Report - www.domusmedicaeste.it/css/lk/

Report Overview

Submitted URL
www.domusmedicaeste.it/css/lk/
IP
80.88.84.41
ASN
#31034 Aruba S.p.A.
Submitted
2023-05-07 13:37:12
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	1997-09-15	2015-05-10	2023-05-06	3.0 kB	51 kB	216.58.207.228
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-05-07	428 B	85 kB	142.250.74.40
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-07	3.3 kB	100 kB	216.58.207.227
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-05-07	2.9 kB	694 kB	142.250.74.35
www.domusmedicaeste.it	unknown	2011-01-12	2015-03-30	2023-04-16	486 B	506 B	80.88.84.41
www.domus-medica.it	unknown	unknown	2015-11-14	2023-04-22	8.1 kB	1.5 MB	195.231.61.216
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-07	3.3 kB	7.0 kB	142.250.74.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-05-07	medium	www.domusmedicaeste.it/css/lk/

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.google.com/recaptcha/api.js?render=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&ver=3.0	884 B	2023-05-07	2023-05-08
Pretty URL www.google.com/recaptcha/api.js?render=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&ver=3.0 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-07 15:37:20 Last Seen2023-05-08 09:35:39 Times Seen6 Hash 4da5e6dc0498b7640b2974cb0021cfdc f29fc622d112a1211f929c73cc7dfbcc3748e914 419d321f8bde9d6f932ee5180aabdb358d51888e80f6ecccc7864b782f2fcc12 Loading...

	unknown	46 B	2023-04-25	2024-01-08
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-25 14:31:17 Last Seen2024-01-08 13:57:02 Times Seen24 Hash 48827007ebba288f0fab88f80fa0474f 237141f54266282ae0998325844e897a98598c51 88098f4376cfca5d59e718f39179e7943f67a6056b0c632694f0c5097ccf92c5 Loading...

	www.domus-medica.it/css/lk/	444 B	2023-05-07	2023-05-07
Pretty URL www.domus-medica.it/css/lk/ IP 195.231.61.216 ASN #202242 Aruba S.p.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-07 15:37:20 Last Seen2023-05-07 15:37:20 Times Seen1 Hash 33d694b6fe4034d851d1726fff0ae2d3 c38ef1ec5df6f91a777dee84f4bf8470b75911f5 62ce5a7f6e2af5b620061eaa98c5fbc18b487f789dc7c50cc64e003ed496bec2 Loading...

	www.google.com/recaptcha/api.js?onload=onloadSibCallback&render=explicit	912 B	2023-05-07	2023-05-10
Pretty URL www.google.com/recaptcha/api.js?onload=onloadSibCallback&render=explicit IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-07 15:37:20 Last Seen2023-05-10 14:19:27 Times Seen8 Hash 702a9327dc9103222b5048932b9d1ad0 5f84b57e8b00e3b5d5ebb8c7ac69b5a6f5fe9703 2b50cf5e79b4257b995f750ddf4c49f88c2206797c960ccac08c91e1a88b9ec3 Loading...

	www.googletagmanager.com/gtag/js?id=G-FCF1HEVMX3	248 kB	2023-05-07	2023-05-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-FCF1HEVMX3 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-07 15:37:20 Last Seen2023-05-07 15:37:20 Times Seen2 Hash 6c822b4fcf3c6fed4140f8edb5d4aff0 f459f201e1ca981a31ed5b1f061ba5a0fc5dbc78 337d9a5f10d4a2f563bd69bf49fcbb766bc8846625e90b1c55a4227543411df0 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i	69 B	2023-03-07	2024-07-27
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-07-27 04:14:26 Times Seen112158 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-07-27
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-07-27 04:04:32 Times Seen384357 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.domus-medica.it/css/lk/	152 B	2023-05-07	2023-09-04
Pretty URL www.domus-medica.it/css/lk/ IP 195.231.61.216 ASN #202242 Aruba S.p.A. Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-07 15:37:20 Last Seen2023-09-04 07:59:02 Times Seen10 Hash 714f0bbc76496e290e9bc8e6a4f44186 f62b1dc1351a232c4fc002fa0cacbb8363540000 6f21fca05921d2a0cc91d82e608f35549e469412c20b9c46426310c33f0ab258 Loading...

	www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js	415 kB	2023-05-05	2023-05-21
Pretty URL www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-05 09:34:52 Last Seen2023-05-21 10:28:09 Times Seen12179 Hash e2b80f16cd438a78e686d769dbff9b23 a054ffa1e3683691fda2208539cc1b99540f6df2 12c5a5f6c4176f49743e6fe7c298b563c375e968ff744745fbb60a7ba8bd1b73 Loading...

	www.domus-medica.it/css/lk/sandbox%20eval%20code	147 B	2023-04-11	2024-07-27
Pretty URL www.domus-medica.it/css/lk/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-07-27 04:04:32 Times Seen385008 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.domus-medica.it/wp-includes/js/jquery/jquery.js	97 kB	2023-03-07	2024-07-26
Pretty URL www.domus-medica.it/wp-includes/js/jquery/jquery.js IP 195.231.61.216 ASN #202242 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-07-26 23:37:12 Times Seen19271 Hash 49edccea2e7ba985cadc9ba0531cbed1 f8747f8ee704d9af31d0950015e01d3f9635b070 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df Loading...

	www.domus-medica.it/wp-content/min/js/xplay_0d77033d8f8917835c9a7ffaa7bf84b8.js	631 kB	2023-05-07	2023-09-04
Pretty URL www.domus-medica.it/wp-content/min/js/xplay_0d77033d8f8917835c9a7ffaa7bf84b8.js IP 195.231.61.216 ASN #202242 Aruba S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-07 15:37:20 Last Seen2023-09-04 07:59:02 Times Seen16 Hash 32a4a24a2888ed79948842c18d417ead 13e9c26e67bc338166a9f07da5c14a32f72789ce d9e9d40de6c41f2ae417899a641770d2303650dadc37b07502464dde27ccd7c4 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i	43 kB	2023-05-07	2023-05-07
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-07 15:37:20 Last Seen2023-05-07 15:37:20 Times Seen1 Hash f4a9e106b877ae7a9c0d7273d76148c6 77d85c5473b4768cc23e7cc91a8c4a3e330c7015 212316adfc196ec2134c49076a32afd7d1b3a90f9128f01f98c71f4067e809e7 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ff69082359a0782fda50e45c1dd79d4b	16 kB	2023-05-02	2023-05-21
Pretty Observations First Seen2023-05-02 14:58:18 Last Seen2023-05-21 08:57:30 Times Seen764 Hash ff69082359a0782fda50e45c1dd79d4b c07043a68dcd5d9b3bc87c17db4759a29840709c f763e8ba794d4ebc9bb883c2606185b76ec05289ff3b2e8401179338328cb90f Loading...

	#2 Eval - 92ff660bda69c52410c0aaf16bf04e6a	22 B	2023-05-02	2023-05-21
Pretty Observations First Seen2023-05-02 14:58:18 Last Seen2023-05-21 08:57:30 Times Seen764 Hash 92ff660bda69c52410c0aaf16bf04e6a 2d0bed56befb04053d606222a0348f20327a5619 fd7bd65d768e888195882c509ded8b7ff5e753e73218f58b22ab8c424bc2a44d Loading...

	#3 Eval - e9d4efa88835fc33f4a8dc4bcf1bd142	22 B	2023-05-02	2023-05-21
Pretty Observations First Seen2023-05-02 14:58:18 Last Seen2023-05-21 08:57:30 Times Seen766 Hash e9d4efa88835fc33f4a8dc4bcf1bd142 e0fb556dbb6a7d5b6d6207144a12dfd65256398b fb8b45ad48949fdefb09d292918dbf7cfccda77a8ac2cd903e07182174157eed Loading...

	#4 Eval - 0eccae9e01487084bc7955790eabe89b	20 kB	2023-05-07	2023-05-07
Pretty Observations First Seen2023-05-07 15:37:20 Last Seen2023-05-07 21:54:59 Times Seen2 Hash 0eccae9e01487084bc7955790eabe89b a5ebcb72c39dbbea800fa8c936164c2049f04615 e3b3841479801e8bb9f03e327fa05334187b9a2ddf8a765d938a42dd394330f2 Loading...

	#5 Eval - 17b2c416509c3685415d3452dd9ca40e	64 B	2023-05-02	2023-05-21
Pretty Observations First Seen2023-05-02 14:58:18 Last Seen2023-05-21 08:57:30 Times Seen765 Hash 17b2c416509c3685415d3452dd9ca40e 9ae3341c6807fd89f8c08194e0571d30647eb4c4 b9da887d43cd660deca631172cbbb993d68546b2fb0b32ee8cdc8784774241c0 Loading...

HTTP Transactions (45)

URL IP Response Size

www.domusmedicaeste.it/css/lk/

80.88.84.41

301 Moved Permanently

243 B

URL User Request GET HTTP/2
www.domusmedicaeste.it/css/lk/
IP
80.88.84.41:443
ASN
#31034 Aruba S.p.A.

Certificate
IssuerLet's Encrypt
Subjectdomusmedicaeste.it
FingerprintD3:5E:3C:9D:B1:CA:39:BC:EA:C7:61:05:A4:CB:16:96:84:61:71:FA
ValiditySun, 16 Apr 2023 17:15:29 GMT - Sat, 15 Jul 2023 17:15:28 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
243 B (243 bytes)
Hash
d1358165b281b42ee6e9369cf798f69b
ee66ecee7bfa144c772d90392448ce078fa1283c
72742b68fd06177be4b3f0141aff0ef724c5ebcce5d8a3c9cc1f42a40992763f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css/lk/ HTTP/1.1
Host: www.domusmedicaeste.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 07 May 2023 13:36:55 GMT
content-type: text/html; charset=iso-8859-1
content-length: 243
location: https://www.domus-medica.it/css/lk/
x-cache-status: BYPASS
x-powered-by: PleskLin
X-Firefox-Spdy: h2

www.domus-medica.it/css/lk/

195.231.61.216

404 Not Found

6.1 kB

URL User Request GET HTTP/2
www.domus-medica.it/css/lk/
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18667)
Size
6.1 kB (6142 bytes)
Hash
5afe28e4a1f7a5777a4952a6d4e21083
bdb706ea977480c1e6da17404aeddec6c5589cec
7ec413d2536803427ab73aa2dc1d1286f5c48f878d098f2c0f2fd375a064975d

HTTP Headers

GET /css/lk/ HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: nginx
date: Sun, 07 May 2023 13:36:55 GMT
content-type: text/html; charset=UTF-8
content-length: 6142
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.domus-medica.it/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

www.domus-medica.it/css/lk/

195.231.61.216

404 Not Found

162 B

URL User Request GET HTTP/2
www.domus-medica.it/css/lk/
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /css/lk/ HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 07 May 2023 13:36:56 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.domus-medica.it/css/lk/

www.domus-medica.it/css/lk/

195.231.61.216

404 Not Found

6.1 kB

URL User Request GET HTTP/2
www.domus-medica.it/css/lk/
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18667)
Size
6.1 kB (6142 bytes)
Hash
5afe28e4a1f7a5777a4952a6d4e21083
bdb706ea977480c1e6da17404aeddec6c5589cec
7ec413d2536803427ab73aa2dc1d1286f5c48f878d098f2c0f2fd375a064975d

HTTP Headers

GET /css/lk/ HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: text/html; charset=UTF-8
content-length: 6142
x-powered-by: PHP/7.4.33
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.domus-medica.it/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e0048bfd4dbd888e603799c38403132
0d83fde57ec051b3268d6187be01605080ae9c8a
643718e3659186d0651b6e4bd3c0d138bdb786ab2b455724cb251cfa74d3c5f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e0048bfd4dbd888e603799c38403132
0d83fde57ec051b3268d6187be01605080ae9c8a
643718e3659186d0651b6e4bd3c0d138bdb786ab2b455724cb251cfa74d3c5f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cc2d9732ad7837eabab81ef7088f0f60
edbd3340ba4bf7b3510035a3d72d13a90ac6829a
e3006361ada40cd4ffdba6c0ecfd9e3c338e950de8075ee4f8c5066d712912b5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?onload=onloadSibCallback&render=explicit

216.58.207.228

200 OK

585 B

URL GET HTTP/2
www.google.com/recaptcha/api.js?onload=onloadSibCallback&render=explicit
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint22:2A:81:06:18:D1:68:C5:1A:F7:E4:D9:FB:DF:C4:9B:E3:FD:BF:6E
ValidityMon, 17 Apr 2023 08:26:19 GMT - Mon, 10 Jul 2023 08:26:18 GMT

File type
ASCII text, with very long lines (912), with no line terminators
Size
585 B (585 bytes)
Hash
bde4f07ea15bff3300c9a4765852e3d1
7f9ddea10e415b5037625fe9616aacdbdd1d95bc
39dbe7724b6a6ee876393ac2854335083afe24225450389988aef6ac4d21f93d

HTTP Headers

GET /recaptcha/api.js?onload=onloadSibCallback&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Sun, 07 May 2023 13:36:57 GMT
date: Sun, 07 May 2023 13:36:57 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.domus-medica.it/media/logo-domus-medica.png

195.231.61.216

200 OK

8.8 kB

URL GET HTTP/2
www.domus-medica.it/media/logo-domus-medica.png
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
PNG image data, 330 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
8.8 kB (8823 bytes)
Hash
0ccd520099e0431d4a92cb4172cb40d8
380d4ba448b3bc574e8889b31ec4133eef7f19a5
62999895976153da5ad06fae7e55e6a8d0737d6b413798c23882c5781820fd24

HTTP Headers

GET /media/logo-domus-medica.png HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: image/png
content-length: 8823
last-modified: Fri, 02 Jul 2021 08:20:06 GMT
etag: "60decc36-2277"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-FCF1HEVMX3

142.250.74.40

200 OK

84 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-FCF1HEVMX3
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT

File type
ASCII text, with very long lines (4509)
Size
84 kB (84535 bytes)
Hash
7c686a3b3020fa22e26ec1873453bcae
2a9fed39fe590ca9c078242b1a7d58f54df50824
9ab7ea3239cb12ac2635e7396665097d2857c5d3b495948a46ccb75f03c2b6f6

HTTP Headers

GET /gtag/js?id=G-FCF1HEVMX3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 07 May 2023 13:36:57 GMT
expires: Sun, 07 May 2023 13:36:57 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84535
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?render=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&ver=3.0

216.58.207.228

200 OK

587 B

URL GET HTTP/2
www.google.com/recaptcha/api.js?render=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&ver=3.0
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint22:2A:81:06:18:D1:68:C5:1A:F7:E4:D9:FB:DF:C4:9B:E3:FD:BF:6E
ValidityMon, 17 Apr 2023 08:26:19 GMT - Mon, 10 Jul 2023 08:26:18 GMT

File type
ASCII text, with very long lines (884), with no line terminators
Size
587 B (587 bytes)
Hash
abf97c5ad1a2cfa071a45b11a3a9691c
3d47842c42db643e824e09648f7bcbaae5979dc6
c46be41c0d418a175631c0e0578aec81bd390e39a24bfb054936823aa062e31a

HTTP Headers

GET /recaptcha/api.js?render=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Sun, 07 May 2023 13:36:57 GMT
date: Sun, 07 May 2023 13:36:57 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.domus-medica.it/media/404.jpg

195.231.61.216

200 OK

12 kB

URL GET HTTP/2
www.domus-medica.it/media/404.jpg
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 500x350, components 3\012- data
Size
12 kB (12232 bytes)
Hash
100b81a938fc06c8121dbaf705cdf588
55775724a7106174e77688cdf6ed7e8a5cce73df
c3175b10e6603e32b6e6594d4a7a3cd6e77548cc361ee5b1b7d984bc30c7980f

HTTP Headers

GET /media/404.jpg HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: image/jpeg
content-length: 12232
last-modified: Tue, 17 Aug 2021 14:25:44 GMT
etag: "611bc6e8-2fc8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.domus-medica.it/media/logo-domus-medica-white.png

195.231.61.216

200 OK

8.8 kB

URL GET HTTP/2
www.domus-medica.it/media/logo-domus-medica-white.png
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
PNG image data, 330 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
8.8 kB (8830 bytes)
Hash
641b646333b243dae92a5368972c3ce7
241c435194066ea4f8237bf1363c641cc025943c
a8941aa99f5b6b0f5d132072c2040a21803dc3b4f5b74f6d07d4878ce06e234b

HTTP Headers

GET /media/logo-domus-medica-white.png HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: image/png
content-length: 8830
last-modified: Fri, 02 Jul 2021 14:13:12 GMT
etag: "60df1ef8-227e"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.domus-medica.it/wp-includes/images/spinner.gif

195.231.61.216

200 OK

3.7 kB

URL GET HTTP/2
www.domus-medica.it/wp-includes/images/spinner.gif
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
GIF image data, version 89a, 20 x 20\012- data
Size
3.7 kB (3656 bytes)
Hash
d54cf50a44bd0aca6fd98bd46acbb2ba
3207333caacc856be8b253412cb7947981924934
5c2d44038a6c53bd74f3a26e690c1974e1385fffbc6def4c59f91dc1f738f0b3

HTTP Headers

GET /wp-includes/images/spinner.gif HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: image/gif
content-length: 3656
last-modified: Wed, 19 Dec 2018 04:36:28 GMT
etag: "5c19cacc-e48"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e7deb6f71c33df266ec8f5bb6ed1a380
ecdd4d0ff3913d9f1969d9fa4d57769f0f57077a
ec3d6088ddac595cd64bddb0bb011f749f150409f846533bd364c1c03f8120d6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cc2d9732ad7837eabab81ef7088f0f60
edbd3340ba4bf7b3510035a3d72d13a90ac6829a
e3006361ada40cd4ffdba6c0ecfd9e3c338e950de8075ee4f8c5066d712912b5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f8714882619fc507018eef3d005f16fc
9294e0edaa04b9e3868dcc1261309c3bf7fab717
39b2129e2247e7ef258a08c28ef1d473c6e385ef919913133f92de9c1c4b1d34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f8714882619fc507018eef3d005f16fc
9294e0edaa04b9e3868dcc1261309c3bf7fab717
39b2129e2247e7ef258a08c28ef1d473c6e385ef919913133f92de9c1c4b1d34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f8714882619fc507018eef3d005f16fc
9294e0edaa04b9e3868dcc1261309c3bf7fab717
39b2129e2247e7ef258a08c28ef1d473c6e385ef919913133f92de9c1c4b1d34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16372, version 1.0\012- data
Size
16 kB (16372 bytes)
Hash
e45478d4d6f15dafda1f25d9e0fb5fa1
52cb490cd0ee4442ede034085cda9652b206f91c
d1a17abb1a999842fe425e1a4ace9d90f9c18f3595c21a63d89f0611b90cfd72

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.domus-medica.it
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 May 2023 06:19:25 GMT
expires: Fri, 03 May 2024 06:19:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:14:45 GMT
content-type: font/woff2
age: 285452
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f8714882619fc507018eef3d005f16fc
9294e0edaa04b9e3868dcc1261309c3bf7fab717
39b2129e2247e7ef258a08c28ef1d473c6e385ef919913133f92de9c1c4b1d34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.domus-medica.it
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 15:55:54 GMT
expires: Sun, 05 May 2024 15:55:54 GMT
cache-control: public, max-age=31536000
age: 78063
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Size
13 kB (12708 bytes)
Hash
b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.domus-medica.it
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 May 2023 11:49:37 GMT
expires: Fri, 03 May 2024 11:49:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
age: 265640
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.domus-medica.it/wp-content/themes/xpl21/fonts/fa-light-300.woff2?ver=7.15

195.231.61.216

200 OK

184 kB

URL GET HTTP/2
www.domus-medica.it/wp-content/themes/xpl21/fonts/fa-light-300.woff2?ver=7.15
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 184144, version 331.-31261\012- data
Size
184 kB (184144 bytes)
Hash
de11da0fb48a14c9cbc05b0a24ed6efa
878cd08a06b335d95826e813e0a8777e28a76d04
e9f0d24d1230e0a5760800e4a1657801cff8edf2ba87a05c5d96f74ce44ec06d

HTTP Headers

GET /wp-content/themes/xpl21/fonts/fa-light-300.woff2?ver=7.15 HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/wp-content/min/css/xplay_95989dea0338025db2b2e4b8d1a7c55f.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: font/woff2
content-length: 184144
last-modified: Fri, 21 May 2021 18:03:36 GMT
etag: "60a7f5f8-2cf50"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.domus-medica.it/wp-content/themes/xpl21/fonts/fa-duotone-900.woff2?ver=7.15

195.231.61.216

200 OK

182 kB

URL GET HTTP/2
www.domus-medica.it/wp-content/themes/xpl21/fonts/fa-duotone-900.woff2?ver=7.15
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 181948, version 331.-31261\012- data
Size
182 kB (181948 bytes)
Hash
33b94ae8447d31e14d9ca9d360bbb4df
886ef25bdc43055f19f8bba07b057b436a4121da
3b5176bfadbb42740a51a8defa97dd393a2615dc1bffdcf333ac9d131893817d

HTTP Headers

GET /wp-content/themes/xpl21/fonts/fa-duotone-900.woff2?ver=7.15 HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/wp-content/min/css/xplay_95989dea0338025db2b2e4b8d1a7c55f.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: font/woff2
content-length: 181948
last-modified: Fri, 21 May 2021 18:03:36 GMT
etag: "60a7f5f8-2c6bc"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.domus-medica.it/wp-content/themes/xpl21/fonts/fa-brands-400.woff2?ver=7.15

195.231.61.216

200 OK

77 kB

URL GET HTTP/2
www.domus-medica.it/wp-content/themes/xpl21/fonts/fa-brands-400.woff2?ver=7.15
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
Web Open Font Format (Version 2), TrueType, length 76740, version 331.-31261\012- data
Size
77 kB (76740 bytes)
Hash
0511670fe2f5405105a6760294c5c51d
61cb879dec4fa97ece0d2a26cd6767c66117841b
c2497d559960ba9e1c68f41674e8bc980d3b229155e068bc7f42f157f81c4388

HTTP Headers

GET /wp-content/themes/xpl21/fonts/fa-brands-400.woff2?ver=7.15 HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/wp-content/min/css/xplay_95989dea0338025db2b2e4b8d1a7c55f.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: font/woff2
content-length: 76740
last-modified: Fri, 21 May 2021 18:03:36 GMT
etag: "60a7f5f8-12bc4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2

216.58.207.227

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Size
18 kB (17820 bytes)
Hash
3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31

HTTP Headers

GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.domus-medica.it
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 May 2023 06:20:56 GMT
expires: Fri, 03 May 2024 06:20:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
age: 285361
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f8714882619fc507018eef3d005f16fc
9294e0edaa04b9e3868dcc1261309c3bf7fab717
39b2129e2247e7ef258a08c28ef1d473c6e385ef919913133f92de9c1c4b1d34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 07 May 2023 13:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.domus-medica.it/wp-content/plugins/xplay-cookieconsent/cookieconsent.css

195.231.61.216

200 OK

12 kB

URL GET HTTP/2
www.domus-medica.it/wp-content/plugins/xplay-cookieconsent/cookieconsent.css
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
ASCII text, with very long lines (18999)
Size
12 kB (12211 bytes)
Hash
946893f26b873d985a0b8d4a1cb847db
f4ced8746ca8a0dd4a0dc411721cdc25a99a50fb
22bb752d3f1e37f826ead840e22280fd9145878ac32459a8c29d629a776c1a05

HTTP Headers

GET /wp-content/plugins/xplay-cookieconsent/cookieconsent.css HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Cookie: _ga_FCF1HEVMX3=GS1.1.1683466620.1.0.1683466620.0.0.0; _ga=GA1.1.1423618597.1683466621
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 15:35:24 GMT
etag: W/"6425ac3c-4ddc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.domus-medica.it/favicons/favicon-16x16.png

195.231.61.216

200 OK

1.0 kB

URL GET HTTP/2
www.domus-medica.it/favicons/favicon-16x16.png
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1008 bytes)
Hash
00c50bd72b128dfde04eac61353a6f69
77b927ec5ab5c2898feac62b24543277d58d3b87
a9f83a32d961a588438ea9ab067af9ed2b0abb42ed323a3074c98f98f64939ec

HTTP Headers

GET /favicons/favicon-16x16.png HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Cookie: _ga_FCF1HEVMX3=GS1.1.1683466620.1.0.1683466620.0.0.0; _ga=GA1.1.1423618597.1683466621
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:58 GMT
content-type: image/png
content-length: 1008
last-modified: Wed, 14 Jul 2021 16:30:32 GMT
etag: "60ef1128-3f0"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js

142.250.74.35

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
ASCII text, with very long lines (624)
Size
166 kB (165536 bytes)
Hash
d0689623f131fcb540b6b70ff1c8b55a
50726cae90a7d1cd36246d1d929a2ab77a785de6
345aa90fb35c263b36c1fbe3dbe0d4151029eb80bebb0b759b5344960e950883

HTTP Headers

GET /recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domus-medica.it
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 05 May 2023 14:02:44 GMT
expires: Sat, 04 May 2024 14:02:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 01 May 2023 02:02:20 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 171254
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js

142.250.74.35

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
ASCII text, with very long lines (624)
Size
166 kB (165536 bytes)
Hash
d0689623f131fcb540b6b70ff1c8b55a
50726cae90a7d1cd36246d1d929a2ab77a785de6
345aa90fb35c263b36c1fbe3dbe0d4151029eb80bebb0b759b5344960e950883

HTTP Headers

GET /recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.domus-medica.it
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 05 May 2023 14:02:44 GMT
expires: Sat, 04 May 2024 14:02:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 01 May 2023 02:02:20 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 171254
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i

216.58.207.228

200 OK

28 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintA3:4E:A3:86:10:DA:6C:D1:8C:73:54:AB:E6:8F:7D:21:72:2C:B4:D5
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (42651)
Size
28 kB (27638 bytes)
Hash
58bd73dd544357a88268f48fc2ee3928
ac9668752de1d7c71de6219151eea29cff16a198
ea46a1b6dbf6c274d29512ee47bfa9e2883560d1e3bd0423d7f6254418b94f1b

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 07 May 2023 13:36:58 GMT
content-security-policy: script-src 'nonce-ihnnKdF8ChB1D8rG-RMkWw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27638
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
ASCII text, with very long lines (56403), with no line terminators
Size
25 kB (24605 bytes)
Hash
a42c6333a13e5376af95f46fd9c7b627
57a98e519a44915e39a0cb6f23812adfa6611e67
62bff9dd0379da44f9d7f739af671bb6b243c016b49c7146b431ae9e6b9cb41b

HTTP Headers

GET /recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 19:36:20 GMT
expires: Sun, 05 May 2024 19:36:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 01 May 2023 02:02:20 GMT
content-type: text/css
vary: Accept-Encoding
age: 64838
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js

142.250.74.35

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
ASCII text, with very long lines (624)
Size
166 kB (165536 bytes)
Hash
d0689623f131fcb540b6b70ff1c8b55a
50726cae90a7d1cd36246d1d929a2ab77a785de6
345aa90fb35c263b36c1fbe3dbe0d4151029eb80bebb0b759b5344960e950883

HTTP Headers

GET /recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 05 May 2023 14:02:44 GMT
expires: Sat, 04 May 2024 14:02:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 01 May 2023 02:02:20 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 171254
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 16:11:02 GMT
expires: Sun, 05 May 2024 16:11:02 GMT
cache-control: public, max-age=31536000
age: 77156
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 07:26:31 GMT
expires: Sun, 05 May 2024 07:26:31 GMT
cache-control: public, max-age=31536000
age: 108627
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z

216.58.207.228

200 OK

112 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintA3:4E:A3:86:10:DA:6C:D1:8C:73:54:AB:E6:8F:7D:21:72:2C:B4:D5
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT

File type
ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
74982427f471fc48c442b695f67fb668
2d6f2f6e5d71a47056a522d7881b4b863597f372
c89cf881e475b76a4a3f739ac4c14ca0e73028906be572b982360183a107394f

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
expires: Sun, 07 May 2023 13:36:58 GMT
date: Sun, 07 May 2023 13:36:58 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 01 May 2023 21:48:58 GMT
expires: Mon, 08 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 488880
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js

142.250.74.35

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT

File type
ASCII text, with very long lines (624)
Size
166 kB (165536 bytes)
Hash
d0689623f131fcb540b6b70ff1c8b55a
50726cae90a7d1cd36246d1d929a2ab77a785de6
345aa90fb35c263b36c1fbe3dbe0d4151029eb80bebb0b759b5344960e950883

HTTP Headers

GET /recaptcha/releases/1h-hbVSJRMOQsmO_2qL9cO0z/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 05 May 2023 14:02:44 GMT
expires: Sat, 04 May 2024 14:02:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 01 May 2023 02:02:20 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 171254
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/reload?k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr

216.58.207.228

200 OK

19 kB

URL POST HTTP/3
www.google.com/recaptcha/api2/reload?k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintA3:4E:A3:86:10:DA:6C:D1:8C:73:54:AB:E6:8F:7D:21:72:2C:B4:D5
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT

File type
ASCII text, with very long lines (33833)
Size
19 kB (19339 bytes)
Hash
d3fdcc05f99005df0b04763b51277d34
79a1c907186ca7e0d7404bf41da43365ac3a51f3
f70fcdffdd4dbf1eac763b21c0da1b3bed35e5608892dd7977d09dacb039f9c1

HTTP Headers

POST /recaptcha/api2/reload?k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6239
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfYpjcaAAAAAJhkTPQ7UpNs7RYrEb2oLlTo4jBr&co=aHR0cHM6Ly93d3cuZG9tdXMtbWVkaWNhLml0OjQ0Mw..&hl=en&v=1h-hbVSJRMOQsmO_2qL9cO0z&size=invisible&cb=vko97ywtv20i
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Sun, 07 May 2023 13:36:59 GMT
expires: Sun, 07 May 2023 13:36:59 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 19339
server: GSE
set-cookie: _GRECAPTCHA=09AMmaAqkoMeWtHpx1smtQZEpHt6SkEd_SkGqN60I_4UPPlcI3ItIdjM9P7XK8_slkJ2XxUuRDZpiY8cCZGYZ4S_g;Path=/recaptcha;Expires=Fri, 03-Nov-2023 13:36:59 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.domus-medica.it/wp-content/min/css/xplay_95989dea0338025db2b2e4b8d1a7c55f.css

195.231.61.216

200 OK

262 kB

URL GET HTTP/2
www.domus-medica.it/wp-content/min/css/xplay_95989dea0338025db2b2e4b8d1a7c55f.css
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
ASCII text, with very long lines (50647)
Size
262 kB (262036 bytes)
Hash
f538337e056a86ae3512d8b736cf1d43
c11e723415afaad7e9cb9ca57f4112d730574b85
a4929eaf88fa63dd6cd7d7770a34888b4fec61f15b9f6cdc9ffacc415ed18e8d

HTTP Headers

GET /wp-content/min/css/xplay_95989dea0338025db2b2e4b8d1a7c55f.css HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: text/css
last-modified: Sun, 07 May 2023 11:09:11 GMT
etag: W/"645786d7-3ff94"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.domus-medica.it/favicons/apple-touch-icon.png

195.231.61.216

200 OK

7.7 kB

URL GET HTTP/2
www.domus-medica.it/favicons/apple-touch-icon.png
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
7.7 kB (7741 bytes)
Hash
60da552c3f157e70107baf45d6bc13a7
70d30ac8e57d76a83634228ba25111b52020664d
f512f94d75e42305e6b07e7e04958f0f21bd4076222c0819061ea46c598e403a

HTTP Headers

GET /favicons/apple-touch-icon.png HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Cookie: _ga_FCF1HEVMX3=GS1.1.1683466620.1.0.1683466620.0.0.0; _ga=GA1.1.1423618597.1683466621
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:58 GMT
content-type: image/png
content-length: 7741
last-modified: Wed, 14 Jul 2021 16:30:32 GMT
etag: "60ef1128-1e3d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2

www.domus-medica.it/wp-includes/js/jquery/jquery.js

195.231.61.216

200 OK

97 kB

URL GET HTTP/2
www.domus-medica.it/wp-includes/js/jquery/jquery.js
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type
ASCII text, with very long lines (31997)
Size
97 kB (96873 bytes)
Hash
49edccea2e7ba985cadc9ba0531cbed1
f8747f8ee704d9af31d0950015e01d3f9635b070
1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

HTTP Headers

GET /wp-includes/js/jquery/jquery.js HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: application/javascript
last-modified: Fri, 17 May 2019 04:25:54 GMT
etag: W/"5cde37d2-17a69"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

www.domus-medica.it/wp-content/min/js/xplay_0d77033d8f8917835c9a7ffaa7bf84b8.js

195.231.61.216

200 OK

631 kB

URL GET HTTP/2
www.domus-medica.it/wp-content/min/js/xplay_0d77033d8f8917835c9a7ffaa7bf84b8.js
IP
195.231.61.216:443
ASN
#202242 Aruba S.p.A.

Requested by
https://www.domus-medica.it/css/lk/
Certificate
IssuerLet's Encrypt
Subjectdomus-medica.it
Fingerprint93:7E:9C:E3:04:DC:3D:AD:03:71:20:A6:C5:AD:57:46:81:AF:26:8B
ValiditySat, 22 Apr 2023 19:26:35 GMT - Fri, 21 Jul 2023 19:26:34 GMT

File type

Size
631 kB (631422 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/min/js/xplay_0d77033d8f8917835c9a7ffaa7bf84b8.js HTTP/1.1
Host: www.domus-medica.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.domus-medica.it/css/lk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 07 May 2023 13:36:57 GMT
content-type: application/javascript
last-modified: Sun, 07 May 2023 10:26:37 GMT
etag: W/"64577cdd-9a27e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL