| www.cardemo.it/Mbank/login.php | 89.46.106.20 | 301 Moved Permanently | 168 B |
URL HTTP/1.1www.cardemo.it/Mbank/login.php IP89.46.106.20:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash82f04704c04c2706b1b96a73be2ff3a9 8cd210a378b7f54ce8945cdf1c7ce1f696171eee ede97dbf06b3e703cd950b3591a29351ce9b24eccab58b1a913b3c7e4571bf02
Analyzer | Verdict | Alert | phishtank | Other | | fortinet | Phishing | |
GET /Mbank/login.php HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: aruba-proxy
Date: Thu, 30 Mar 2023 06:10:40 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
Location: https://www.cardemo.it/Mbank/login.php
X-ServerName: ipvsproxy69.ad.aruba.it
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashb93010cbf31ba3ec785b4088e5d0f529 c0f1ab8a2aae3c445a8f24959a4eea433a345caf 2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6535
Expires: Thu, 30 Mar 2023 07:59:35 GMT
Date: Thu, 30 Mar 2023 06:10:40 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3529
Expires: Thu, 30 Mar 2023 07:09:29 GMT
Date: Thu, 30 Mar 2023 06:10:40 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashed282214b024a7895d90e229e92bb1cc 1f447aa59287ce2b45860a1a909d005a41305f77 a35ae9f89cbc77ed5fe849acdc2701592799c335f2674776d69c25bca0a00c2e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Alert, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 30 Mar 2023 05:28:15 GMT
content-type: application/json
age: 2545
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashc0d9353dc46e88bf564ed464b0b073c7 0b5ce170e7db24267a3ba5b79a48548b1acd2e5b 7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5654
Expires: Thu, 30 Mar 2023 07:44:54 GMT
Date: Thu, 30 Mar 2023 06:10:40 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pdZWmwr8EvRJqVB7Peoc3cPShyYVR1m2O2kZJHbIhmA+SGnP6m9kiIE3Z7XCfUY8vT8CdyF2yPgGMzDSZo+gCA==
x-amz-request-id: WYNHMZ36X92107C6
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 30 Mar 2023 06:02:49 GMT
age: 471
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 30 Mar 2023 06:10:40 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp06.actalis.it/VA/AUTHDV-G3 | 109.70.240.114 | 200 | 3.9 kB |
URL HTTP/1.1ocsp06.actalis.it/VA/AUTHDV-G3 IP109.70.240.114:0
Hash7954371efea8b2d5cfa51b009dc90812 57cbfeaaacfc2da006b3ca0860d2619bde2c0d02 db963e0187017ca4a402cad8145bbd8798d12936d23e6a425b4f1c9969696e45
POST /VA/AUTHDV-G3 HTTP/1.1
Host: ocsp06.actalis.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Thu, 30 Mar 2023 06:10:40 GMT
Content-Type: application/ocsp-response
Content-Length: 3926
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 23:05:06 GMT
Expires: Thu, 30 Mar 2023 23:05:05 GMT
ETag: "57cbfeaaacfc2da006b3ca0860d2619bde2c0d02"
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Pragma, Backoff, Expires, Last-Modified, Content-Type, Alert, Retry-After, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 30 Mar 2023 05:17:26 GMT
age: 3195
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashb3df8c73360b4239af64e11f9d2388be dc5463ff26615b40e4eab388052790d6c30ea5e6 877b23d16abf2e0e9f649f53747e82af0b75e8595abd71728254e612847cfdb6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "877B23D16ABF2E0E9F649F53747E82AF0B75E8595ABD71728254E612847CFDB6"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6966
Expires: Thu, 30 Mar 2023 08:06:47 GMT
Date: Thu, 30 Mar 2023 06:10:41 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashf6b3bb903e6f7394985c0ae662919208 ee3cb0fbd0017ed3a001ce195bc0cfa386979567 c6b84721f8ea52808c9884b612ffeaa16fe1e14345d9561135fbcf738a56dd2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashd4fd78e1925a923742815feb55c9dab0 1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb 88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.cardemo.it/wp-content/plugins/animate-it/assets/css/block-style.css?ver=1677146220 | 89.46.106.20 | 200 OK | 149 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/animate-it/assets/css/block-style.css?ver=1677146220 IP89.46.106.20:0
Hash1eb205cb9c0ed52294eb43e5e91b57db 4fe366653e26ebf6002b9421e1c27ecbc0537aed 65813a49fec46dac01ae0504e4a0d6d7f59eaa27462d413befda35c5288fd685
GET /wp-content/plugins/animate-it/assets/css/block-style.css?ver=1677146220 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
content-length: 149
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
accept-ranges: bytes
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/themes/astra-child/style.css?ver=1.0.0 | 89.46.106.20 | 200 OK | 254 B |
URL HTTP/2www.cardemo.it/wp-content/themes/astra-child/style.css?ver=1.0.0 IP89.46.106.20:0
Hash7e8c917585b8044d592cd854299c5c85 7dee6a6f3b1df3ba8e5011c523643422a5026b9b 0b5c56464ae8537c4525a2bfd3c988411b89d0b53d3f6f1f91234c7e889f5bf5
GET /wp-content/themes/astra-child/style.css?ver=1.0.0 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
content-length: 254
last-modified: Mon, 06 Feb 2023 11:18:43 GMT
accept-ranges: bytes
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-221595337-1 | 142.250.74.168 | 200 OK | 45 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-221595337-1 IP142.250.74.168:0
File typeASCII text, with very long lines (2206) Hash04554ef29d4bd0367c3c4b2e21c7f731 020573d8e8fc6437c67d6e482da549405394ff91 671fc1a2dfcf715bf54c8f2de8e7640ed6c5498aaad12727945099b6e5cb2d74
GET /gtag/js?id=UA-221595337-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 30 Mar 2023 06:10:41 GMT
expires: Thu, 30 Mar 2023 06:10:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44839
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-definitovo-2-164x53.png | 89.46.106.20 | 200 OK | 4.1 kB |
URL HTTP/2www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-definitovo-2-164x53.png IP89.46.106.20:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash95a67a26756026c11ffc077f6aa45ac4 aaf541e8ae0267f44732362c02c6c4347deff026 1653fab596e695576525048306377fd9a8ff13eb4293d8eecf364cecb84d6067
GET /wp-content/uploads/2022/02/logo-cardemo-definitovo-2-164x53.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/webp
content-length: 4062
vary: Accept
last-modified: Tue, 07 Feb 2023 11:36:45 GMT
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 29 Mar 2024 06:10:41 GMT
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-icon-300x300.png | 89.46.106.20 | 200 OK | 5.1 kB |
URL HTTP/2www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-icon-300x300.png IP89.46.106.20:0
File typeRIFF (little-endian) data, Web/P image\012- data Hashc746bdfcad188007608f6f93d4353824 80fc1a511b14cc88a70f873e74864152635d2e6d 9e25d380656c0d374857486c4357d92498939f372be3ac227fa7795413e344e1
GET /wp-content/uploads/2022/02/logo-cardemo-icon-300x300.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/webp
content-length: 5126
vary: Accept
last-modified: Tue, 07 Feb 2023 11:36:44 GMT
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 29 Mar 2024 06:10:41 GMT
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashf6b3bb903e6f7394985c0ae662919208 ee3cb0fbd0017ed3a001ce195bc0cfa386979567 c6b84721f8ea52808c9884b612ffeaa16fe1e14345d9561135fbcf738a56dd2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashd4fd78e1925a923742815feb55c9dab0 1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb 88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 54.191.242.233 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.191.242.233:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: anW/uLoV9pOSkkuPyVDtqw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wxHKj0BdxmA8VB1NwFF3FaUVNbo=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash21966d424aed17f9af10f69f1cb82860 87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be 6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash21966d424aed17f9af10f69f1cb82860 87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be 6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.cardemo.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 503040
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.site.js?ver=1.4.5 | 89.46.106.20 | 200 OK | 23 kB |
URL HTTP/2www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.site.js?ver=1.4.5 IP89.46.106.20:0
Hashee7eb3dc74d237169db1cb595a21dc85 0b4d042db58471f107c61e9323da07e3b8c9260c f21de7f001b5cc820f27a0d5ea858984c97562dea2fdf6ca39a18eb115954ce6
GET /wp-content/plugins/animate-it/assets/js/edsanimate.site.js?ver=1.4.5 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/gtranslate/flags/24/de.png | 89.46.106.20 | 200 OK | 602 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/gtranslate/flags/24/de.png IP89.46.106.20:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash8a2ba86f3b7de7562445967e2c21843b 3046cd0b51721f180c2dc75513fd4bfd316b45b5 cc318f3be9ba75def2af54bd9d0fab4f3e316517de9bf138e40dee06d332602d
GET /wp-content/plugins/gtranslate/flags/24/de.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 602
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:29 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2 | 89.46.106.20 | 200 OK | 2.0 kB |
URL HTTP/2www.cardemo.it/wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2 IP89.46.106.20:0
Hash026d6dceaca87b1310772cbc9d22f4ec 5610e460170174423b13cb02c8333cf08faadbd4 b99b0d6d6045a92241d2dc3951a36a8264f0889bec32d6d0ab0245254a908b03
GET /wp-content/plugins/mystickymenu/js/detectmobilebrowser.js?ver=2.6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 13:04:44 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/gtranslate/flags/24/en.png | 89.46.106.20 | 200 OK | 1.8 kB |
URL HTTP/2www.cardemo.it/wp-content/plugins/gtranslate/flags/24/en.png IP89.46.106.20:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hashec7233b5c80e5db85f7733b2ec25203f d4c36fff06dc7d920b10eb13b58ea9cd9321b430 347ee97a492f79675749d03533810ff899ee6a784b4e156f3e0a7613cdfb3d40
GET /wp-content/plugins/gtranslate/flags/24/en.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 1767
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:29 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/gtranslate/flags/24/pt.png | 89.46.106.20 | 200 OK | 1.1 kB |
URL HTTP/2www.cardemo.it/wp-content/plugins/gtranslate/flags/24/pt.png IP89.46.106.20:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hashbb3cb490b63a8f51283c686b916cf4ff f325c9d27acb1d3e03a3481eb2c240368ae8460f f06d3def1549dd1b0a108ddc645d2e8906fb631e5812df19cdcbd887f3700bd8
GET /wp-content/plugins/gtranslate/flags/24/pt.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 1076
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:30 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/gtranslate/flags/24/it.png | 89.46.106.20 | 200 OK | 642 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/gtranslate/flags/24/it.png IP89.46.106.20:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash922efc02f080135a63137dde4ffea287 a4583be3e579a69a03a0d1f09995fdb6d1244f7d 510116996dc4979a225c07962d84bb76e2b6340234c2c5e4280596ad08a632cb
GET /wp-content/plugins/gtranslate/flags/24/it.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 642
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:30 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/gtranslate/flags/24/es.png | 89.46.106.20 | 200 OK | 873 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/gtranslate/flags/24/es.png IP89.46.106.20:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash8bf31a924501d6db655fe75696b5f046 94ba0f8d4db0c35c1246a55fcbd6e0ef3cd7f0e2 5ae9561f31199bf8a892f797a69db1bc5d477e2f8318f2b7e95487f025f66f28
GET /wp-content/plugins/gtranslate/flags/24/es.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/png
content-length: 873
cache-control: private
last-modified: Mon, 13 Mar 2023 16:05:29 GMT
accept-ranges: bytes
vary: Accept
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash21966d424aed17f9af10f69f1cb82860 87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be 6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 06:10:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 30 Mar 2023 06:05:11 GMT
expires: Thu, 30 Mar 2023 08:05:11 GMT
cache-control: public, max-age=7200
age: 330
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-icon-150x150.png | 89.46.106.20 | 200 OK | 2.8 kB |
URL HTTP/2www.cardemo.it/wp-content/uploads/2022/02/logo-cardemo-icon-150x150.png IP89.46.106.20:0
File typeRIFF (little-endian) data, Web/P image\012- data Hashe0ea3f99a00703b4663f175a6dcf8857 5c45987288431d82f2cd039e0f45b30d6a11b430 e9e94d2332c44114894ea3a1ccc0ffe9c24d603bde583a6ea6393320f5152b46
GET /wp-content/uploads/2022/02/logo-cardemo-icon-150x150.png HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Cookie: cookielawinfo-checkbox-funzionali=no; cookielawinfo-checkbox-analitici=no; cookielawinfo-checkbox-necessari=no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: image/webp
content-length: 2798
vary: Accept
last-modified: Tue, 07 Feb 2023 11:36:44 GMT
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Fri, 29 Mar 2024 06:10:41 GMT
x-servername: ipvsproxy69.ad.aruba.it
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-LWHNM8TRBY>m=45je33r0&_p=983695378&gdid=dZTNiMT&cid=2132264040.1680156667&ul=en-us&sr=1280x1024&_s=1&sid=1680156666&sct=1&seg=0&dl=https%3A%2F%2Fwww.cardemo.it%2FMbank%2Flogin.php&dt=Pagina%20non%20trovata%20%E2%80%93%20Autodemolizioni%20Cardemo%20Nociglia%20Lecce%20Puglia%20Italia%20autodemolizione%20rottamazione%20e%20ritiro%20di%20autoveicoli%20e%20mezzi%20pesanti%20con%20soccorso%20stradale%20auto%20e%20mezzo%20pesante%20dove%20rottamare%20la%20propria%20auto%20nel%20Salento%20e%20provincia%20di%20lecce%20Bari%20Brindisi%20Taranto%20autoricambi%20usati%20di%20carrozzeria%20elettronica%20e%20motori%20multimarche%20ricambi%20di%20veicoli%20automobili%20anche%20d%27epoca%20plurimarche%20italiane%20estraniere%20come%20cofano%20sportello%20portellone%20fiancata%20lamiera%20ammortizzatori%20braccetti%20giunti%20freni%20a%20disco%20pinze%20freno%20avantreno%20serbatoio%20sedile%20cruscotto%20tachimetro%20digitale%20analogico%20centralina%20impianto%20elettrico%20di%20riscaldamento%20cambio%20automatico%20manuale%20guarnizioni%20scocca%20pianale%20tetto%20apribile%20fari%20fendinebbia%20battitacco%20maniglia%20serratura%20antifurto%20autoradio%20cerchi%20in%20lega%20climatizzatore%20manuale%20airbag%20laterali%20airbag%20passeggero%20alzacristalli%20elettrici%20posteriori%20e%20anteriori%20differenziale%20motore%20pompa%20gasolio%20iniettori%20carburatori%20sensori%20posteriori%20parcheggio%20auto%20elettrica%20sedili%20riscaldati%20volante%20in%20pelle%20cavo%20elettronico%20centralina%20lettore%20CD%20audio%20servosterzo%20regolazione%20centralizzata%20climatizzatore%20frizione%20controllo%20trazione%20integrale%20elettronico%20motorino%20di%20avviamento%20marmitta%20scarico%20catalizzatore%20pompa%20benzina%20cristalli%20sottoscocca%20paraurti%20gomme%20usate%20invernali%20estive%20paraurti%20parafango%20fari%20xenon%20telai%20avantreno%20culla%20barra%20duomy%20roll%20bar%20moquettes%20tasche%20laterali%20condizionatore%20piantone%20sterzo%20sfascio%20con%20pezzi%20di%20ricambio%20lecce%20di%20Abarth%20alfa%20romeo%20alpine%20aston%20martin%20audi%20bentley%20bmw%20cadillac%20chery%20chevrolet%20chrysler%20citro%C3%ABn%20cupra%20dacia%20daihatsu%20dodge%20dr%20ds%20automobiles%20evo%20ferrari%20fiat%20ford%20great%20wall%20haval%20honda%20hummer%20hyundai%20infiniti%20isuzu%20jaguar%20jeep%20kia%20koenigsseglada%20lamborghini%20lancia%20land%20rover%20lexus%20lotus%20mahindra%20maserati%20mazda%20mercedes%20benz%20mg%20mini%20cooper%20mitsubishi%20motors%20nissan%20opel%20peugeot%20porsche%20ram%20renault%20rolls%20royce%20seat%20skoda%20smart%20ssangyong%20subaru%20suzuki%20tata%20tesla%20toyota%20volkswagen%20volvo | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-LWHNM8TRBY>m=45je33r0&_p=983695378&gdid=dZTNiMT&cid=2132264040.1680156667&ul=en-us&sr=1280x1024&_s=1&sid=1680156666&sct=1&seg=0&dl=https%3A%2F%2Fwww.cardemo.it%2FMbank%2Flogin.php&dt=Pagina%20non%20trovata%20%E2%80%93%20Autodemolizioni%20Cardemo%20Nociglia%20Lecce%20Puglia%20Italia%20autodemolizione%20rottamazione%20e%20ritiro%20di%20autoveicoli%20e%20mezzi%20pesanti%20con%20soccorso%20stradale%20auto%20e%20mezzo%20pesante%20dove%20rottamare%20la%20propria%20auto%20nel%20Salento%20e%20provincia%20di%20lecce%20Bari%20Brindisi%20Taranto%20autoricambi%20usati%20di%20carrozzeria%20elettronica%20e%20motori%20multimarche%20ricambi%20di%20veicoli%20automobili%20anche%20d%27epoca%20plurimarche%20italiane%20estraniere%20come%20cofano%20sportello%20portellone%20fiancata%20lamiera%20ammortizzatori%20braccetti%20giunti%20freni%20a%20disco%20pinze%20freno%20avantreno%20serbatoio%20sedile%20cruscotto%20tachimetro%20digitale%20analogico%20centralina%20impianto%20elettrico%20di%20riscaldamento%20cambio%20automatico%20manuale%20guarnizioni%20scocca%20pianale%20tetto%20apribile%20fari%20fendinebbia%20battitacco%20maniglia%20serratura%20antifurto%20autoradio%20cerchi%20in%20lega%20climatizzatore%20manuale%20airbag%20laterali%20airbag%20passeggero%20alzacristalli%20elettrici%20posteriori%20e%20anteriori%20differenziale%20motore%20pompa%20gasolio%20iniettori%20carburatori%20sensori%20posteriori%20parcheggio%20auto%20elettrica%20sedili%20riscaldati%20volante%20in%20pelle%20cavo%20elettronico%20centralina%20lettore%20CD%20audio%20servosterzo%20regolazione%20centralizzata%20climatizzatore%20frizione%20controllo%20trazione%20integrale%20elettronico%20motorino%20di%20avviamento%20marmitta%20scarico%20catalizzatore%20pompa%20benzina%20cristalli%20sottoscocca%20paraurti%20gomme%20usate%20invernali%20estive%20paraurti%20parafango%20fari%20xenon%20telai%20avantreno%20culla%20barra%20duomy%20roll%20bar%20moquettes%20tasche%20laterali%20condizionatore%20piantone%20sterzo%20sfascio%20con%20pezzi%20di%20ricambio%20lecce%20di%20Abarth%20alfa%20romeo%20alpine%20aston%20martin%20audi%20bentley%20bmw%20cadillac%20chery%20chevrolet%20chrysler%20citro%C3%ABn%20cupra%20dacia%20daihatsu%20dodge%20dr%20ds%20automobiles%20evo%20ferrari%20fiat%20ford%20great%20wall%20haval%20honda%20hummer%20hyundai%20infiniti%20isuzu%20jaguar%20jeep%20kia%20koenigsseglada%20lamborghini%20lancia%20land%20rover%20lexus%20lotus%20mahindra%20maserati%20mazda%20mercedes%20benz%20mg%20mini%20cooper%20mitsubishi%20motors%20nissan%20opel%20peugeot%20porsche%20ram%20renault%20rolls%20royce%20seat%20skoda%20smart%20ssangyong%20subaru%20suzuki%20tata%20tesla%20toyota%20volkswagen%20volvo IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LWHNM8TRBY>m=45je33r0&_p=983695378&gdid=dZTNiMT&cid=2132264040.1680156667&ul=en-us&sr=1280x1024&_s=1&sid=1680156666&sct=1&seg=0&dl=https%3A%2F%2Fwww.cardemo.it%2FMbank%2Flogin.php&dt=Pagina%20non%20trovata%20%E2%80%93%20Autodemolizioni%20Cardemo%20Nociglia%20Lecce%20Puglia%20Italia%20autodemolizione%20rottamazione%20e%20ritiro%20di%20autoveicoli%20e%20mezzi%20pesanti%20con%20soccorso%20stradale%20auto%20e%20mezzo%20pesante%20dove%20rottamare%20la%20propria%20auto%20nel%20Salento%20e%20provincia%20di%20lecce%20Bari%20Brindisi%20Taranto%20autoricambi%20usati%20di%20carrozzeria%20elettronica%20e%20motori%20multimarche%20ricambi%20di%20veicoli%20automobili%20anche%20d%27epoca%20plurimarche%20italiane%20estraniere%20come%20cofano%20sportello%20portellone%20fiancata%20lamiera%20ammortizzatori%20braccetti%20giunti%20freni%20a%20disco%20pinze%20freno%20avantreno%20serbatoio%20sedile%20cruscotto%20tachimetro%20digitale%20analogico%20centralina%20impianto%20elettrico%20di%20riscaldamento%20cambio%20automatico%20manuale%20guarnizioni%20scocca%20pianale%20tetto%20apribile%20fari%20fendinebbia%20battitacco%20maniglia%20serratura%20antifurto%20autoradio%20cerchi%20in%20lega%20climatizzatore%20manuale%20airbag%20laterali%20airbag%20passeggero%20alzacristalli%20elettrici%20posteriori%20e%20anteriori%20differenziale%20motore%20pompa%20gasolio%20iniettori%20carburatori%20sensori%20posteriori%20parcheggio%20auto%20elettrica%20sedili%20riscaldati%20volante%20in%20pelle%20cavo%20elettronico%20centralina%20lettore%20CD%20audio%20servosterzo%20regolazione%20centralizzata%20climatizzatore%20frizione%20controllo%20trazione%20integrale%20elettronico%20motorino%20di%20avviamento%20marmitta%20scarico%20catalizzatore%20pompa%20benzina%20cristalli%20sottoscocca%20paraurti%20gomme%20usate%20invernali%20estive%20paraurti%20parafango%20fari%20xenon%20telai%20avantreno%20culla%20barra%20duomy%20roll%20bar%20moquettes%20tasche%20laterali%20condizionatore%20piantone%20sterzo%20sfascio%20con%20pezzi%20di%20ricambio%20lecce%20di%20Abarth%20alfa%20romeo%20alpine%20aston%20martin%20audi%20bentley%20bmw%20cadillac%20chery%20chevrolet%20chrysler%20citro%C3%ABn%20cupra%20dacia%20daihatsu%20dodge%20dr%20ds%20automobiles%20evo%20ferrari%20fiat%20ford%20great%20wall%20haval%20honda%20hummer%20hyundai%20infiniti%20isuzu%20jaguar%20jeep%20kia%20koenigsseglada%20lamborghini%20lancia%20land%20rover%20lexus%20lotus%20mahindra%20maserati%20mazda%20mercedes%20benz%20mg%20mini%20cooper%20mitsubishi%20motors%20nissan%20opel%20peugeot%20porsche%20ram%20renault%20rolls%20royce%20seat%20skoda%20smart%20ssangyong%20subaru%20suzuki%20tata%20tesla%20toyota%20volkswagen%20volvo HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 37
Origin: https://www.cardemo.it
Connection: keep-alive
Referer: https://www.cardemo.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: https://www.cardemo.it
date: Thu, 30 Mar 2023 06:10:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4688
Expires: Thu, 30 Mar 2023 07:28:50 GMT
Date: Thu, 30 Mar 2023 06:10:42 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4688
Expires: Thu, 30 Mar 2023 07:28:50 GMT
Date: Thu, 30 Mar 2023 06:10:42 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4688
Expires: Thu, 30 Mar 2023 07:28:50 GMT
Date: Thu, 30 Mar 2023 06:10:42 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2021c271f9290204bd14cd2a3a1680fc 39b68cbcaba381d63dc67bc289fb67c849adb9ff a84c5dd1e52d7cd535e04cb455891a1442000eb0e4381031c976b4cf3be96f2f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4549
x-amzn-requestid: 70e07309-5fc5-4307-b455-29a187eae0d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoBHFFoAMFx5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afcc-298f18fd0cf0b37465a74c13;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: kbG1Llnn0Elhz5ItoJyufkUgoB5FhmvLpk2oQox2HPnSHeBfCOuXXw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
age: 30352
etag: "39b68cbcaba381d63dc67bc289fb67c849adb9ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e895093-f168-421f-8ab3-fd696a67308d.jpeg | 34.120.237.76 | 200 OK | 9.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e895093-f168-421f-8ab3-fd696a67308d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5c4c01f0ebb94ca05a68ff8a807d5fd1 e494830fd0e66b40a61ff466135b65435daf45a0 06ca371b189d542a428a701e5bab7a777744b72d2f7d679b8a6629c8316e117a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e895093-f168-421f-8ab3-fd696a67308d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8974
x-amzn-requestid: f035a7c6-0b2b-4079-aacc-05438c608b03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAynH1roAMFQcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae76-47ed2f4526d1533675503a46;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9LaPgVmw0Fe1AA5HJY7sN6diGoMlQhxFWEEHYKDASkoVzYZ8zCHDEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:57:50 GMT
age: 29572
etag: "e494830fd0e66b40a61ff466135b65435daf45a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4239dcf-d6d6-4801-9d16-74b0d7e5d075.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4239dcf-d6d6-4801-9d16-74b0d7e5d075.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbe355ca6d4b70b5457e2fc2317981a07 4d01d9eb4d5723683e0828ce06c6e99a9bf1423b b961abfcead09f78f25117acb48464829e45c5bafa0f0e6244e2520ffbdb62cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4239dcf-d6d6-4801-9d16-74b0d7e5d075.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9083
x-amzn-requestid: 0c03f8b3-4d84-439f-8ce6-3560337d0d6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CewbkHQdIAMF0Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229449-14cb7d6e0ddf3f144c976adb;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:16:25 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ts8HQx2z7zd4W2GTsd2TXYlG7Zhul537x_ZpyWQBMXnncfqXV9aObw==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:32:17 GMT
age: 81505
etag: "4d01d9eb4d5723683e0828ce06c6e99a9bf1423b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3697d60-af19-4bfb-9d00-0a88b42c7092.jpeg | 34.120.237.76 | 200 OK | 9.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3697d60-af19-4bfb-9d00-0a88b42c7092.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6119f1997cb5d1f4e61ddeeedae7a35f 13e9881bc79a5c361211430b0ba20eab32b3dbef f38d53a870575f53855e00b6cb5422ffbf7a2210ccff25fc837c6a71b0d528b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3697d60-af19-4bfb-9d00-0a88b42c7092.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9030
x-amzn-requestid: 5e98c214-3229-484f-911f-ca61e9a6ada3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cew9OHDgoAMFqxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229521-0014bec92bd97c080a5015fd;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:20:01 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: iKE8kCq1U3EIAGIg4aerYZ6j0MeCjGzp9G_7aExDq23hzJtxZVg05A==
via: 1.1 5502255f9557c1e2c098b94110b6151c.cloudfront.net (CloudFront), 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:28:58 GMT
age: 81704
etag: "13e9881bc79a5c361211430b0ba20eab32b3dbef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F880692f5-03f5-4540-ad20-5c8bd8336833.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F880692f5-03f5-4540-ad20-5c8bd8336833.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc3261e7e3ac917fa959fcf8648c3ab98 bb4ef5a29187d75c97ef3f7a5672ccb009791561 4070b831a379ae1ed187a03b479460842cb2ece90d77c30fc6fc4517bc76f3b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F880692f5-03f5-4540-ad20-5c8bd8336833.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8560
x-amzn-requestid: 5f1fbb58-48aa-430f-a132-0e7057e159c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CewdRFeIoAMF-uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229454-40f85a155c9e623374d21bb8;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:16:36 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nyhw0gOUkvg7zzOBejYRXvDhs-rf8IRF9xFxeMWZYCX_iNq_JA8d4A==
via: 1.1 f3802d173009698413044360f84de06c.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 07:36:07 GMT
age: 81275
etag: "bb4ef5a29187d75c97ef3f7a5672ccb009791561"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ed4a5c5-fe11-4f30-864e-2116aae51642.jpeg | 34.120.237.76 | 200 OK | 5.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ed4a5c5-fe11-4f30-864e-2116aae51642.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash76c71571a378e261334e5acb723634ab f1234c280364b6fe1dcf9c6c64edadc235108c4b 97544d600ab1ae204b169c3b7ba2a74df689b6c711a003d72f0934165d8a3e25
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ed4a5c5-fe11-4f30-864e-2116aae51642.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5395
x-amzn-requestid: ff3218dc-8754-4568-8e42-0885cb7e5d06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkA0BFYNoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae7f-127129cf3776a60c333d205c;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ayBzSVUrRznKMPzI1JYvj1ikLo-arbVQUxdEZDM7KYHWyL2cwT10tA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:45:03 GMT
etag: "f1234c280364b6fe1dcf9c6c64edadc235108c4b"
content-type: image/jpeg
age: 30339
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/Mbank/login.php | 89.46.106.20 | 404 Not Found | 0 B |
URL HTTP/2www.cardemo.it/Mbank/login.php IP89.46.106.20:0
Analyzer | Verdict | Alert | phishtank | Other | | fortinet | Phishing | |
GET /Mbank/login.php HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.cardemo.it/wp-json/>; rel="https://api.w.org/"
x-aruba-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.8 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.8 IP89.46.106.20:0
GET /wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js?ver=3.0.8 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 16:48:52 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.0.2 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.0.2 IP89.46.106.20:0
GET /wp-content/themes/astra/assets/css/minified/compatibility/contact-form-7-main.min.css?ver=4.0.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 10:55:46 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/gtranslate/js/flags.js?ver=6.2 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/gtranslate/js/flags.js?ver=6.2 IP89.46.106.20:0
GET /wp-content/plugins/gtranslate/js/flags.js?ver=6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 13 Mar 2023 16:05:32 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-includes/js/wp-emoji-release.min.js?ver=6.2 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-includes/js/wp-emoji-release.min.js?ver=6.2 IP89.46.106.20:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 29 Mar 2023 21:48:37 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.8 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.8 IP89.46.106.20:0
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-public.css?ver=3.0.8 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 16:48:52 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/animate-it/assets/js/viewportchecker.js?ver=1.4.4 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/animate-it/assets/js/viewportchecker.js?ver=1.4.4 IP89.46.106.20:0
GET /wp-content/plugins/animate-it/assets/js/viewportchecker.js?ver=1.4.4 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.js?ver=1.4.4 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/animate-it/assets/js/edsanimate.js?ver=1.4.4 IP89.46.106.20:0
GET /wp-content/plugins/animate-it/assets/js/edsanimate.js?ver=1.4.4 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.26 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.26 IP89.46.106.20:0
GET /wp-content/plugins/click-to-chat-for-whatsapp/new/inc/assets/js/app.js?ver=3.26 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 28 Mar 2023 21:46:34 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A400%7CBarlow+Semi+Condensed%3A600&display=fallback&ver=4.0.2 | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto%3A400%7CBarlow+Semi+Condensed%3A600&display=fallback&ver=4.0.2 IP142.250.74.106:0
GET /css?family=Roboto%3A400%7CBarlow+Semi+Condensed%3A600&display=fallback&ver=4.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Mar 2023 06:10:41 GMT
date: Thu, 30 Mar 2023 06:10:41 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 IP89.46.106.20:0
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.0.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 10:55:47 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/simply-gallery-block/blocks/pgc_sgb.min.style.css?ver=3.1.1 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/simply-gallery-block/blocks/pgc_sgb.min.style.css?ver=3.1.1 IP89.46.106.20:0
GET /wp-content/plugins/simply-gallery-block/blocks/pgc_sgb.min.style.css?ver=3.1.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 20 Mar 2023 16:03:39 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 IP89.46.106.20:0
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.5.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 24 Mar 2023 09:46:28 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.8 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.8 IP89.46.106.20:0
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-table.css?ver=3.0.8 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 16:48:52 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 IP89.46.106.20:0
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.5.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 24 Mar 2023 09:46:28 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2 IP89.46.106.20:0
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.0.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 07 Feb 2023 10:55:46 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1 IP89.46.106.20:0
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.5.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 24 Mar 2023 09:46:28 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.3 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-includes/js/jquery/jquery.min.js?ver=3.6.3 IP89.46.106.20:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.3 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 29 Mar 2023 21:48:37 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 IP89.46.106.20:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 29 Mar 2023 21:48:37 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.8 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.8 IP89.46.106.20:0
GET /wp-content/plugins/cookie-law-info/legacy/public/css/cookie-law-info-gdpr.css?ver=3.0.8 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 08 Feb 2023 16:48:52 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/animate-it/assets/css/animate-animo.css?ver=6.2 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/animate-it/assets/css/animate-animo.css?ver=6.2 IP89.46.106.20:0
GET /wp-content/plugins/animate-it/assets/css/animate-animo.css?ver=6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/animate-it/assets/js/animo.min.js?ver=1.0.3 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/animate-it/assets/js/animo.min.js?ver=1.0.3 IP89.46.106.20:0
GET /wp-content/plugins/animate-it/assets/js/animo.min.js?ver=1.0.3 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/animate-it/assets/js/jquery.ba-throttle-debounce.min.js?ver=1.1 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/animate-it/assets/js/jquery.ba-throttle-debounce.min.js?ver=1.1 IP89.46.106.20:0
GET /wp-content/plugins/animate-it/assets/js/jquery.ba-throttle-debounce.min.js?ver=1.1 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 23 Feb 2023 09:57:00 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.cardemo.it/wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2 | 89.46.106.20 | 200 OK | 0 B |
URL HTTP/2www.cardemo.it/wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2 IP89.46.106.20:0
GET /wp-content/plugins/mystickymenu/js/mystickymenu.min.js?ver=2.6.2 HTTP/1.1
Host: www.cardemo.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.cardemo.it/Mbank/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: aruba-proxy
date: Thu, 30 Mar 2023 06:10:41 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 13:04:44 GMT
x-servername: ipvsproxy69.ad.aruba.it
content-encoding: gzip
X-Firefox-Spdy: h2
|
|