Report - www.cardemo.it/Mbank/login.php

Report Overview

Submitted URL
www.cardemo.it/Mbank/login.php
IP
89.46.106.20
ASN
#31034 Aruba S.p.A.
Submitted
2023-03-30 06:10:51
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp06.actalis.it	190155	2017-01-31T11:14:36Z	2023-04-01T03:34:46Z	353 B	4.2 kB	109.70.240.114
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-31T20:44:48Z	478 B	17 kB	216.58.207.227
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	52 kB	34.120.237.76
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-31T20:23:24Z	449 B	630 B	142.250.74.106
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	2.4 kB	6.2 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-31T22:03:32Z	384 B	45 kB	142.250.74.168
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-31T19:19:20Z	3.1 kB	445 B	216.239.32.36
www.cardemo.it	unknown	2015-11-14T00:16:43Z	2023-03-21T10:40:54Z	16 kB	52 kB	89.46.106.20
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	127 B	54.191.242.233
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	2.4 kB	4.9 kB	142.250.74.131
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-31T21:42:43Z	371 B	21 kB	142.250.74.110

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

Scan Date	Severity	Indicator	Alert
2023-01-28	medium	www.cardemo.it/Mbank/login.php	Other
2023-01-28	medium	www.cardemo.it/Mbank/login.php	Other

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-30	medium	www.cardemo.it/Mbank/login.php	Phishing
2023-03-30	medium	www.cardemo.it/Mbank/login.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (30)

	URL	Size	First Seen	Last Seen
	www.cardemo.it/wp-includes/js/wp-emoji-release.min.js?ver=6.2	19 kB	2023-03-14	2024-05-09
Pretty URL www.cardemo.it/wp-includes/js/wp-emoji-release.min.js?ver=6.2 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:30:15 Last Seen2024-05-09 16:06:12 Times Seen1720 Hash 4cc444663c1e69cb8ac7b909e7192bca d00ddc5b9526193fa99bc3995a6d05f995452ea1 4f79a89d16a5f717110fe080c0bf90b7e05ff95a4c4983f64d33110bf5f9c230 Loading...

	www.cardemo.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1	13 kB	2023-03-29	2024-05-10
Pretty URL www.cardemo.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:17:20 Last Seen2024-05-10 04:44:38 Times Seen38263 Hash 5bc2b1fa970f9cecb3c30c0c92c98271 7c6bb87aaa24714b7b3b3c86dd932736a80270a9 1060091178cbd6c843b802f516f230f1a3a1e85f1afbd6ef84d80e5430ba457e Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.cardemo.it/Mbank/login.php	2.2 kB	2023-04-01	2023-04-20
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:37:49 Last Seen2023-04-20 11:51:53 Times Seen2 Hash c1d78d0a39f169261ccf555e0c4a5dd6 fd5994099b506dd8f6d01ed0702cc80ad83813f3 716034e5904e706e34a4334503f4dffc2066724f884154c0c08ac7891f75dd0a Loading...

	www.cardemo.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0	13 kB	2023-03-07	2024-05-10
Pretty URL www.cardemo.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:52 Last Seen2024-05-10 08:40:59 Times Seen76372 Hash 5cfa2b481de6e87c2190a0e3538515d8 0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68 9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3 Loading...

	www.cardemo.it/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2	18 kB	2023-03-12	2024-05-07
Pretty URL www.cardemo.it/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 22:05:48 Last Seen2024-05-07 18:09:19 Times Seen1136 Hash 17021088d1e5bf6d919f1eef0e7c9edb 24009d663fa269f6e85368f0f0e314681cba36e7 149712c16718936d2b7ad4c16d10e89de23c9c3b1c157158b533b961f2bf644d Loading...

	www.cardemo.it/Mbank/login.php	102 B	2023-03-14	2023-08-27
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:47:04 Last Seen2023-08-27 13:57:36 Times Seen11 Hash 364d663a4bdeed801867842ff8675eef 00fea2967e906834c08e0a841d9c69a7995244b2 8181f6e11e8ad284f4d5362f6d489ac6580ddb053bacfdd08d5909d52e85a246 Loading...

	www.cardemo.it/Mbank/login.php	423 B	2023-04-01	2023-04-01
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:37:49 Last Seen2023-04-01 10:37:49 Times Seen1 Hash 140d9a946c717297d6deba4255aed2ef 725783fc7ae859e1d33ab633994de6d2233ecb9d 5d863f3eea8598b9b02b54244909102862b49faad2a0aaea7d29b2ed7e997e0d Loading...

	www.cardemo.it/Mbank/login.php	90 B	2023-03-12	2024-05-07
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:50:29 Last Seen2024-05-07 18:09:17 Times Seen576 Hash 984c6d5f35203a53abff44467224b6de f7845afc8811594f022047a647e55f5e65db4795 e423dedf76f9543545fef46f60cd74c40f50e6c338a090bf5937cb3369fdee7b Loading...

	www.cardemo.it/Mbank/login.php	240 B	2023-03-07	2024-05-08
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:54:03 Last Seen2024-05-08 17:35:10 Times Seen62 Hash 65aed2814a0d9e38047e9b186b7e04e2 ddbf5bf4252c7d6c44d317a308bcacb7ce96fd89 b7a5349acd71fa7e475d0e387ba39f649424ec84719f9a35df5103817fbaba5f Loading...

	www.cardemo.it/Mbank/login.php	333 B	2023-03-07	2024-05-10
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-05-10 07:48:11 Times Seen7636 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	www.cardemo.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.3	90 kB	2023-03-29	2024-05-10
Pretty URL www.cardemo.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.3 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:52:25 Last Seen2024-05-10 05:58:20 Times Seen103073 Hash 0e850a69bc7fd0acc2e92ce6eee87959 8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a Loading...

	www.cardemo.it/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.26	7.2 kB	2023-04-01	2023-10-28
Pretty URL www.cardemo.it/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.26 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:37:49 Last Seen2023-10-28 12:14:48 Times Seen73 Hash 2f66fcf1d1edc662e277694f526fa370 062aca7191decedd28448a481d0ee6113deab688 c0fd7b00b85d61c4a0119d7b92a8376af8053aba0636ad31712097e25a617dda Loading...

	www.cardemo.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1	10 kB	2023-03-29	2024-05-10
Pretty URL www.cardemo.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 21:17:20 Last Seen2024-05-10 04:44:38 Times Seen26193 Hash 7be65ac27024c7b5686f9d7c49690799 241ada4a86443adc5623d1a3a8018a96d9de6d5a 52db930f81d97113dde679cac624cb5435b56d4ac486e91a0b6692d2cb615a84 Loading...

	www.cardemo.it/wp-content/plugins/gtranslate/js/flags.js?ver=6.2	14 kB	2023-03-26	2023-12-05
Pretty URL www.cardemo.it/wp-content/plugins/gtranslate/js/flags.js?ver=6.2 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:54:02 Last Seen2023-12-05 11:00:01 Times Seen102 Hash 98641bc743487f70c764d8f6ab595874 b031572607ec209dd2c28c8b68adf0bcbd70834b e642d269996164027112f2189c3b0d7a7c7eb6021df8ee581116d082ceb8f31d Loading...

	www.cardemo.it/Mbank/login.php	416 B	2023-03-14	2023-08-27
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:47:04 Last Seen2023-08-27 13:57:36 Times Seen11 Hash d3458232a330da63b718382f27c08f0b 9f0ef82dc1fc45e094b42aaf0b75428155d1186c 5af5368ecd03b302c424f4236b8e5824694ea2ce1ab5d89bf40d9de1cda762f5 Loading...

	www.cardemo.it/wp-content/plugins/animate-it/assets/js/viewportchecker.js?ver=1.4.4	2.0 kB	2023-03-07	2024-03-21
Pretty URL www.cardemo.it/wp-content/plugins/animate-it/assets/js/viewportchecker.js?ver=1.4.4 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-21 13:11:24 Times Seen658 Hash 6a3cf7cc51317fc9e5110c4e384f88e2 0097bc69fd0027651ba3970da08cb0393aab0c62 595a17a7850da5ba2f3ae112c9678ee84e05a3cfd4cbc05ea9aef21109b6a399 Loading...

	www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.js?ver=1.4.4	4.9 kB	2023-03-07	2024-03-21
Pretty URL www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.js?ver=1.4.4 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-21 13:11:24 Times Seen659 Hash 5a6b0fc4405a22efed2220c9ebdbcebe 18cbd790091c344fb9cce4233cd0c9b3a36b08eb be80f16154c0732e45558a559875ea30de0ee12766a6bf8fef48de3c3423e64f Loading...

	www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.8	34 kB	2023-03-07	2024-05-10
Pretty URL www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.8 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-05-10 08:20:08 Times Seen7302 Hash dffa195b546cf1dfd52f2206955eb892 a3d48e8f126eb96d12191d76ed71ad2bc8651d59 6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f Loading...

	www.googletagmanager.com/gtag/js?id=UA-221595337-1	115 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=UA-221595337-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:37:50 Last Seen2023-04-01 10:37:50 Times Seen1 Hash 0edce68617cfd9cfb3662811b7265554 ee4c6617b21267468f6b8f39c673cf45bb731cf0 b159402b213c8bdad6db7c93738f2ae4a7739a50a45dc3a928928eb570657781 Loading...

	www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.site.js?ver=1.4.5	4.5 kB	2023-03-07	2024-03-21
Pretty URL www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.site.js?ver=1.4.5 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-03-21 13:11:24 Times Seen661 Hash 3b2a03824ea375238c0dd844520c70cf c3b063dc0b36bf760feb3b72fd325a7ed5f03f4f e220711c19a54165d6819ad034fef35d5f4c94f4eb3f9c521f000917c8442303 Loading...

	www.cardemo.it/wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2	4.0 kB	2023-03-07	2024-05-08
Pretty URL www.cardemo.it/wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:28 Last Seen2024-05-08 17:35:11 Times Seen561 Hash 24517b4705671d4c5d14e92ee2854b48 595347eda8603634191e02c496694c1179b25532 65b978e80fdf031da25da84fd0f3e56d5d3282a2c3c07d1436e8cf1bfce4c449 Loading...

	www.cardemo.it/Mbank/login.php	423 B	2023-04-01	2023-04-01
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:37:50 Last Seen2023-04-01 10:37:50 Times Seen1 Hash f1df2edfe06f85838800e044d7a662ad b2131fdbbb8d7fb348cb87c696f7027635f48229 d67be3030bc91cadadbbb9197fbb924310b1640b5c1021ea36ae4c90c7c1039e Loading...

	www.googletagmanager.com/gtag/js?id=G-LWHNM8TRBY&l=dataLayer&cx=c	185 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=G-LWHNM8TRBY&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:37:50 Last Seen2023-04-01 10:37:50 Times Seen1 Hash 23572337a5bfd73121489ed53fa3ddfb 8ce02de221b51de09fa5c30f657b65555ba2a89a d90cd7c0def0f7410cd3c8281685d6fd6c3bb48bcae274c58d59e262080e9ac8 Loading...

	www.cardemo.it/wp-content/plugins/animate-it/assets/js/jquery.ba-throttle-debounce.min.js?ver=1.1	731 B	2023-03-07	2024-05-10
Pretty URL www.cardemo.it/wp-content/plugins/animate-it/assets/js/jquery.ba-throttle-debounce.min.js?ver=1.1 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-05-10 01:35:22 Times Seen2365 Hash 97669983f6540f2badeef6ab07e5b637 b6f0084f6747da64cf24334b2c0027e57cbf7f23 fa7b84bb6e37fba06f79793937e55baf6ebc1bee051e350e11c7ca681a9f3db7 Loading...

	www.cardemo.it/wp-content/plugins/animate-it/assets/js/animo.min.js?ver=1.0.3	5.1 kB	2023-03-14	2024-03-21
Pretty URL www.cardemo.it/wp-content/plugins/animate-it/assets/js/animo.min.js?ver=1.0.3 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:47:04 Last Seen2024-03-21 13:11:24 Times Seen98 Hash 556660e5fb066e62c0a5bcaf1d200c67 2931c27b8b23c8642f41806d70b7e943c819f7c4 a8b0da8fc1941cc270e48602027f84698f19512c7028183c0a2c7bb77deac051 Loading...

	www.cardemo.it/Mbank/login.php	1.9 kB	2023-03-14	2023-08-27
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:47:04 Last Seen2023-08-27 13:57:36 Times Seen11 Hash b50f092bcd96808556eb2e3a02736f13 451a700bec5daad8a25b268dbb641530e77e5742 a25203dd01e942848422a704e51dcb05411eeb908e97a74c1ee3d64a2967a83e Loading...

	www.cardemo.it/Mbank/login.php	299 B	2023-03-14	2023-08-27
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:47:04 Last Seen2023-08-27 13:57:36 Times Seen11 Hash 5e2309edf3218f977bcbf05db8b24f1b a0c715f7e81547ddc4bf0873c7b67525178e18e7 fb8bb3361807422b592bc74584a76f75198bc34e1b3d14fc7340820e2468fee9 Loading...

	www.cardemo.it/Mbank/login.php	91 B	2023-03-14	2024-03-21
Pretty URL www.cardemo.it/Mbank/login.php IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:47:04 Last Seen2024-03-21 13:11:23 Times Seen26 Hash b5f723f4cfbabbf4c073f205ce3e1e5c e137ce0ee31d32046a2571f19ad1cab7aa378c1b a17e8cacb03dde21d70c47ae4148594b66a4d5cb1e00fc27a4ab7c50e66ff428 Loading...

	www.cardemo.it/wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2	2.2 kB	2023-03-07	2024-05-10
Pretty URL www.cardemo.it/wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2 IP 89.46.106.20 ASN #31034 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:05:08 Last Seen2024-05-10 06:16:12 Times Seen1211 Hash ac2a48bd8ac1e5592c1c5d048b5b0693 9f1938b336b77eb7fee51c77dfbc4ff20d399b00 f6072019ba53a652c426b2621fb6e94a4cbc3fba6f5c0a7106a1960156e2e83f Loading...

HTTP Transactions (67)

URL IP Response Size

www.cardemo.it/Mbank/login.php

89.46.106.20

301 Moved Permanently

168 B

URL HTTP/1.1
www.cardemo.it/Mbank/login.php
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
168 B (168 bytes)
Hash
82f04704c04c2706b1b96a73be2ff3a9
8cd210a378b7f54ce8945cdf1c7ce1f696171eee
ede97dbf06b3e703cd950b3591a29351ce9b24eccab58b1a913b3c7e4571bf02

Detections

Analyzer	Verdict	Alert
phishtank	Other
fortinet	Phishing

HTTP Headers

GET /Mbank/login.php HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: aruba-proxy
Date: Thu, 30 Mar 2023 06:10:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
Location: https://www.cardemo.it/Mbank/login.php
X-ServerName: ipvsproxy69.ad.aruba.it

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b93010cbf31ba3ec785b4088e5d0f529
c0f1ab8a2aae3c445a8f24959a4eea433a345caf
2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6535
Expires: Thu, 30 Mar 2023 07:59:35 GMT
Date: Thu, 30 Mar 2023 06:10:40 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3529
Expires: Thu, 30 Mar 2023 07:09:29 GMT
Date: Thu, 30 Mar 2023 06:10:40 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ed282214b024a7895d90e229e92bb1cc
1f447aa59287ce2b45860a1a909d005a41305f77
a35ae9f89cbc77ed5fe849acdc2701592799c335f2674776d69c25bca0a00c2e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Alert, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 30 Mar 2023 05:28:15 GMT
content-type: application/json
age: 2545
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5654
Expires: Thu, 30 Mar 2023 07:44:54 GMT
Date: Thu, 30 Mar 2023 06:10:40 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: pdZWmwr8EvRJqVB7Peoc3cPShyYVR1m2O2kZJHbIhmA+SGnP6m9kiIE3Z7XCfUY8vT8CdyF2yPgGMzDSZo+gCA==
x-amz-request-id: WYNHMZ36X92107C6
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 30 Mar 2023 06:02:49 GMT
age: 471
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 30 Mar 2023 06:10:40 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp06.actalis.it/VA/AUTHDV-G3

109.70.240.114

200

3.9 kB

URL HTTP/1.1
ocsp06.actalis.it/VA/AUTHDV-G3
IP
109.70.240.114:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
3.9 kB (3926 bytes)
Hash
7954371efea8b2d5cfa51b009dc90812
57cbfeaaacfc2da006b3ca0860d2619bde2c0d02
db963e0187017ca4a402cad8145bbd8798d12936d23e6a425b4f1c9969696e45

HTTP Headers

POST /VA/AUTHDV-G3 HTTP/1.1
Host: ocsp06.actalis.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Server: nginx
Date: Thu, 30 Mar 2023 06:10:40 GMT
Content-Type: application/ocsp-response
Content-Length: 3926
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 23:05:06 GMT
Expires: Thu, 30 Mar 2023 23:05:05 GMT
ETag: "57cbfeaaacfc2da006b3ca0860d2619bde2c0d02"

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Pragma, Backoff, Expires, Last-Modified, Content-Type, Alert, Retry-After, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 30 Mar 2023 05:17:26 GMT
age: 3195
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b3df8c73360b4239af64e11f9d2388be
dc5463ff26615b40e4eab388052790d6c30ea5e6
877b23d16abf2e0e9f649f53747e82af0b75e8595abd71728254e612847cfdb6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "877B23D16ABF2E0E9F649F53747E82AF0B75E8595ABD71728254E612847CFDB6"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6966
Expires: Thu, 30 Mar 2023 08:06:47 GMT
Date: Thu, 30 Mar 2023 06:10:41 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f6b3bb903e6f7394985c0ae662919208
ee3cb0fbd0017ed3a001ce195bc0cfa386979567
c6b84721f8ea52808c9884b612ffeaa16fe1e14345d9561135fbcf738a56dd2b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.cardemo.it/wp-content/plugins/animate-it/assets/css/block-style.css?ver=1677146220

89.46.106.20

200 OK

149 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/animate-it/assets/css/block-style.css?ver=1677146220
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text
Size
149 B (149 bytes)
Hash
1eb205cb9c0ed52294eb43e5e91b57db
4fe366653e26ebf6002b9421e1c27ecbc0537aed
65813a49fec46dac01ae0504e4a0d6d7f59eaa27462d413befda35c5288fd685

HTTP Headers

GET /wp-content/plugins/animate-it/assets/css/block-style.css?ver=1677146220 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
content-length: 149
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
accept-ranges: bytes
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/themes/astra-child/style.css?ver=1.0.0

89.46.106.20

200 OK

254 B

URL HTTP/2
www.cardemo.it/wp-content/themes/astra-child/style.css?ver=1.0.0
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
ASCII text
Size
254 B (254 bytes)
Hash
7e8c917585b8044d592cd854299c5c85
7dee6a6f3b1df3ba8e5011c523643422a5026b9b
0b5c56464ae8537c4525a2bfd3c988411b89d0b53d3f6f1f91234c7e889f5bf5

HTTP Headers

GET /wp-content/themes/astra-child/style.css?ver=1.0.0 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
content-length: 254
last-modified: Mon, 06 Feb 2023 11:18:43 GMT
accept-ranges: bytes
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-221595337-1

142.250.74.168

200 OK

45 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-221595337-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2206)
Size
45 kB (44839 bytes)
Hash
04554ef29d4bd0367c3c4b2e21c7f731
020573d8e8fc6437c67d6e482da549405394ff91
671fc1a2dfcf715bf54c8f2de8e7640ed6c5498aaad12727945099b6e5cb2d74

HTTP Headers

GET /gtag/js?id=UA-221595337-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 30 Mar 2023 06:10:41 GMT
expires: Thu, 30 Mar 2023 06:10:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44839
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-definitovo-2-164x53.png

89.46.106.20

200 OK

4.1 kB

URL HTTP/2
www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-definitovo-2-164x53.png
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
4.1 kB (4062 bytes)
Hash
95a67a26756026c11ffc077f6aa45ac4
aaf541e8ae0267f44732362c02c6c4347deff026
1653fab596e695576525048306377fd9a8ff13eb4293d8eecf364cecb84d6067

HTTP Headers

GET /wp-content/uploads/2022/02/logo-cardemo-definitovo-2-164x53.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/webp
content-length: 4062
vary: Accept
last-modified: Tue, 07 Feb 2023 11:36:45 GMT
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 29 Mar 2024 06:10:41 GMT
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-icon-300x300.png

89.46.106.20

200 OK

5.1 kB

URL HTTP/2
www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-icon-300x300.png
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
5.1 kB (5126 bytes)
Hash
c746bdfcad188007608f6f93d4353824
80fc1a511b14cc88a70f873e74864152635d2e6d
9e25d380656c0d374857486c4357d92498939f372be3ac227fa7795413e344e1

HTTP Headers

GET /wp-content/uploads/2022/02/logo-cardemo-icon-300x300.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/webp
content-length: 5126
vary: Accept
last-modified: Tue, 07 Feb 2023 11:36:44 GMT
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 29 Mar 2024 06:10:41 GMT
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f6b3bb903e6f7394985c0ae662919208
ee3cb0fbd0017ed3a001ce195bc0cfa386979567
c6b84721f8ea52808c9884b612ffeaa16fe1e14345d9561135fbcf738a56dd2b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d4fd78e1925a923742815feb55c9dab0
1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb
88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.191.242.233

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.191.242.233:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: anW/uLoV9pOSkkuPyVDtqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wxHKj0BdxmA8VB1NwFF3FaUVNbo=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cardemo.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 503040
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.site.js?ver=1.4.5

89.46.106.20

200 OK

23 kB

URL HTTP/2
www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.site.js?ver=1.4.5
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
23 kB (23220 bytes)
Hash
ee7eb3dc74d237169db1cb595a21dc85
0b4d042db58471f107c61e9323da07e3b8c9260c
f21de7f001b5cc820f27a0d5ea858984c97562dea2fdf6ca39a18eb115954ce6

HTTP Headers

GET /wp-content/plugins/animate-it/assets/js/edsanimate.site.js?ver=1.4.5 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/gtranslate/flags/24/de.png

89.46.106.20

200 OK

602 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/gtranslate/flags/24/de.png
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
602 B (602 bytes)
Hash
8a2ba86f3b7de7562445967e2c21843b
3046cd0b51721f180c2dc75513fd4bfd316b45b5
cc318f3be9ba75def2af54bd9d0fab4f3e316517de9bf138e40dee06d332602d

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/de.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 602
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:29 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2

89.46.106.20

200 OK

2.0 kB

URL HTTP/2
www.cardemo.it/wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
data
Size
2.0 kB (2025 bytes)
Hash
026d6dceaca87b1310772cbc9d22f4ec
5610e460170174423b13cb02c8333cf08faadbd4
b99b0d6d6045a92241d2dc3951a36a8264f0889bec32d6d0ab0245254a908b03

HTTP Headers

GET /wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 13:04:44 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/gtranslate/flags/24/en.png

89.46.106.20

200 OK

1.8 kB

URL HTTP/2
www.cardemo.it/wp-content/plugins/gtranslate/flags/24/en.png
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1767 bytes)
Hash
ec7233b5c80e5db85f7733b2ec25203f
d4c36fff06dc7d920b10eb13b58ea9cd9321b430
347ee97a492f79675749d03533810ff899ee6a784b4e156f3e0a7613cdfb3d40

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/en.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 1767
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:29 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/gtranslate/flags/24/pt.png

89.46.106.20

200 OK

1.1 kB

URL HTTP/2
www.cardemo.it/wp-content/plugins/gtranslate/flags/24/pt.png
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1076 bytes)
Hash
bb3cb490b63a8f51283c686b916cf4ff
f325c9d27acb1d3e03a3481eb2c240368ae8460f
f06d3def1549dd1b0a108ddc645d2e8906fb631e5812df19cdcbd887f3700bd8

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/pt.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 1076
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:30 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/gtranslate/flags/24/it.png

89.46.106.20

200 OK

642 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/gtranslate/flags/24/it.png
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
642 B (642 bytes)
Hash
922efc02f080135a63137dde4ffea287
a4583be3e579a69a03a0d1f09995fdb6d1244f7d
510116996dc4979a225c07962d84bb76e2b6340234c2c5e4280596ad08a632cb

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/it.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 642
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:30 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/gtranslate/flags/24/es.png

89.46.106.20

200 OK

873 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/gtranslate/flags/24/es.png
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
873 B (873 bytes)
Hash
8bf31a924501d6db655fe75696b5f046
94ba0f8d4db0c35c1246a55fcbd6e0ef3cd7f0e2
5ae9561f31199bf8a892f797a69db1bc5d477e2f8318f2b7e95487f025f66f28

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/es.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 873
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:29 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 30 Mar 2023 06:05:11 GMT
expires: Thu, 30 Mar 2023 08:05:11 GMT
cache-control: public, max-age=7200
age: 330
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-icon-150x150.png

89.46.106.20

200 OK

2.8 kB

URL HTTP/2
www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-icon-150x150.png
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.8 kB (2798 bytes)
Hash
e0ea3f99a00703b4663f175a6dcf8857
5c45987288431d82f2cd039e0f45b30d6a11b430
e9e94d2332c44114894ea3a1ccc0ffe9c24d603bde583a6ea6393320f5152b46

HTTP Headers

GET /wp-content/uploads/2022/02/logo-cardemo-icon-150x150.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Cookie: cookielawinfo-checkbox-funzionali=no; cookielawinfo-checkbox-analitici=no; cookielawinfo-checkbox-necessari=no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/webp
content-length: 2798
vary: Accept
last-modified: Tue, 07 Feb 2023 11:36:44 GMT
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 29 Mar 2024 06:10:41 GMT
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-LWHNM8TRBY&gtm=45je33r0&_p=983695378&gdid=dZTNiMT&cid=2132264040.1680156667&ul=en-us&sr=1280x1024&_s=1&sid=1680156666&sct=1&seg=0&dl=https%3A%2F%2Fwww.cardemo.it%2FMbank%2Flogin.php&dt=Pagina%20non%20trovata%20%E2%80%93%20Autodemolizioni%20Cardemo%20Nociglia%20Lecce%20Puglia%20Italia%20autodemolizione%20rottamazione%20e%20ritiro%20di%20autoveicoli%20e%20mezzi%20pesanti%20con%20soccorso%20stradale%20auto%20e%20mezzo%20pesante%20dove%20rottamare%20la%20propria%20auto%20nel%20Salento%20e%20provincia%20di%20lecce%20Bari%20Brindisi%20Taranto%20autoricambi%20usati%20di%20carrozzeria%20elettronica%20e%20motori%20multimarche%20ricambi%20di%20veicoli%20automobili%20anche%20d%27epoca%20plurimarche%20italiane%20estraniere%20come%20cofano%20sportello%20portellone%20fiancata%20lamiera%20ammortizzatori%20braccetti%20giunti%20freni%20a%20disco%20pinze%20freno%20avantreno%20serbatoio%20sedile%20cruscotto%20tachimetro%20digitale%20analogico%20centralina%20impianto%20elettrico%20di%20riscaldamento%20cambio%20automatico%20manuale%20guarnizioni%20scocca%20pianale%20tetto%20apribile%20fari%20fendinebbia%20battitacco%20maniglia%20serratura%20antifurto%20autoradio%20cerchi%20in%20lega%20climatizzatore%20manuale%20airbag%20laterali%20airbag%20passeggero%20alzacristalli%20elettrici%20posteriori%20e%20anteriori%20differenziale%20motore%20pompa%20gasolio%20iniettori%20carburatori%20sensori%20posteriori%20parcheggio%20auto%20elettrica%20sedili%20riscaldati%20volante%20in%20pelle%20cavo%20elettronico%20centralina%20lettore%20CD%20audio%20servosterzo%20regolazione%20centralizzata%20climatizzatore%20frizione%20controllo%20trazione%20integrale%20elettronico%20motorino%20di%20avviamento%20marmitta%20scarico%20catalizzatore%20pompa%20benzina%20cristalli%20sottoscocca%20paraurti%20gomme%20usate%20invernali%20estive%20paraurti%20parafango%20fari%20xenon%20telai%20avantreno%20culla%20barra%20duomy%20roll%20bar%20moquettes%20tasche%20laterali%20condizionatore%20piantone%20sterzo%20sfascio%20con%20pezzi%20di%20ricambio%20lecce%20di%20Abarth%20alfa%20romeo%20alpine%20aston%20martin%20audi%20bentley%20bmw%20cadillac%20chery%20chevrolet%20chrysler%20citro%C3%ABn%20cupra%20dacia%20daihatsu%20dodge%20dr%20ds%20automobiles%20evo%20ferrari%20fiat%20ford%20great%20wall%20haval%20honda%20hummer%20hyundai%20infiniti%20isuzu%20jaguar%20jeep%20kia%20koenigsseglada%20lamborghini%20lancia%20land%20rover%20lexus%20lotus%20mahindra%20maserati%20mazda%20mercedes%20benz%20mg%20mini%20cooper%20mitsubishi%20motors%20nissan%20opel%20peugeot%20porsche%20ram%20renault%20rolls%20royce%20seat%20skoda%20smart%20ssangyong%20subaru%20suzuki%20tata%20tesla%20toyota%20volkswagen%20volvo

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-LWHNM8TRBY&gtm=45je33r0&_p=983695378&gdid=dZTNiMT&cid=2132264040.1680156667&ul=en-us&sr=1280x1024&_s=1&sid=1680156666&sct=1&seg=0&dl=https%3A%2F%2Fwww.cardemo.it%2FMbank%2Flogin.php&dt=Pagina%20non%20trovata%20%E2%80%93%20Autodemolizioni%20Cardemo%20Nociglia%20Lecce%20Puglia%20Italia%20autodemolizione%20rottamazione%20e%20ritiro%20di%20autoveicoli%20e%20mezzi%20pesanti%20con%20soccorso%20stradale%20auto%20e%20mezzo%20pesante%20dove%20rottamare%20la%20propria%20auto%20nel%20Salento%20e%20provincia%20di%20lecce%20Bari%20Brindisi%20Taranto%20autoricambi%20usati%20di%20carrozzeria%20elettronica%20e%20motori%20multimarche%20ricambi%20di%20veicoli%20automobili%20anche%20d%27epoca%20plurimarche%20italiane%20estraniere%20come%20cofano%20sportello%20portellone%20fiancata%20lamiera%20ammortizzatori%20braccetti%20giunti%20freni%20a%20disco%20pinze%20freno%20avantreno%20serbatoio%20sedile%20cruscotto%20tachimetro%20digitale%20analogico%20centralina%20impianto%20elettrico%20di%20riscaldamento%20cambio%20automatico%20manuale%20guarnizioni%20scocca%20pianale%20tetto%20apribile%20fari%20fendinebbia%20battitacco%20maniglia%20serratura%20antifurto%20autoradio%20cerchi%20in%20lega%20climatizzatore%20manuale%20airbag%20laterali%20airbag%20passeggero%20alzacristalli%20elettrici%20posteriori%20e%20anteriori%20differenziale%20motore%20pompa%20gasolio%20iniettori%20carburatori%20sensori%20posteriori%20parcheggio%20auto%20elettrica%20sedili%20riscaldati%20volante%20in%20pelle%20cavo%20elettronico%20centralina%20lettore%20CD%20audio%20servosterzo%20regolazione%20centralizzata%20climatizzatore%20frizione%20controllo%20trazione%20integrale%20elettronico%20motorino%20di%20avviamento%20marmitta%20scarico%20catalizzatore%20pompa%20benzina%20cristalli%20sottoscocca%20paraurti%20gomme%20usate%20invernali%20estive%20paraurti%20parafango%20fari%20xenon%20telai%20avantreno%20culla%20barra%20duomy%20roll%20bar%20moquettes%20tasche%20laterali%20condizionatore%20piantone%20sterzo%20sfascio%20con%20pezzi%20di%20ricambio%20lecce%20di%20Abarth%20alfa%20romeo%20alpine%20aston%20martin%20audi%20bentley%20bmw%20cadillac%20chery%20chevrolet%20chrysler%20citro%C3%ABn%20cupra%20dacia%20daihatsu%20dodge%20dr%20ds%20automobiles%20evo%20ferrari%20fiat%20ford%20great%20wall%20haval%20honda%20hummer%20hyundai%20infiniti%20isuzu%20jaguar%20jeep%20kia%20koenigsseglada%20lamborghini%20lancia%20land%20rover%20lexus%20lotus%20mahindra%20maserati%20mazda%20mercedes%20benz%20mg%20mini%20cooper%20mitsubishi%20motors%20nissan%20opel%20peugeot%20porsche%20ram%20renault%20rolls%20royce%20seat%20skoda%20smart%20ssangyong%20subaru%20suzuki%20tata%20tesla%20toyota%20volkswagen%20volvo
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-LWHNM8TRBY&gtm=45je33r0&_p=983695378&gdid=dZTNiMT&cid=2132264040.1680156667&ul=en-us&sr=1280x1024&_s=1&sid=1680156666&sct=1&seg=0&dl=https%3A%2F%2Fwww.cardemo.it%2FMbank%2Flogin.php&dt=Pagina%20non%20trovata%20%E2%80%93%20Autodemolizioni%20Cardemo%20Nociglia%20Lecce%20Puglia%20Italia%20autodemolizione%20rottamazione%20e%20ritiro%20di%20autoveicoli%20e%20mezzi%20pesanti%20con%20soccorso%20stradale%20auto%20e%20mezzo%20pesante%20dove%20rottamare%20la%20propria%20auto%20nel%20Salento%20e%20provincia%20di%20lecce%20Bari%20Brindisi%20Taranto%20autoricambi%20usati%20di%20carrozzeria%20elettronica%20e%20motori%20multimarche%20ricambi%20di%20veicoli%20automobili%20anche%20d%27epoca%20plurimarche%20italiane%20estraniere%20come%20cofano%20sportello%20portellone%20fiancata%20lamiera%20ammortizzatori%20braccetti%20giunti%20freni%20a%20disco%20pinze%20freno%20avantreno%20serbatoio%20sedile%20cruscotto%20tachimetro%20digitale%20analogico%20centralina%20impianto%20elettrico%20di%20riscaldamento%20cambio%20automatico%20manuale%20guarnizioni%20scocca%20pianale%20tetto%20apribile%20fari%20fendinebbia%20battitacco%20maniglia%20serratura%20antifurto%20autoradio%20cerchi%20in%20lega%20climatizzatore%20manuale%20airbag%20laterali%20airbag%20passeggero%20alzacristalli%20elettrici%20posteriori%20e%20anteriori%20differenziale%20motore%20pompa%20gasolio%20iniettori%20carburatori%20sensori%20posteriori%20parcheggio%20auto%20elettrica%20sedili%20riscaldati%20volante%20in%20pelle%20cavo%20elettronico%20centralina%20lettore%20CD%20audio%20servosterzo%20regolazione%20centralizzata%20climatizzatore%20frizione%20controllo%20trazione%20integrale%20elettronico%20motorino%20di%20avviamento%20marmitta%20scarico%20catalizzatore%20pompa%20benzina%20cristalli%20sottoscocca%20paraurti%20gomme%20usate%20invernali%20estive%20paraurti%20parafango%20fari%20xenon%20telai%20avantreno%20culla%20barra%20duomy%20roll%20bar%20moquettes%20tasche%20laterali%20condizionatore%20piantone%20sterzo%20sfascio%20con%20pezzi%20di%20ricambio%20lecce%20di%20Abarth%20alfa%20romeo%20alpine%20aston%20martin%20audi%20bentley%20bmw%20cadillac%20chery%20chevrolet%20chrysler%20citro%C3%ABn%20cupra%20dacia%20daihatsu%20dodge%20dr%20ds%20automobiles%20evo%20ferrari%20fiat%20ford%20great%20wall%20haval%20honda%20hummer%20hyundai%20infiniti%20isuzu%20jaguar%20jeep%20kia%20koenigsseglada%20lamborghini%20lancia%20land%20rover%20lexus%20lotus%20mahindra%20maserati%20mazda%20mercedes%20benz%20mg%20mini%20cooper%20mitsubishi%20motors%20nissan%20opel%20peugeot%20porsche%20ram%20renault%20rolls%20royce%20seat%20skoda%20smart%20ssangyong%20subaru%20suzuki%20tata%20tesla%20toyota%20volkswagen%20volvo HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 37
Origin: https://www.cardemo.it
Connection: keep-alive
Referer: https://www.cardemo.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-origin: https://www.cardemo.it
date: Thu, 30 Mar 2023 06:10:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4688
Expires: Thu, 30 Mar 2023 07:28:50 GMT
Date: Thu, 30 Mar 2023 06:10:42 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4688
Expires: Thu, 30 Mar 2023 07:28:50 GMT
Date: Thu, 30 Mar 2023 06:10:42 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4688
Expires: Thu, 30 Mar 2023 07:28:50 GMT
Date: Thu, 30 Mar 2023 06:10:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4549 bytes)
Hash
2021c271f9290204bd14cd2a3a1680fc
39b68cbcaba381d63dc67bc289fb67c849adb9ff
a84c5dd1e52d7cd535e04cb455891a1442000eb0e4381031c976b4cf3be96f2f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4549
x-amzn-requestid: 70e07309-5fc5-4307-b455-29a187eae0d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoBHFFoAMFx5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afcc-298f18fd0cf0b37465a74c13;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: kbG1Llnn0Elhz5ItoJyufkUgoB5FhmvLpk2oQox2HPnSHeBfCOuXXw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
age: 30352
etag: "39b68cbcaba381d63dc67bc289fb67c849adb9ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e895093-f168-421f-8ab3-fd696a67308d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8974 bytes)
Hash
5c4c01f0ebb94ca05a68ff8a807d5fd1
e494830fd0e66b40a61ff466135b65435daf45a0
06ca371b189d542a428a701e5bab7a777744b72d2f7d679b8a6629c8316e117a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e895093-f168-421f-8ab3-fd696a67308d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8974
x-amzn-requestid: f035a7c6-0b2b-4079-aacc-05438c608b03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAynH1roAMFQcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae76-47ed2f4526d1533675503a46;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9LaPgVmw0Fe1AA5HJY7sN6diGoMlQhxFWEEHYKDASkoVzYZ8zCHDEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:57:50 GMT
age: 29572
etag: "e494830fd0e66b40a61ff466135b65435daf45a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4239dcf-d6d6-4801-9d16-74b0d7e5d075.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9083 bytes)
Hash
be355ca6d4b70b5457e2fc2317981a07
4d01d9eb4d5723683e0828ce06c6e99a9bf1423b
b961abfcead09f78f25117acb48464829e45c5bafa0f0e6244e2520ffbdb62cb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4239dcf-d6d6-4801-9d16-74b0d7e5d075.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9083
x-amzn-requestid: 0c03f8b3-4d84-439f-8ce6-3560337d0d6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CewbkHQdIAMF0Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229449-14cb7d6e0ddf3f144c976adb;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:16:25 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ts8HQx2z7zd4W2GTsd2TXYlG7Zhul537x_ZpyWQBMXnncfqXV9aObw==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:32:17 GMT
age: 81505
etag: "4d01d9eb4d5723683e0828ce06c6e99a9bf1423b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3697d60-af19-4bfb-9d00-0a88b42c7092.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9030 bytes)
Hash
6119f1997cb5d1f4e61ddeeedae7a35f
13e9881bc79a5c361211430b0ba20eab32b3dbef
f38d53a870575f53855e00b6cb5422ffbf7a2210ccff25fc837c6a71b0d528b9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3697d60-af19-4bfb-9d00-0a88b42c7092.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9030
x-amzn-requestid: 5e98c214-3229-484f-911f-ca61e9a6ada3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cew9OHDgoAMFqxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229521-0014bec92bd97c080a5015fd;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:20:01 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: iKE8kCq1U3EIAGIg4aerYZ6j0MeCjGzp9G_7aExDq23hzJtxZVg05A==
via: 1.1 5502255f9557c1e2c098b94110b6151c.cloudfront.net (CloudFront), 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:28:58 GMT
age: 81704
etag: "13e9881bc79a5c361211430b0ba20eab32b3dbef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F880692f5-03f5-4540-ad20-5c8bd8336833.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8560 bytes)
Hash
c3261e7e3ac917fa959fcf8648c3ab98
bb4ef5a29187d75c97ef3f7a5672ccb009791561
4070b831a379ae1ed187a03b479460842cb2ece90d77c30fc6fc4517bc76f3b5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F880692f5-03f5-4540-ad20-5c8bd8336833.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8560
x-amzn-requestid: 5f1fbb58-48aa-430f-a132-0e7057e159c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CewdRFeIoAMF-uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229454-40f85a155c9e623374d21bb8;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:16:36 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nyhw0gOUkvg7zzOBejYRXvDhs-rf8IRF9xFxeMWZYCX_iNq_JA8d4A==
via: 1.1 f3802d173009698413044360f84de06c.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:36:07 GMT
age: 81275
etag: "bb4ef5a29187d75c97ef3f7a5672ccb009791561"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ed4a5c5-fe11-4f30-864e-2116aae51642.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5395 bytes)
Hash
76c71571a378e261334e5acb723634ab
f1234c280364b6fe1dcf9c6c64edadc235108c4b
97544d600ab1ae204b169c3b7ba2a74df689b6c711a003d72f0934165d8a3e25

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ed4a5c5-fe11-4f30-864e-2116aae51642.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5395
x-amzn-requestid: ff3218dc-8754-4568-8e42-0885cb7e5d06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkA0BFYNoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae7f-127129cf3776a60c333d205c;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ayBzSVUrRznKMPzI1JYvj1ikLo-arbVQUxdEZDM7KYHWyL2cwT10tA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:45:03 GMT
etag: "f1234c280364b6fe1dcf9c6c64edadc235108c4b"
content-type: image/jpeg
age: 30339
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.cardemo.it/Mbank/login.php

89.46.106.20

404 Not Found

0 B

URL HTTP/2
www.cardemo.it/Mbank/login.php
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
phishtank	Other
fortinet	Phishing

HTTP Headers

GET /Mbank/login.php HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.cardemo.it/wp-json/>; rel="https://api.w.org/"
x-aruba-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.8

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.8
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.8 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 16:48:52 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.0.2

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.0.2
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.0.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 10:55:46 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/gtranslate/js/flags.js?ver=6.2

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/gtranslate/js/flags.js?ver=6.2
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/gtranslate/js/flags.js?ver=6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 13 Mar 2023 16:05:32 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-includes/js/wp-emoji-release.min.js?ver=6.2

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-includes/js/wp-emoji-release.min.js?ver=6.2
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 29 Mar 2023 21:48:37 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.8

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.8
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.8 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 16:48:52 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/animate-it/assets/js/viewportchecker.js?ver=1.4.4

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/animate-it/assets/js/viewportchecker.js?ver=1.4.4
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/animate-it/assets/js/viewportchecker.js?ver=1.4.4 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.js?ver=1.4.4

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.js?ver=1.4.4
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/animate-it/assets/js/edsanimate.js?ver=1.4.4 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.26

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.26
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.26 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 28 Mar 2023 21:46:34 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A400%7CBarlow+Semi+Condensed%3A600&display=fallback&ver=4.0.2

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A400%7CBarlow+Semi+Condensed%3A600&display=fallback&ver=4.0.2
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A400%7CBarlow+Semi+Condensed%3A600&display=fallback&ver=4.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Mar 2023 06:10:41 GMT
date: Thu, 30 Mar 2023 06:10:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 10:55:47 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/simply-gallery-block/blocks/pgc_sgb.min.style.css?ver=3.1.1

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/simply-gallery-block/blocks/pgc_sgb.min.style.css?ver=3.1.1
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/simply-gallery-block/blocks/pgc_sgb.min.style.css?ver=3.1.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 20 Mar 2023 16:03:39 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 24 Mar 2023 09:46:28 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.8

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.8
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.8 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 16:48:52 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 24 Mar 2023 09:46:28 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 10:55:46 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 24 Mar 2023 09:46:28 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.3

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.3
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.3 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 29 Mar 2023 21:48:37 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 29 Mar 2023 21:48:37 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.8

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.8
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.8 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 16:48:52 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/animate-it/assets/css/animate-animo.css?ver=6.2

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/animate-it/assets/css/animate-animo.css?ver=6.2
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/animate-it/assets/css/animate-animo.css?ver=6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/animate-it/assets/js/animo.min.js?ver=1.0.3

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/animate-it/assets/js/animo.min.js?ver=1.0.3
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/animate-it/assets/js/animo.min.js?ver=1.0.3 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/animate-it/assets/js/jquery.ba-throttle-debounce.min.js?ver=1.1

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/animate-it/assets/js/jquery.ba-throttle-debounce.min.js?ver=1.1
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/animate-it/assets/js/jquery.ba-throttle-debounce.min.js?ver=1.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

www.cardemo.it/wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2

89.46.106.20

200 OK

0 B

URL HTTP/2
www.cardemo.it/wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2
IP
89.46.106.20:0
ASN
#31034 Aruba S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 13:04:44 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML