Report - 24voglie.it/

Report Overview

Submitted URL
24voglie.it/
IP
185.2.5.18
ASN
#203461 Register S.p.A.
Submitted
2022-12-02 04:58:59
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
22

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	778 B	31 kB	142.250.74.74
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	2.3 kB	142.250.74.14
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.5 kB	11 kB	142.250.74.131
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	511 B	694 B	142.250.74.132
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	478 B	34 kB	142.250.74.35
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	44.237.51.86
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	596 B	706 B	64.233.165.154
24voglie.it	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	1.8 MB	185.2.5.18
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	510 B	694 B	142.250.74.67
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	44 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	24voglie.it/	Phishing
2022-12-02	medium	24voglie.it/	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/css/css_EddlfAGSt8yeg-Ziis-e_GT_RMLo3sN6QdxJCGFI2jo.css?q5lj91	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/google_analytics/analytics.js?q5lj91	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/js/js_Bj01-hSns6OblNvfpcZPwuBZ9EFVcQPGCMqzwGyKLJQ.js	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/styles/slide/public/page-main/aperitivi.jpg?itok=2_9V0Zq5	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/styles/block_thumb/public/2020-05/focaccia.jpg?itok=sOxe_2Wl	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/styles/slide/public/page-main/gelateria.jpg?itok=AGZxagvI	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/styles/block_thumb/public/2020-05/insalata.png?itok=dZmJ0WUQ	Phishing
2022-12-02	medium	24voglie.it/sites/default/files/styles/slide/public/page-main/wedding-cake.jpg?itok=n9GJ16AR	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	www.google-analytics.com/plugins/ua/linkid.js	1.6 kB	2023-03-07	2024-04-15
Pretty URL www.google-analytics.com/plugins/ua/linkid.js IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-15 19:01:06 Times Seen1974 Hash 0cc3a63fe10060af4a349e5df666eefe 3e8d3925b550345123f2cab26568221fd4154f9c 92fca55833f48b4289ac8f1cedd48752b580fce4ec4b5d81670b8193d6e51b54 Loading...

	24voglie.it/	656 B	2023-03-08	2023-03-08
Pretty URL 24voglie.it/ IP 185.2.5.18 ASN #203461 Register S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:57 Last Seen2023-03-08 14:29:57 Times Seen1 Hash e5b4dfb0c8562d22310a33da85ba54ce e694d041b319c9e014b24a13462f371c3ae4ebe4 f739236d43f870ad9ce87acccc16a614d3e297bb8e759ec9b39ede53bc4acddc Loading...

	24voglie.it/sites/default/files/google_analytics/analytics.js?q5lj91	50 kB	2023-03-08	2024-04-18
Pretty URL 24voglie.it/sites/default/files/google_analytics/analytics.js?q5lj91 IP 185.2.5.18 ASN #203461 Register S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-18 18:02:16 Times Seen1511 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	24voglie.it/sites/default/files/js/js_Bj01-hSns6OblNvfpcZPwuBZ9EFVcQPGCMqzwGyKLJQ.js	399 kB	2023-03-08	2023-03-08
Pretty URL 24voglie.it/sites/default/files/js/js_Bj01-hSns6OblNvfpcZPwuBZ9EFVcQPGCMqzwGyKLJQ.js IP 185.2.5.18 ASN #203461 Register S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:57 Last Seen2023-03-08 14:29:57 Times Seen1 Hash 9a3feade8eb6188bfd6117cc520feec0 aa8d6acfea7a6a4223e945c04007f27b2811981b 063d35fa14a7b3a39b94dbdfa5c64fc2e059f441557103c608cab3c06c8a2c94 Loading...

HTTP Transactions (78)

URL IP Response Size

24voglie.it/

185.2.5.18

302 Found

204 B

URL HTTP/1.1
24voglie.it/
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
204 B (204 bytes)
Hash
ec75dea37a2cd4520d4fdaed2a5f1c70
68570c03aed74e79d28e7b1c633cc70e4074135b
a865fc41c230f56c4177a60976631202f8756b8347b4336d8b42d107b674a227

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 04:58:47 GMT
Server: Apache
Location: https://24voglie.it/
Content-Length: 204
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12643
Expires: Fri, 02 Dec 2022 08:29:30 GMT
Date: Fri, 02 Dec 2022 04:58:47 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3409
Cache-Control: max-age=109754
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:47 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:28:01 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10383
Expires: Fri, 02 Dec 2022 07:51:50 GMT
Date: Fri, 02 Dec 2022 04:58:47 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 04:18:11 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2436
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 8KwTON6t6j/x6gEy3RRu0GPwbRHbwAdqdmgAyPtm+SyAltCc87kZ2LjV/A07EuALUI5J627cNps=
x-amz-request-id: 059N1NBDV9W536P0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 04:45:58 GMT
age: 769
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:58:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ee15197772908743184be36ff6a00769
2cd568814d7099c85de0fc5df62c0e3f938669ed
66bd8224942b377456b531c1130c7a09d391f35b734408a29c93f5c331789056

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66BD8224942B377456B531C1130C7A09D391F35B734408A29C93F5C331789056"
Last-Modified: Thu, 01 Dec 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21500
Expires: Fri, 02 Dec 2022 10:57:07 GMT
Date: Fri, 02 Dec 2022 04:58:47 GMT
Connection: keep-alive

24voglie.it/

185.2.5.18

200 OK

7.3 kB

URL HTTP/1.1
24voglie.it/
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4259)
Size
7.3 kB (7281 bytes)
Hash
4bea3ee7b6f63b34cdbfaeda13693970
8f1b6f36af90c5009897bfddd05829ad8eed237d
6c59b0201a172dd42f4e68b854b3d7f01e134194d3680ba46d88079d439a5cb9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:47 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Cache-Control: max-age=86400, public
X-Drupal-Dynamic-Cache: MISS
X-UA-Compatible: IE=edge
Content-language: it
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Vary: Cookie,Accept-Encoding,User-Agent
X-Generator: Drupal 8 (https://www.drupal.org)
X-Drupal-Cache: HIT
Last-Modified: Thu, 07 May 2020 14:37:17 GMT
ETag: "1588862237-gzip"
Content-Encoding: gzip
Content-Length: 7281
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

24voglie.it/sites/default/files/css/css_EddlfAGSt8yeg-Ziis-e_GT_RMLo3sN6QdxJCGFI2jo.css?q5lj91

185.2.5.18

200 OK

2.1 kB

URL HTTP/1.1
24voglie.it/sites/default/files/css/css_EddlfAGSt8yeg-Ziis-e_GT_RMLo3sN6QdxJCGFI2jo.css?q5lj91
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
troff or preprocessor input text\012- assembler source, ASCII text, with very long lines (2438)
Size
2.1 kB (2109 bytes)
Hash
2f9d9eebcd7076e99af64cdf6f6689ed
bd159f68c69d87275673cc446fab9f63a1d980de
cc714b5199fafba7c0aa9a57b9fced614630143c69e68dc622aa7b44904677c8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/css/css_EddlfAGSt8yeg-Ziis-e_GT_RMLo3sN6QdxJCGFI2jo.css?q5lj91 HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Vary: Accept-encoding,User-Agent
Last-Modified: Fri, 27 Apr 2018 20:54:38 GMT
ETag: "c22246-83d-56adab6551f80"
Accept-Ranges: bytes
Content-Length: 2109
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

24voglie.it/sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91

185.2.5.18

200 OK

26 kB

URL HTTP/1.1
24voglie.it/sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
ASCII text, with very long lines (38160)
Size
26 kB (25925 bytes)
Hash
977b0374b71e95491ce49e4ea64d899f
636deb16cb2b783d872253e4c4641e3fd96c8804
9616475e303d94d11aec239bfd4574650397052af2ba960eff2dcfb602cadced

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91 HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Vary: Accept-encoding,User-Agent
Last-Modified: Fri, 27 Apr 2018 16:19:25 GMT
ETag: "c2223a-6545-56ad6de14bd40"
Accept-Ranges: bytes
Content-Length: 25925
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/css

24voglie.it/themes/twentyfour/images/logo-script.png

185.2.5.18

200 OK

8.3 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/logo-script.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 250 x 93, 8-bit/color RGBA, non-interlaced\012- data
Size
8.3 kB (8272 bytes)
Hash
1d47a3de95a2b91e9ac3514113cc614e
39845bb2d52a31913dd90c840999ec20fd910ee4
5d6a2d429f05e86c3ec385c0c78941630cdf2c3f0fabd399feb8584cb20d8df8

HTTP Headers

GET /themes/twentyfour/images/logo-script.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 21 Feb 2017 11:46:35 GMT
ETag: "ca1bb2-2050-54908ee971cc0"
Accept-Ranges: bytes
Content-Length: 8272
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/sites/default/files/google_analytics/analytics.js?q5lj91

185.2.5.18

200 OK

20 kB

URL HTTP/1.1
24voglie.it/sites/default/files/google_analytics/analytics.js?q5lj91
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
ASCII text, with very long lines (1325)
Size
20 kB (20073 bytes)
Hash
93bde531cb4f65be97d29e35331ca13e
a893da1a81f92a8b58bba978dbe35780c97235b2
2172506c0cbb4a0f851f60c59097cf9e578de853c1382061395858f5d448ab8d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/google_analytics/analytics.js?q5lj91 HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 04 Oct 2022 08:03:01 GMT
ETag: "bc000a-c436-5ea30e3a25e02-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 20073
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 04:08:57 GMT
cache-control: public,max-age=3600
age: 2991
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

24voglie.it/sites/default/files/js/js_Bj01-hSns6OblNvfpcZPwuBZ9EFVcQPGCMqzwGyKLJQ.js

185.2.5.18

200 OK

104 kB

URL HTTP/1.1
24voglie.it/sites/default/files/js/js_Bj01-hSns6OblNvfpcZPwuBZ9EFVcQPGCMqzwGyKLJQ.js
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
ASCII text, with very long lines (32065)
Size
104 kB (104492 bytes)
Hash
bdb35897ca75a1763fbc9f034de38178
d54c8d8c697aee634131514027d561c461780ccd
067eb5d28521ee1ae1a4eeff268b49fecd8f61e60efbceb8b5877a8ae68b277d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/js/js_Bj01-hSns6OblNvfpcZPwuBZ9EFVcQPGCMqzwGyKLJQ.js HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Vary: Accept-encoding,User-Agent
Last-Modified: Sat, 02 May 2020 16:03:47 GMT
ETag: "bc00d6-1982c-5a4ac716ea82b"
Accept-Ranges: bytes
Content-Length: 104492
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Content-Encoding: gzip
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: text/javascript

24voglie.it/themes/twentyfour/images/colazione.jpg

185.2.5.18

200 OK

116 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/colazione.jpg
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 690x440, components 3\012- data
Size
116 kB (115773 bytes)
Hash
f1f5d803144b351a3882ea775987b6c9
d8960ea098597db13c0a223a01e63e095052bc6b
5a1883f15d8d6ed9e09522c58b2aed65a026e2a7a9d0905ce882310f0a9949ba

HTTP Headers

GET /themes/twentyfour/images/colazione.jpg HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Wed, 22 Feb 2017 14:51:13 GMT
ETag: "ca1bad-1c43d-5491fa0bb5a40"
Accept-Ranges: bytes
Content-Length: 115773
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/themes/twentyfour/logo.png

185.2.5.18

200 OK

28 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/logo.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 314 x 284, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (27665 bytes)
Hash
98db9bc4558fb796c0e4c28640cfdec0
b202fcb52dc9f0a8bf2d7f28bb099c1c7ebdc74c
628972b21db2c3475769d9b9d1fa9928640458071a23d9dd9dee5ffba941688c

HTTP Headers

GET /themes/twentyfour/logo.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 21 Feb 2017 15:44:39 GMT
ETag: "ca1ac3-6c11-5490c41fba7c0"
Accept-Ranges: bytes
Content-Length: 27665
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/sites/default/files/styles/slide/public/page-main/aperitivi.jpg?itok=2_9V0Zq5

185.2.5.18

200 OK

90 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/slide/public/page-main/aperitivi.jpg?itok=2_9V0Zq5
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1920x550, components 3\012- data
Size
90 kB (89788 bytes)
Hash
f3cfa51952e1e3ea6fcfb0dcd41e75a8
f79f14f95cd9d73a378add760794ce0b87d72c24
356af8300a5112feca09ccad56bcdf71480bb9ba405505965bf91423b822627f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/styles/slide/public/page-main/aperitivi.jpg?itok=2_9V0Zq5 HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 05 Sep 2017 14:06:23 GMT
ETag: "ca174a-15ebc-55871bb7355c0"
Accept-Ranges: bytes
Content-Length: 89788
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=150
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/themes/twentyfour/logo-script-w.png

185.2.5.18

200 OK

10 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/logo-script-w.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 314 x 117, 8-bit/color RGBA, non-interlaced\012- data
Size
10 kB (10028 bytes)
Hash
4e22b5ecfba8f4ad9493e6257945a7f9
41f7f76025fe4b0aafbb5023d85202fdbbc332d1
77b64e85e0b0be55365a2d1cc84c00ec2c76c1f3a88a46f0ac07f87428633d3e

HTTP Headers

GET /themes/twentyfour/logo-script-w.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 21 Feb 2017 15:44:58 GMT
ETag: "ca1ac2-272c-5490c431d9280"
Accept-Ranges: bytes
Content-Length: 10028
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/sites/default/files/styles/slide/public/page-main/laboratorio.jpg?itok=UzJ4eb97

185.2.5.18

200 OK

109 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/slide/public/page-main/laboratorio.jpg?itok=UzJ4eb97
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1920x550, components 3\012- data
Size
109 kB (108799 bytes)
Hash
2f37c91b48e243502701367143d118cf
3c582ed0bf1042d7f509f9d26e2187b54c47c18e
7d8a2c445074831b57b28747060d92740f99a1fb652c0382862b25bc77f4e4af

HTTP Headers

GET /sites/default/files/styles/slide/public/page-main/laboratorio.jpg?itok=UzJ4eb97 HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 05 Sep 2017 14:06:23 GMT
ETag: "ca174d-1a8ff-55871bb7355c0"
Accept-Ranges: bytes
Content-Length: 108799
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/sites/default/files/styles/block_thumb/public/2020-05/COLAZ%20RID_2.jpg?itok=o0baUWkT

185.2.5.18

200 OK

19 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/block_thumb/public/2020-05/COLAZ%20RID_2.jpg?itok=o0baUWkT
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x200, components 3\012- data
Size
19 kB (19005 bytes)
Hash
0882fb3965fc268efef578077dadf167
df93aba0acb55e6ad99271bb9efaf2aa7eb34dc0
e528e5623d951d79d0f912f46c703dc82acbf3793d55767f52360cc166b3779e

HTTP Headers

GET /sites/default/files/styles/block_thumb/public/2020-05/COLAZ%20RID_2.jpg?itok=o0baUWkT HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 02 May 2020 18:10:26 GMT
ETag: "ca311c-4a3d-5a4ae36526ea6"
Accept-Ranges: bytes
Content-Length: 19005
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/sites/default/files/styles/block_thumb/public/2020-05/focaccia.jpg?itok=sOxe_2Wl

185.2.5.18

200 OK

13 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/block_thumb/public/2020-05/focaccia.jpg?itok=sOxe_2Wl
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 350x200, components 3\012- data
Size
13 kB (12888 bytes)
Hash
2e05438d2031fd9521fabeea1bb77e49
bcfeab31a12d855e3b053fbe7fc1cda596426c6e
d442041d22c32e45241b02cf8e6b269ea6d33d72866b969483452799b8f77a11

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/styles/block_thumb/public/2020-05/focaccia.jpg?itok=sOxe_2Wl HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 02 May 2020 18:17:19 GMT
ETag: "ca311f-3258-5a4ae4eef2101"
Accept-Ranges: bytes
Content-Length: 12888
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/themes/twentyfour/images/icons/light/social/facebook.png

185.2.5.18

200 OK

1.2 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/icons/light/social/facebook.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1194 bytes)
Hash
4eed2f7225a5ddab3cfff6cb2a2c5f5c
fc5306b79b537e48633edc373789a896f769d61e
f55b4529d5a540571bfe858cc06817cd21c820dcc0c94d15342dfea4316f4f11

HTTP Headers

GET /themes/twentyfour/images/icons/light/social/facebook.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Fri, 10 Feb 2017 14:25:26 GMT
ETag: "ca1bd4-4aa-5482dde6d8180"
Accept-Ranges: bytes
Content-Length: 1194
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/themes/twentyfour/images/icons/light/social/instagram.png

185.2.5.18

200 OK

1.7 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/icons/light/social/instagram.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1714 bytes)
Hash
c8352f00df0df9c1683f6e1d31134898
8661cada50bdf548d21c16572be343a13126c3ce
d5d4e9100978fb9aabc6a3ba1ea8a437fbe8821b454f6edac2ecac50965eaff7

HTTP Headers

GET /themes/twentyfour/images/icons/light/social/instagram.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Fri, 10 Feb 2017 14:24:52 GMT
ETag: "ca1bd7-6b2-5482ddc66b500"
Accept-Ranges: bytes
Content-Length: 1714
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/sites/default/files/styles/slide/public/page-main/gelateria.jpg?itok=AGZxagvI

185.2.5.18

200 OK

120 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/slide/public/page-main/gelateria.jpg?itok=AGZxagvI
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1920x550, components 3\012- data
Size
120 kB (119997 bytes)
Hash
c7f92d3283ca1ddb769e3a2aa1ab46d0
d824e363f00e97c38572d6883137591b1dbd3c18
8ded491918145e106190b37646c9c2ca960d2bb57a5a935d7d9d7762e69d10e2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/styles/slide/public/page-main/gelateria.jpg?itok=AGZxagvI HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 05 Sep 2017 14:06:23 GMT
ETag: "ca174c-1d4bd-55871bb7355c0"
Accept-Ranges: bytes
Content-Length: 119997
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/themes/twentyfour/images/aperitivo.jpg

185.2.5.18

200 OK

128 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/aperitivo.jpg
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 690x440, components 3\012- data
Size
128 kB (128228 bytes)
Hash
b7cf504d5f0d8d156fdf51bc643ec266
24f6595ac585264fd4fe80a502671e21a1eb43e9
755b7d0f9f56fe2b081ddd516440abbbb44971fa856f9ccbc8891d1dfb199cf1

HTTP Headers

GET /themes/twentyfour/images/aperitivo.jpg HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Wed, 22 Feb 2017 14:52:11 GMT
ETag: "ca1ba5-1f4e4-5491fa4305cc0"
Accept-Ranges: bytes
Content-Length: 128228
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

24voglie.it/themes/twentyfour/images/pranzo.jpg

185.2.5.18

200 OK

203 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/pranzo.jpg
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 690x440, components 3\012- data
Size
203 kB (203408 bytes)
Hash
521e5ab7a5d3587a680a3ca562d629a2
6db2eb4bcf1573237d486d0fb9294aa74fbcdb6f
9cde3f1d616e61a100486647e24cedd39587f9c011bd027ebacdc2ab333044c7

HTTP Headers

GET /themes/twentyfour/images/pranzo.jpg HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Wed, 22 Feb 2017 14:51:40 GMT
ETag: "ca1bb7-31a90-5491fa2575700"
Accept-Ranges: bytes
Content-Length: 203408
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=149
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/sites/default/files/styles/block_thumb/public/2020-05/insalata.png?itok=dZmJ0WUQ

185.2.5.18

200 OK

142 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/block_thumb/public/2020-05/insalata.png?itok=dZmJ0WUQ
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 350 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
142 kB (141950 bytes)
Hash
63c53b570723f6c03e0e564b8e1673e5
d8819c313db58273e442fc2b8a4d5f562349176b
723ea3be8734d1d9041042a8d3a03166e6c8e44669e1b1486a0d3fe57444202f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/styles/block_thumb/public/2020-05/insalata.png?itok=dZmJ0WUQ HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Sat, 02 May 2020 18:29:18 GMT
ETag: "ca3122-22a7e-5a4ae79d14555"
Accept-Ranges: bytes
Content-Length: 141950
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/themes/twentyfour/images/icons/dark/social/facebook-b.png

185.2.5.18

200 OK

1.2 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/icons/dark/social/facebook-b.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1214 bytes)
Hash
6097bbf1e1a5958e9eae3303e8450258
c8fd91c43da7f56ce18cab16aa1fe21789659c7c
63e59dc8868047a906d5346c5a9af812ce9bc490a26cbf14df0e3583178de96a

HTTP Headers

GET /themes/twentyfour/images/icons/dark/social/facebook-b.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Fri, 03 Mar 2017 15:11:44 GMT
ETag: "ca1bc1-4be-549d4f6ad4c00"
Accept-Ranges: bytes
Content-Length: 1214
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/themes/twentyfour/images/icons/dark/social/instagram-b.png

185.2.5.18

200 OK

1.8 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/icons/dark/social/instagram-b.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1782 bytes)
Hash
8e71ef363fb4d5036fecbd35a4e56863
cc0e49e17aef922cc9530676b3f02183a4c7b602
22089823fdf87487d7452fe4fcdefe805e7d44eeb4a7ae05b75c66052d58919d

HTTP Headers

GET /themes/twentyfour/images/icons/dark/social/instagram-b.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Mon, 06 Mar 2017 11:26:46 GMT
ETag: "ca1bc5-6f6-54a0e2ba84980"
Accept-Ranges: bytes
Content-Length: 1782
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

24voglie.it/themes/twentyfour/images/clock.png

185.2.5.18

200 OK

24 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/clock.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
24 kB (24234 bytes)
Hash
341192116ebbecce335748f1e5a0b5c7
e1e4e10692d17879a7f74d0d7797004ea60cfcab
1e9d0e0243de0322eaa7cde8bf6dfbac791f7d4785897f9f0dcc57523f6e1925

HTTP Headers

GET /themes/twentyfour/images/clock.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/sites/default/files/css/css_56D4vbqX17FNRlKGHJWR6GYapkmeqPdvOwUkbJ8GUuk.css?q5lj91
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Wed, 22 Feb 2017 14:57:59 GMT
ETag: "ca1bac-5eaa-5491fb8ee6bc0"
Accept-Ranges: bytes
Content-Length: 24234
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3456
Cache-Control: max-age=104737
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:04:25 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Lobster

142.250.74.74

200 OK

30 kB

URL HTTP/2
fonts.googleapis.com/css?family=Lobster
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
data
Size
30 kB (29911 bytes)
Hash
a522fa9ff37d07af89d49a9c64caf511
c07299c004ab0340c702b579fbb0f4343b068d5f
4ba395a8aa4654380e8bec575e9154661889e73dfb7749ba1e8ca9344b3dbcef

HTTP Headers

GET /css?family=Lobster HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 04:58:48 GMT
date: Fri, 02 Dec 2022 04:58:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

24voglie.it/themes/twentyfour/images/icons/light/mail.png

185.2.5.18

200 OK

1.3 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/icons/light/mail.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1330 bytes)
Hash
1edea840d4fce2086f3b6cbef2fe460e
71783086e2ed809be0017862e377d393030be74c
347b686eabceb5c8ee6b0b3d4a80f956da23e85f1f9e0434e4f8456f195f4458

HTTP Headers

GET /themes/twentyfour/images/icons/light/mail.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 14 Feb 2017 17:13:01 GMT
ETag: "ca1bd2-532-54880ad1e2140"
Accept-Ranges: bytes
Content-Length: 1330
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2

142.250.74.35

200 OK

33 kB

URL HTTP/2
fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 33436, version 1.0\012- data
Size
33 kB (33436 bytes)
Hash
b9b4c932ef89c39525bfe1b604cda3a1
767246e4c7df1b6c32f590c16c135808382b1aba
9a932e49823b59769330d1ce8ef9f1b90e5ae8ecd5f2bb388d19bf684cdb7ebd

HTTP Headers

GET /s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://24voglie.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:49:38 GMT
expires: Wed, 29 Nov 2023 17:49:38 GMT
cache-control: public, max-age=31536000
age: 212950
last-modified: Tue, 26 Apr 2022 15:01:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

24voglie.it/themes/twentyfour/images/icons/light/home.png

185.2.5.18

200 OK

1.2 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/icons/light/home.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1190 bytes)
Hash
76be9e1bb974e5c91f146530890adae2
b7ad8871bcc69863412d2dda3547d3f9f9237107
db31ef08a97555ecc715cfa75c4b6d0959c43970401e72c0a50ea0a462591128

HTTP Headers

GET /themes/twentyfour/images/icons/light/home.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 14 Feb 2017 17:13:33 GMT
ETag: "ca1bce-4a6-54880af066940"
Accept-Ranges: bytes
Content-Length: 1190
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=144
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/themes/twentyfour/images/icons/light/phone.png

185.2.5.18

200 OK

1.3 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/icons/light/phone.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1319 bytes)
Hash
97221dff9b29123b6d62782b302e76e6
8d17dc7c302189738438b1709219d0b93630ba0e
b4142a789d033e2fc3bb22cbdf2d56d50e353d2132c6a4fa39894b95c4a5d308

HTTP Headers

GET /themes/twentyfour/images/icons/light/phone.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 14 Feb 2017 17:14:03 GMT
ETag: "ca1bd3-527-54880b0d02cc0"
Accept-Ranges: bytes
Content-Length: 1319
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/modules/eu_cookie_compliance/images/gradient.png

185.2.5.18

200 OK

315 B

URL HTTP/1.1
24voglie.it/modules/eu_cookie_compliance/images/gradient.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 2000 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
315 B (315 bytes)
Hash
3f22609e55ceadc6a1a3525d0c59bcb4
5c8e1b776b94d7c724fd2ab4296b1047f60ffbad
7dfe7f8dd37e4d4cd95ea331f8d935762855bc91352a32ee6b1414c09669c74e

HTTP Headers

GET /modules/eu_cookie_compliance/images/gradient.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/sites/default/files/css/css_EddlfAGSt8yeg-Ziis-e_GT_RMLo3sN6QdxJCGFI2jo.css?q5lj91
Cookie: _ga=GA1.2.933155374.1669957127; _gid=GA1.2.36869337.1669957127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 24 Jan 2017 16:53:39 GMT
ETag: "c61c86-13b-546d9f5308ac0"
Accept-Ranges: bytes
Content-Length: 315
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

24voglie.it/themes/twentyfour/images/logo.png

185.2.5.18

200 OK

36 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/logo.png
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
PNG image data, 314 x 406, 8-bit/color RGBA, non-interlaced\012- data
Size
36 kB (36415 bytes)
Hash
e7aa9c046cdf5f269c9f93eb9f68fbd6
f183d5d354fd11631eef9fea816b91f235429fa0
2dad606de80f4055f213e1cd8c400eb1b46d4d8bea9cfb8d0c71e375f17f5ceb

HTTP Headers

GET /themes/twentyfour/images/logo.png HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Fri, 03 Mar 2017 15:10:26 GMT
ETag: "ca1bb3-8e3f-549d4f2071c80"
Accept-Ranges: bytes
Content-Length: 36415
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=146
Connection: Keep-Alive
Content-Type: image/png

24voglie.it/themes/twentyfour/images/merenda.jpg

185.2.5.18

200 OK

200 kB

URL HTTP/1.1
24voglie.it/themes/twentyfour/images/merenda.jpg
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 690x440, components 3\012- data
Size
200 kB (200035 bytes)
Hash
fd86ec651a501ba212d44c6e3b2bf218
ff9e0d038b95223bed27df383b93dd26a492dc6c
b86015c9465c8263688efe0490d063ab18802bed9d3f8e4cf631f7b3e8769c83

HTTP Headers

GET /themes/twentyfour/images/merenda.jpg HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Wed, 22 Feb 2017 14:52:34 GMT
ETag: "ca1bb5-30d63-5491fa58f5080"
Accept-Ranges: bytes
Content-Length: 200035
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=148
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/sites/default/files/styles/slide/public/page-main/wedding-cake.jpg?itok=n9GJ16AR

185.2.5.18

200 OK

115 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/slide/public/page-main/wedding-cake.jpg?itok=n9GJ16AR
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1920x550, components 3\012- data
Size
115 kB (115292 bytes)
Hash
e199de44666bce70f0eb7b6da1643871
4d7c991ab07806a44339140e861904c463fdb164
e7e7df07b0e22363015e2fbbd314233af44c37a99910143baa3f1a729394c01e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sites/default/files/styles/slide/public/page-main/wedding-cake.jpg?itok=n9GJ16AR HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Cookie: _ga=GA1.2.933155374.1669957127; _gid=GA1.2.36869337.1669957127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 05 Sep 2017 14:06:23 GMT
ETag: "ca174f-1c25c-55871bb7355c0"
Accept-Ranges: bytes
Content-Length: 115292
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=143
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/sites/default/files/styles/slide/public/page-main/caffetteria.jpg?itok=udeWtLmJ

185.2.5.18

200 OK

139 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/slide/public/page-main/caffetteria.jpg?itok=udeWtLmJ
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1920x550, components 3\012- data
Size
139 kB (139361 bytes)
Hash
4533f973c1552bbda5148acbcf54558d
387c0a0ceaa27e07c503f65c4f8d741655818747
62f3b4660cdf34ca02e9670fc04bc09d2ba0ea4ba38ee2bb561e88d6358930d0

HTTP Headers

GET /sites/default/files/styles/slide/public/page-main/caffetteria.jpg?itok=udeWtLmJ HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Cookie: _ga=GA1.2.933155374.1669957127; _gid=GA1.2.36869337.1669957127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 05 Sep 2017 14:06:23 GMT
ETag: "ca174b-22061-55871bb7355c0"
Accept-Ranges: bytes
Content-Length: 139361
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=145
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/sites/default/files/styles/slide/public/page-main/pasticceria.jpg?itok=Tic1f0Lw

185.2.5.18

200 OK

132 kB

URL HTTP/1.1
24voglie.it/sites/default/files/styles/slide/public/page-main/pasticceria.jpg?itok=Tic1f0Lw
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 75", baseline, precision 8, 1920x550, components 3\012- data
Size
132 kB (131685 bytes)
Hash
7e450d6106e467e936f1f0a821cb3920
1f8847532cd6f6f69e5648daf857415b65f608ce
f5630121a3289b81c3bc414ffc07ff1c3a7620bbb64c29dd5be2c7253e11a882

HTTP Headers

GET /sites/default/files/styles/slide/public/page-main/pasticceria.jpg?itok=Tic1f0Lw HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Cookie: _ga=GA1.2.933155374.1669957127; _gid=GA1.2.36869337.1669957127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:48 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Tue, 05 Sep 2017 14:06:23 GMT
ETag: "ca174e-20265-55871bb7355c0"
Accept-Ranges: bytes
Content-Length: 131685
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:48 GMT
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: image/jpeg

24voglie.it/themes/twentyfour/favicon.ico

185.2.5.18

200 OK

979 B

URL HTTP/1.1
24voglie.it/themes/twentyfour/favicon.ico
IP
185.2.5.18:0
ASN
#203461 Register S.p.A.

File type
MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data
Size
979 B (979 bytes)
Hash
113cb58a3d37fd3af62cecac9f1498b1
b2dff3dfc27c0758b20e851d499ddce41b443c90
400256d2d3ad9396eb5e379658f5b0b52fbbc4ecfb89789f55b18eb839a12b2d

HTTP Headers

GET /themes/twentyfour/favicon.ico HTTP/1.1
Host: 24voglie.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Cookie: _ga=GA1.2.933155374.1669957127; _gid=GA1.2.36869337.1669957127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 04:58:49 GMT
Server: Apache
X-Content-Type-Options: nosniff
Last-Modified: Mon, 20 Feb 2017 09:18:40 GMT
ETag: "ca1ac1-423e-548f2bfc1fc00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Expires: Fri, 16 Dec 2022 04:58:49 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 979
Keep-Alive: timeout=5, max=147
Connection: Keep-Alive
Content-Type: image/x-icon

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/plugins/ua/linkid.js

142.250.74.14

200 OK

859 B

URL HTTP/2
www.google-analytics.com/plugins/ua/linkid.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1335)
Size
859 B (859 bytes)
Hash
904463ce35aee800847ab85ec948aaf6
904e4d2647466c7f7e0f7412019984e3b2ccfb24
057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237

HTTP Headers

GET /plugins/ua/linkid.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 04:34:27 GMT
expires: Fri, 02 Dec 2022 05:34:27 GMT
cache-control: public, max-age=3600
age: 1462
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/collect?v=1&_v=j98&aip=1&a=528296280&t=pageview&_s=1&dl=https%3A%2F%2F24voglie.it%2F&ul=en-us&de=UTF-8&dt=Gelateria%20Pasticceria%20%7C%2024%20Voglie&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=aGBAgEAjAAAAAAAAI~&jid=167090436&gjid=1451076472&cid=933155374.1669957127&tid=UA-107050852-1&_gid=36869337.1669957127&z=857853635

142.250.74.14

200 OK

35 B

URL HTTP/2
www.google-analytics.com/collect?v=1&_v=j98&aip=1&a=528296280&t=pageview&_s=1&dl=https%3A%2F%2F24voglie.it%2F&ul=en-us&de=UTF-8&dt=Gelateria%20Pasticceria%20%7C%2024%20Voglie&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=aGBAgEAjAAAAAAAAI~&jid=167090436&gjid=1451076472&cid=933155374.1669957127&tid=UA-107050852-1&_gid=36869337.1669957127&z=857853635
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /collect?v=1&_v=j98&aip=1&a=528296280&t=pageview&_s=1&dl=https%3A%2F%2F24voglie.it%2F&ul=en-us&de=UTF-8&dt=Gelateria%20Pasticceria%20%7C%2024%20Voglie&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=aGBAgEAjAAAAAAAAI~&jid=167090436&gjid=1451076472&cid=933155374.1669957127&tid=UA-107050852-1&_gid=36869337.1669957127&z=857853635 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Thu, 01 Dec 2022 17:57:32 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 39677
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

44.237.51.86

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.51.86:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fRbtU+bSF3E945hs1wBbWQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gDeyP1IuZrUh/S+ceh8Ay5kaJKg=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&gjid=1451076472&_gid=36869337.1669957127&_u=aGBAgEAjAAAAAEAAI~&z=1314281531

64.233.165.154

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&gjid=1451076472&_gid=36869337.1669957127&_u=aGBAgEAjAAAAAEAAI~&z=1314281531
IP
64.233.165.154:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&gjid=1451076472&_gid=36869337.1669957127&_u=aGBAgEAjAAAAAEAAI~&z=1314281531 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://24voglie.it
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://24voglie.it
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Dec 2022 04:58:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&_u=aGBAgEAjAAAAAEAAI~&z=852571281

142.250.74.132

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&_u=aGBAgEAjAAAAAEAAI~&z=852571281
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&_u=aGBAgEAjAAAAAEAAI~&z=852571281 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 04:58:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&_u=aGBAgEAjAAAAAEAAI~&z=852571281

142.250.74.67

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&_u=aGBAgEAjAAAAAEAAI~&z=852571281
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107050852-1&cid=933155374.1669957127&jid=167090436&_u=aGBAgEAjAAAAAEAAI~&z=852571281 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 04:58:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:58:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7260
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:58:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7260
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:58:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7260
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:58:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7260
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:58:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7260
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:58:49 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 26642
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4834 bytes)
Hash
cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bBj-TXtavCuORZ9qBoZeVj-GXeRljAeW-98HY7lTk5_VRSKF4_07VQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 04:22:38 GMT
age: 2171
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6752 bytes)
Hash
f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JZAFwGz7kAWplsA1qeraQTjirrZb29JTnUPii5BcPg5tzxcBLtt0WA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:24:25 GMT
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
age: 23664
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9719 bytes)
Hash
6e65083422468e512aa73eb68f20b2ec
73884daab5e71e4917637b3679c0bb5a1f0447de
f0d97bb9e3f01bbdbe91ba1f9b6ea0f649c66192383c51fe5c7ca9ac2a38ebdb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9719
x-amzn-requestid: c4ba3502-e191-40fa-8ae0-71dc6f733db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPjhHE8woAMFyKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382e606-70ab0e5523c91e5420efec78;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:22:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oBn917CDV6DjSs9TAL2iBU0Rn8_f8ny1rAVXrbI9KML2P7pxusbdjA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:43:01 GMT
age: 4548
etag: "73884daab5e71e4917637b3679c0bb5a1f0447de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 78187
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7722 bytes)
Hash
cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 25718
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Dosis:400,600,700

142.250.74.74

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Dosis:400,600,700
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Dosis:400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://24voglie.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 04:58:48 GMT
date: Fri, 02 Dec 2022 04:58:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (78)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type