.192:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /log/pv?pid=113361&u=https%3A%2F%2Fvodafone-internet.it%2F&tpl=.&pt=Vodafone%20%7C%20Offerta%20Fibra%20e%20Adsl&t=335249 HTTP/1.1
Host: eu8.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 24 Feb 2023 07:01:01 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Expires: Fri, 24 Feb 2023 07:01:00 GMT
Cache-Control: no-cache

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
98e2ebdefc03d3b428acd1cf198890c7
f0abb16d9a73455a3b53756fbe22f34c19a51cc5
0e733a7a2c8c801f2dfc2f647987541a76d3237df69da029cae251df6ac95938

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=744281721.1677222096&url=https%3A%2F%2Fvodafone-internet.it%2F&gtm=45be32m0

142.250.74.130

200 OK

42 B

URL HTTP/2
pagead2.googlesyndication.com/pagead/landing?gcs=G100&gcd=G100&rnd=744281721.1677222096&url=https%3A%2F%2Fvodafone-internet.it%2F&gtm=45be32m0
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

POST /pagead/landing?gcs=G100&gcd=G100&rnd=744281721.1677222096&url=https%3A%2F%2Fvodafone-internet.it%2F&gtm=45be32m0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 24 Feb 2023 07:01:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4733770bf092ca1324e01dff373722a1
1524c31178714c399a4b4751744b261768c41277
26776ee98fd94df1d3adbadb39aaad24b847a689c2119c2ed62a70640f4b5b18

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Feb 2023 07:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cd04d923e6b3cbd7cac3c56d18ca9016
7d3205fb454124635afcbfcf2265ce504c778ef1
fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cd04d923e6b3cbd7cac3c56d18ca9016
7d3205fb454124635afcbfcf2265ce504c778ef1
fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cd04d923e6b3cbd7cac3c56d18ca9016
7d3205fb454124635afcbfcf2265ce504c778ef1
fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cd04d923e6b3cbd7cac3c56d18ca9016
7d3205fb454124635afcbfcf2265ce504c778ef1
fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.225

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.225:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cd04d923e6b3cbd7cac3c56d18ca9016
7d3205fb454124635afcbfcf2265ce504c778ef1
fc857fad800eb3c6f2a3f28007b1b81f2a95e4968d376f47238a681f9c958475

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC857FAD800EB3C6F2A3F28007B1B81F2A95E4968D376F47238A681F9C958475"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7933
Expires: Fri, 24 Feb 2023 09:13:15 GMT
Date: Fri, 24 Feb 2023 07:01:02 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9387 bytes)
Hash
fedefde8c4f90a6f10f769419f2ff485
35cbe3e6981dc9fd1bcbb8743c61ff28fde443fc
65adf7a2930673f45f83cafb75cde5ec3f61ed1bed2018cd27cd4da068e511ea

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4763b5fd-51d2-46bb-a306-ce5d0799eca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9387
x-amzn-requestid: a2db2470-843a-4180-8cca-8338ed4237bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9E4GDcIAMF5cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb8-3a87935b42932f213cb9a7ee;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: l1tRZuNCzOvT9pYZy-izhx68s7DJtp_mrVjPrxntb-KP-FAqpZ85dg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:38:08 GMT
age: 33774
etag: "35cbe3e6981dc9fd1bcbb8743c61ff28fde443fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9093 bytes)
Hash
2a5f3d376fe6a3a78a5d1fe136f962fb
3e9b03cc296e954d63526a4e7e75beea3130fc3b
c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: 3fd9f8c8-cf10-4222-a2cc-5f18ff7b2e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D3HqmoAMFeBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-352315613cc0c2bc7eb28e05;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGDTF9U77Y1pmqtYk-yDa2GsiRraTcwCOBV-yAzDPT2PvS89NeCtZg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:34:34 GMT
age: 33988
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11372 bytes)
Hash
3c525276d82309185ba5b9a0bde424d5
96ef51351075441f83d09834292f255d94cd7911
891bcdc08687c6280b63bd7312a925185272a374179fd7ca7bf62aec32408daf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5ed54f-4b9c-404c-9c98-709b6bafc2a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11372
x-amzn-requestid: 77208ac4-31c7-4a46-9406-11f0a98a65ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D4H6IoAMFQBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-40611ab960eaadb202172abe;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AsEOTXIKoTdG7UQ_pSUfMvHtLsMHLt70DVeSQl2iIG0d5db3gfuk8g==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:46:23 GMT
age: 33279
etag: "96ef51351075441f83d09834292f255d94cd7911"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6df093-e4fa-441b-a18d-8d5eb3f8872b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9860 bytes)
Hash
dd41b65d04b02876ca020b4769ca7bcb
aa00f3f35f4826c1987a9ec712b190607e78175b
ab7b9af9a11ef8b8dece802beb9b88998ba07ecbaa5f64a624736ccb972e8f44

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6df093-e4fa-441b-a18d-8d5eb3f8872b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9860
x-amzn-requestid: 5bae7f8c-874f-45d6-908f-97c680037398
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Auq1FHPHIAMFWEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f5be86-5cac87a14c19b36011e5ac6f;Sampled=0
x-amzn-remapped-date: Wed, 22 Feb 2023 07:04:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZfmF7f34sOJ1La2RAByS6ZBqDYvBpZ-0mJlJ0Nj9nvG08xttDiwySA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 07:14:17 GMT
age: 85605
etag: "aa00f3f35f4826c1987a9ec712b190607e78175b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a98720b-53ac-4018-8bb9-955bb22a9e52.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11089 bytes)
Hash
78bcc318c65f1f7b827f7ff792f14595
6bd53a60048a57322c3fc5d12c9f849e38fd2765
d83a699697cb6c728563b667e82a538237472ec86f841b34bc5f7639c94702e8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a98720b-53ac-4018-8bb9-955bb22a9e52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11089
x-amzn-requestid: 8738c63f-1ac3-4ce9-afe7-d5bed232e4b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ax-wyHd6IAMF-WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7119e-1fe3416019806b2550524e41;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 07:11:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xymqCKJ4l9GYOEuebuGELmu8Qq0F8eg6rp790Z4aKV_U8alWeGWfCQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 07:52:40 GMT
age: 83302
etag: "6bd53a60048a57322c3fc5d12c9f849e38fd2765"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb3b6ebc-5855-4918-8e65-4c3468945c6b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5901 bytes)
Hash
3b580b7d86b6b2236519ec9b61645ff9
ff021ed34ca2c2996eb7ad1307d685c495e9c41e
9283f7e8c354fce1239ef737370c9abf85f2c362ac302bd63840d8d88e54779a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb3b6ebc-5855-4918-8e65-4c3468945c6b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5901
x-amzn-requestid: 24747426-8c11-4fb8-8a72-e5d888d0fbd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9EkEGLIAMFaZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb6-3078e3ed3397c8f86c861607;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H5Nt8P25gc9rZRG4Olji8LjqmqddrXFnaHLtcCx2Jrls-m1gJNFdmA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:46:25 GMT
age: 33277
etag: "ff021ed34ca2c2996eb7ad1307d685c495e9c41e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

vodafone-internet.it/cdn-cgi/rum?

104.26.11.31

204 No Content

0 B

URL HTTP/2
vodafone-internet.it/cdn-cgi/rum?
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 549
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Fri, 24 Feb 2023 07:01:09 GMT
access-control-allow-origin: https://vodafone-internet.it
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 79e6540b7bfab4ee-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993

104.16.57.101

200 OK

0 B

URL HTTP/2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
104.16.57.101:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vodafone-internet.it
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 79e653d80aa00b69-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/card/vendor/bootstrap-wizard/bootstrap.min.js
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /card/vendor/bootstrap-wizard/bootstrap.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1819e1-875d-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bu1NMuqv08GFwiqY5Uo6fs%2FCJcH3Lq192SaQmcWfwl9Jl9bBZVxZhRdYX%2FOStUYd%2FmyDqUNZIS1XP6G6FFIZl9LH%2BgPvxWX5SmFVlqB8MMtep5uay4DrlT90RtdMFYkZ%2FUN4aZc8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd88b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

vodafone-internet.it/img/V3.webp

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/img/V3.webp
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /img/V3.webp HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: image/webp
last-modified: Thu, 27 Oct 2022 18:54:05 GMT
etag: W/"1819ea-6f66-5ec08aa570dd1-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0tpVzVTRnTKyxIXuzX611QkPeGTR2V8cDav8wo12ocYIPCXaBunbnUgGeSFpFdDFTddrkq%2BMGppfQUPz9Xcckbe36wkIBeEPF3EMvauVLz8ORzr%2BnF6%2FQAUzrO%2B3oYNSVjBs4ANi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d92cdeb4ee-OSL
X-Firefox-Spdy: h2

vodafone-internet.it/

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/html
last-modified: Thu, 23 Feb 2023 05:01:25 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1UlxC92mKsP88U2ZzTJUIMUMb3uxs1S9i7yZG4ivq6UKaUJyCZmtX1MYsRgD7lQijOVQSbuStCkbz5WSubsCggd979WQsB%2F4V57uXo4kNwIAaCpQl4uVINij%2FjIgZ0TA%2FjmbN3fe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d5b8c0b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /card/vendor/bootstrap-wizard/jquery.bootstrap.wizard.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1819e3-1b05-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9nEFsOcCgmYfdfjnC0RJtCkBg7D1rdoeGmqA%2FZLVBvKjCMbF0o3aZgV1cs9DO6fOMktJepvQgirGpN2iDJtpzqnAwLvhrwffEblEB3uhwfXh%2FzHlhc65ScwqaetrSPBJubio0w5n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd86b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

vodafone-internet.it/card/vendor/jquery/jquery.min.js

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/card/vendor/jquery/jquery.min.js
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /card/vendor/jquery/jquery.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1a0729-15287-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fVqJKnfjZzKqkKtH48lB7SdD3SPSGS5suWl0vxz3ciXiJKyQ6OjNYM1iWt4XR7O24bm95Nnywn8XCFGWJ1wkzeMZgDzYi9vYtD%2FhOKmomC3NFHFZC5xP8sgZ7VhE4d2EM9Gf4RYU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd91b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

vodafone-internet.it/vendor/bootstrap/css/bootstrap.min.css

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/vendor/bootstrap/css/bootstrap.min.css
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /vendor/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/css
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"1a073c-27288-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JaWgTtV1OxmzAbPUAyHGGekF69C17Wq27hP8Pi%2F68jhJtLc7AaT%2B7CoFIjOF3zolGAiULtH4%2BmPMJreod9mnVeKKg4fB93u%2F2DvchNISElXse%2Bi%2Fg8NZg2SPIA7ryeRAJU4bFyp4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d77aadb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

vodafone-internet.it/css/landing-page.min.css

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/css/landing-page.min.css
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
quad9	Sinkholed

HTTP Headers

GET /css/landing-page.min.css HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: text/css
last-modified: Wed, 06 Jul 2022 23:29:24 GMT
etag: W/"1819e7-766-5e32b56e153c3-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bps0xSn977qb73Zr9iXjHZoKyAaGimojhFlL92MU0t1NjATfPCr5kgIlxnNGbEoRsbdUHODmb1gVKG3zCdqodROSNNgoSsKq2%2BcPlZRMbQj9O90kfUdvgDr%2FwvwlCwH3Rw1hYUk0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ab8b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

vodafone-internet.it/img/vodafonelogo.webp

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/img/vodafonelogo.webp
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /img/vodafonelogo.webp HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/webp
last-modified: Wed, 06 Jul 2022 23:23:42 GMT
etag: W/"181a2d-153c-5e32b42858354-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2c8yz7%2FucNTqVGt9JZ5UkWMHlhnGmHfQbSeqvLY207V2Q7on0mevODjZpRnlHmgvLo3gSQBq9x6mGMrs0E%2BIZSw%2BLUYB1SPp9Xp4unqcpQ%2Ffb%2F%2F%2BtZsj8tTixBKTijU9pRzIR19G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78ab9b4ee-OSL
X-Firefox-Spdy: h2

vodafone-internet.it/vendor/jquery/jquery.min.js

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/vendor/jquery/jquery.min.js
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /vendor/jquery/jquery.min.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 19:22:38 GMT
etag: W/"1a0763-15d84-5e286f5a0bb80-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BXYrniF9r1iacj9UfgWej7wqR%2Fer2xAtaKI96tmvA1BeEqXXvTV1iD909A4iNz4a5IyG1cAK1vExiiKj3OiHxXwH7nN51DiOJRHIQ4piHjyq0ZftFOkGS4ImEfAGUecQlwdf804K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd93b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

vodafone-internet.it/card/js/global.js

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/card/js/global.js
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /card/js/global.js HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:01 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1530
etag: W/"1819e0-5fa-5e286f5823700-gzip"
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B0VPlNPYB7CEaX9tGLZA5bgAU4XITvg965wRjao1aEnhQe%2Bx2R9nHPGyTE%2FMGVdXjVCip0GI0ZLDB96lNlMcuPlsmcPlv6MF8seFX%2FYa2wwfPDwkrWCyDKfZ402hI%2Fgyf%2FUtdxst"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d9cd84b4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=PT+Serif%7CFrancois+One&subset=latin%2Clatin-ext&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=PT+Serif%7CFrancois+One&subset=latin%2Clatin-ext&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=PT+Serif%7CFrancois+One&subset=latin%2Clatin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Feb 2023 07:01:01 GMT
date: Fri, 24 Feb 2023 07:01:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

vodafone-internet.it/img/bollinoverde.svg

104.26.11.31

200 OK

0 B

URL HTTP/2
vodafone-internet.it/img/bollinoverde.svg
IP
104.26.11.31:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Vodafone
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /img/bollinoverde.svg HTTP/1.1
Host: vodafone-internet.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 24 Feb 2023 07:01:00 GMT
content-type: image/svg+xml
last-modified: Tue, 28 Jun 2022 19:22:36 GMT
etag: W/"181a02-578-5e286f5823700-gzip"
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QWy%2BtJBcWJMO%2BY3vLBjENAikm%2Bw%2B1OrW8sttbDbc5vlch54DNWw0hSs0bUHay8srzm%2FhdfCZ1Eoytvz2anksTJ391VIqGSM65idsDhR96VIr22fxiMS%2FGJjYslUoU2FsEJWsY%2F2K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79e653d78abbb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2

cookiehub.net/c2/css/2.4.11.css

143.204.55.60

200 OK

0 B

URL HTTP/2
cookiehub.net/c2/css/2.4.11.css
IP
143.204.55.60:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c2/css/2.4.11.css HTTP/1.1
Host: cookiehub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vodafone-internet.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css
date: Fri, 24 Feb 2023 02:26:12 GMT
last-modified: Wed, 21 Dec 2022 23:39:11 GMT
etag: W/"c9978fccc00e99b936b78b1afa12b71f"
x-amz-server-side-encryption: AES256
x-amz-version-id: se9wT0DRsMu2YoXyXqnLY3kRTJTcqEPY
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J87eVpGt-LYcxqmYy3oH-5E3PNq6HiC7KivGybgGDuwjhhnwNuwKPQ==
age: 16490
cache-control: max-age=86400
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML