greencash.it/
80.88.86.102301 Moved Permanently 144 B IP 80.88.86.102:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 468eb0e777513f1940deeb465123f2ed
0830a6aafe5279486354c04a0681c25e957c238f
e4e132d07249d19b4593d969b26b33fcd34bc55fba8be018211d391ec5ba21cc
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://greencash.it/
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 28 Jan 2023 13:53:27 GMT
Content-Length: 144
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13323
Expires: Sat, 28 Jan 2023 17:35:30 GMT
Date: Sat, 28 Jan 2023 13:53:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13218
Expires: Sat, 28 Jan 2023 17:33:45 GMT
Date: Sat, 28 Jan 2023 13:53:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7304
Expires: Sat, 28 Jan 2023 15:55:11 GMT
Date: Sat, 28 Jan 2023 13:53:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 13:43:05 GMT
content-type: application/json
age: 622
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: v0mHwNhILo3tx0b9/91djlXEKUNmBKzjpZGLozJ99u1ik0UeRnoAacWc6g3FgkhP9MW9iYZUMxopSQDcaOygpA==
x-amz-request-id: MQ67XN3J6TWTMP21
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 13:49:54 GMT
age: 213
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 13:53:27 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
greencash.it/
80.88.86.102200 OK 35 kB IP 80.88.86.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (7824), with CRLF line terminators
Hash 2520df0a99ca781383970d7277f17c0b
243fdd46b3fee6f823c0de1123101fc456fc900c
d590c9494dd8a8985e176b5b395a767f40d2de7146ff677fd9cc4d844e452c61
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: private
content-type: text/html; Charset=iso-8859-1
content-encoding: br
expires: Sat, 28 Jan 2023 13:52:28 GMT
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG; secure; path=/
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 35442
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 13:49:03 GMT
age: 265
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
greencash.it/scripts/jquery.js
80.88.86.102200 OK 48 kB URL HTTP/2 greencash.it/scripts/jquery.js
IP 80.88.86.102:0
File type ASCII text, with very long lines (32047), with CRLF line terminators
Hash 7bc52e21623840df1df3431aaf0caff9
d5c00942a3941dfbba2a980f7efa28b142f749c0
3877b8edde0dc2c534e1d6e809b335c78cf5f05231fca3a3b1dfb487b56d8d16
Analyzer Verdict Alert fortinet Malware
GET /scripts/jquery.js HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: application/javascript
content-encoding: br
last-modified: Fri, 16 Oct 2020 08:23:19 GMT
accept-ranges: bytes
etag: "f460979a95a3d61:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 48409
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1eb0a2928a5a6445ea2403546c917632
c3174e2243b998ea5850bed5f26f124253a59ea4
6f6125f352a6f2271ac69946dc5985aeef83d623cd7e90bb48bb3d3a62b4bdb3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6355
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:53:28 GMT
Last-Modified: Sat, 28 Jan 2023 12:07:33 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
greencash.it/readycontent/images/greencash-usato-smartphone.jpg
80.88.86.102200 OK 131 kB URL HTTP/2 greencash.it/readycontent/images/greencash-usato-smartphone.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2020:10:16 11:23:56], baseline, precision 8, 258x120, components 3\012- data
Size 131 kB (131331 bytes)
Hash ed114f45b82b6bd3e0a8d88748ea8f10
5303c3a8f051d85258bb0aa3fa5cc8c55a25be01
85e10243685c17a0a02e9ea0f15875fa695def3885b838b45e5b21c098c3076c
GET /readycontent/images/greencash-usato-smartphone.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Fri, 16 Oct 2020 09:43:27 GMT
accept-ranges: bytes
etag: "ad7eadcca0a3d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 131331
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11625
Expires: Sat, 28 Jan 2023 17:07:13 GMT
Date: Sat, 28 Jan 2023 13:53:28 GMT
Connection: keep-alive
greencash.it/scripts/select2/dist/js/i18n/it.js
80.88.86.102200 OK 504 B URL HTTP/2 greencash.it/scripts/select2/dist/js/i18n/it.js
IP 80.88.86.102:0
File type Unicode text, UTF-8 text, with very long lines (789), with no line terminators
Hash 2d104a3fa54f5a1a3c69e7be19bfc07a
16fca4179fe96a34e87bf4077ae467daf34e436c
6e129911ae876468c76266b4e0879d7f4da8c7a040ec2bf3679a764d0a61af13
Analyzer Verdict Alert fortinet Malware
GET /scripts/select2/dist/js/i18n/it.js HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: application/javascript
content-encoding: br
last-modified: Tue, 03 Jan 2023 08:53:18 GMT
accept-ranges: bytes
etag: "de4c3cd3501fd91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 504
X-Firefox-Spdy: h2
greencash.it/nuovo/style.css
80.88.86.102200 OK 32 kB URL HTTP/2 greencash.it/nuovo/style.css
IP 80.88.86.102:0
File type ASCII text, with CRLF line terminators
Hash 9f6a84851d4453d83a4010f91b0bf53a
6da03ab2411039f3011a18b660bf98f0edd85463
1fee8a51819586882656e4be3cf2f079923d1cc4a4e2cdb7fe937bf5ab887ddc
GET /nuovo/style.css HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: text/css
content-encoding: br
last-modified: Tue, 17 Nov 2020 16:44:31 GMT
accept-ranges: bytes
etag: "2aa48ec0bdd61:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 31715
X-Firefox-Spdy: h2
greencash.it/ReadySkins/wonder/profile_217_20230103085904.css
80.88.86.102200 OK 115 kB URL HTTP/2 greencash.it/ReadySkins/wonder/profile_217_20230103085904.css
IP 80.88.86.102:0
File type ASCII text, with very long lines (65516), with CRLF line terminators
Size 115 kB (114690 bytes)
Hash 0073dc0fd5386d00a6c85021da843624
494025ac64f0db21b529c0afa7b226094a4c1b97
0aa590c93af77afeb6ca463f95c61ed8ae3d2fd6615c41780b646c776ff1c37b
GET /ReadySkins/wonder/profile_217_20230103085904.css HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: text/css
content-encoding: br
last-modified: Tue, 03 Jan 2023 08:59:06 GMT
accept-ranges: bytes
etag: "0694ea2511fd91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 114690
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/rivalutazione-usato.png
80.88.86.102200 OK 6.7 kB URL HTTP/2 greencash.it/nuovo/immagini/rivalutazione-usato.png
IP 80.88.86.102:0
File type PNG image data, 90 x 77, 8-bit/color RGBA, interlaced\012- data
Hash 64c228563e941bfa27b46cbee0e0396b
47d03acc6e124adfbd9895b6e9a55200e32e3c59
dffa96064e427c6234a9580a28bc4c40d9e6eecc563bc622378e7174f625023f
GET /nuovo/immagini/rivalutazione-usato.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Thu, 22 Oct 2020 15:21:17 GMT
accept-ranges: bytes
etag: "3054b4fc86a8d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 6741
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/traspoero-24ore.png
80.88.86.102200 OK 5.4 kB URL HTTP/2 greencash.it/nuovo/immagini/traspoero-24ore.png
IP 80.88.86.102:0
File type PNG image data, 90 x 77, 8-bit/color RGBA, interlaced\012- data
Hash a4f4660f68d8b43c287c1e98b127ca9a
5e8148ffed282fe47c0e70ec547ce96f022b1ca4
d0137b5bc4a4091a30113c8676cf5a78a03361a224788837e0bb8ef3e983042c
GET /nuovo/immagini/traspoero-24ore.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Thu, 22 Oct 2020 15:30:57 GMT
accept-ranges: bytes
etag: "0794d5688a8d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 5420
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/assistenza.png
80.88.86.102200 OK 3.9 kB URL HTTP/2 greencash.it/nuovo/immagini/assistenza.png
IP 80.88.86.102:0
File type PNG image data, 90 x 77, 8-bit/color RGBA, interlaced\012- data
Hash 3eecde41c747c7ec8af1f50844ac5732
be8b5b51ea30c6feb35fde05c3820ed44a3fc050
c7ccdfa1a5caf8796d909fc1aff2bba9978c715a872f3bd2dae6d5f760ec5023
GET /nuovo/immagini/assistenza.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Thu, 22 Oct 2020 15:34:39 GMT
accept-ranges: bytes
etag: "d324c7da88a8d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 3909
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/paypal.png
80.88.86.102200 OK 18 kB URL HTTP/2 greencash.it/nuovo/immagini/paypal.png
IP 80.88.86.102:0
File type PNG image data, 134 x 77, 8-bit/color RGB, interlaced\012- data
Hash be5e459f0bbdcd86ffed069fbadd90ea
25b947c59a6d97b081fbd6e61d82b124c4b1535d
00760257da0e97a8fb942274f88146ffee136e7c67a005cee8381bbdf16c0985
GET /nuovo/immagini/paypal.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Thu, 22 Oct 2020 15:37:50 GMT
accept-ranges: bytes
etag: "67a36f4c89a8d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 17595
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/garanzia.png
80.88.86.102200 OK 4.1 kB URL HTTP/2 greencash.it/nuovo/immagini/garanzia.png
IP 80.88.86.102:0
File type PNG image data, 90 x 77, 8-bit/color RGBA, interlaced\012- data
Hash 36a17a5824613643aa9124955421752d
2750469b46620ab99e2fd7f48618c2346655d0db
5015acdb986813a2cd0ac57ef03122f6f9dd5e88fe0ec7dd9d5bdb9852ca436d
GET /nuovo/immagini/garanzia.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:06:16 GMT
accept-ranges: bytes
etag: "5e7c22321eaed61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 4067
X-Firefox-Spdy: h2
greencash.it/files/green_cash_copy_Files/Foto/212332.PNG
80.88.86.102200 OK 19 kB URL HTTP/2 greencash.it/files/green_cash_copy_Files/Foto/212332.PNG
IP 80.88.86.102:0
File type PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 89d91c5c86927a889214018f2225653d
2f9249871f244f5d2d6c0d47306fe1ec4f272f19
78f5735c6e16a0673f56c2058833cdc665f5fc8a7da240377829a3a3933c6f29
Analyzer Verdict Alert fortinet Malware
GET /files/green_cash_copy_Files/Foto/212332.PNG HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Thu, 19 Jan 2023 15:23:58 GMT
accept-ranges: bytes
etag: "512312d1a2cd91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 18608
X-Firefox-Spdy: h2
greencash.it/files/green_cash_copy_Files/Foto/213028.PNG
80.88.86.102200 OK 22 kB URL HTTP/2 greencash.it/files/green_cash_copy_Files/Foto/213028.PNG
IP 80.88.86.102:0
File type PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash ca1ed6d8245fe7be38332e6ac29f4dc4
d0d54487c1a63394a8f096c47cbeb4390d3bf313
8d58ccb756e1379057abf1d97fa43c915ca70508035d2d47748e16ed4ce90e3d
Analyzer Verdict Alert fortinet Malware
GET /files/green_cash_copy_Files/Foto/213028.PNG HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Tue, 24 Jan 2023 15:03:05 GMT
accept-ranges: bytes
etag: "13f83cf6430d91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 22041
X-Firefox-Spdy: h2
greencash.it/files/green_cash_copy_Files/Foto/213316.PNG
80.88.86.102200 OK 15 kB URL HTTP/2 greencash.it/files/green_cash_copy_Files/Foto/213316.PNG
IP 80.88.86.102:0
File type PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash d9c106d94f067ad585333bd69bc2b9f6
7ad1fd2b4977436847183ccd7cf7a2bd48af2f35
a6809cde415dbdb8bdf02c12e5f0656bc8c3f477c9e9bf62d06cf8e62ecbd40d
Analyzer Verdict Alert fortinet Malware
GET /files/green_cash_copy_Files/Foto/213316.PNG HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Thu, 26 Jan 2023 14:26:15 GMT
accept-ranges: bytes
etag: "a8ded259231d91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 15249
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/smartphone-usati-milano.jpg
80.88.86.102200 OK 43 kB URL HTTP/2 greencash.it/nuovo/immagini/smartphone-usati-milano.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 762x339, components 3\012- data
Hash 75fa85b18f0a0eade38ea7d701a81f93
5605aac13e25d0a58032a8fc8945c476cd43acea
0e104cd16c95d354e256c25ba984739f00901ba8164c43988d86b0093aa054af
GET /nuovo/immagini/smartphone-usati-milano.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Fri, 23 Oct 2020 11:03:20 GMT
accept-ranges: bytes
etag: "5f94181e2ca9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 43218
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/google-map.png
80.88.86.102200 OK 5.4 kB URL HTTP/2 greencash.it/nuovo/immagini/google-map.png
IP 80.88.86.102:0
File type PNG image data, 40 x 39, 8-bit/color RGBA, interlaced\012- data
Hash 7cb8a5c1a8c9d8ad64cf4ba4a8bc2acc
9d4013cef5aaabeca543db2aa7083bcab3434cba
692f3c26864d68498a02b08ea0397931523dcc5a917b3e068cea676d7aa5f45f
GET /nuovo/immagini/google-map.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Fri, 23 Oct 2020 15:01:36 GMT
accept-ranges: bytes
etag: "a2e6a674da9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 5386
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/ut1.gif
80.88.86.102200 OK 2.5 kB URL HTTP/2 greencash.it/nuovo/immagini/ut1.gif
IP 80.88.86.102:0
File type GIF image data, version 89a, 49 x 49\012- data
Hash ffafac05507acef8c568608cfa95778c
cfd6f31dfac5572515663b371ed1bda18683d483
dac7dd89cee88862f04b6b3926c1a6d3e8cc12c982318b16a8d7a3840192b849
GET /nuovo/immagini/ut1.gif HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/gif
last-modified: Fri, 23 Oct 2020 10:15:11 GMT
accept-ranges: bytes
etag: "e376836425a9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 2457
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/stelle.png
80.88.86.102200 OK 2.8 kB URL HTTP/2 greencash.it/nuovo/immagini/stelle.png
IP 80.88.86.102:0
File type PNG image data, 76 x 15, 8-bit colormap, non-interlaced\012- data
Hash 1608a65d65a5ff376ffd483d3a1d6d9c
ecfc94718b9fcb68ea290279d931b9656c254a44
ade32af634d01b1b1eff526c9e9ca3541d8ef7f805db17ce97d60b8f59ab85fc
GET /nuovo/immagini/stelle.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Fri, 23 Oct 2020 09:45:11 GMT
accept-ranges: bytes
etag: "9e6a173321a9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 2766
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/ut2.gif
80.88.86.102200 OK 2.4 kB URL HTTP/2 greencash.it/nuovo/immagini/ut2.gif
IP 80.88.86.102:0
File type GIF image data, version 89a, 49 x 49\012- data
Hash 796d86c85e6b0f35a18d15a4661e0f4d
c4477902bfdc158b2c0d73e1f1b672a5ba5a783a
2fd3ddd6d93717c58c8a9a56b2125f446eac0b4be45c53e50153c9adbb9b93db
GET /nuovo/immagini/ut2.gif HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/gif
last-modified: Fri, 23 Oct 2020 10:16:56 GMT
accept-ranges: bytes
etag: "5b2bcba225a9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 2396
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/ut3.gif
80.88.86.102200 OK 3.9 kB URL HTTP/2 greencash.it/nuovo/immagini/ut3.gif
IP 80.88.86.102:0
File type GIF image data, version 89a, 49 x 49\012- data
Hash 4534cc965352ab1bfaa7551d58601e38
bb5c5c073e0a96f80b8ae4ef175a3fd3b3ab3b0b
5fb0797c657dc784452d9e4dadd3312ed18eb18e68a8af178b0c96d4dc48e809
GET /nuovo/immagini/ut3.gif HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/gif
last-modified: Fri, 23 Oct 2020 10:22:30 GMT
accept-ranges: bytes
etag: "2022a56926a9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 3879
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/ut4.gif
80.88.86.102200 OK 3.7 kB URL HTTP/2 greencash.it/nuovo/immagini/ut4.gif
IP 80.88.86.102:0
File type GIF image data, version 89a, 49 x 49\012- data
Hash 8c19f37577a4d768c22bf2f7c622be4a
3c25ea4a676d7074142e3b705bdff6ebde9eb48f
631609234705599e3a9c2416d89bff94ad2b6133c6837edb7ca737379ca28172
GET /nuovo/immagini/ut4.gif HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/gif
last-modified: Fri, 23 Oct 2020 10:22:30 GMT
accept-ranges: bytes
etag: "79bdcb6926a9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 3746
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/ut5.gif
80.88.86.102200 OK 3.7 kB URL HTTP/2 greencash.it/nuovo/immagini/ut5.gif
IP 80.88.86.102:0
File type GIF image data, version 89a, 49 x 49\012- data
Hash bbfafaf29e1e35b318d98bad284c724e
17b4a690dc33a19a6c9801a6815931655fd65caf
fae3c90de5605123f63f3753fd56c89698e6527685bc2137fb267e25f630c10f
GET /nuovo/immagini/ut5.gif HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/gif
last-modified: Fri, 23 Oct 2020 10:22:30 GMT
accept-ranges: bytes
etag: "da34f06926a9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 3706
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/ut6.gif
80.88.86.102200 OK 3.7 kB URL HTTP/2 greencash.it/nuovo/immagini/ut6.gif
IP 80.88.86.102:0
File type GIF image data, version 89a, 49 x 49\012- data
Hash e4333fe7e60d457ca557ff6028adc8ad
ac1012af9ec423ca2f1b68f6bbb66a19c5fc030f
7e610cdc2266edbbaa0065f924d5c6d2ce22c76bad82cfaec8517ab7165c9b33
GET /nuovo/immagini/ut6.gif HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/gif
last-modified: Fri, 23 Oct 2020 10:22:30 GMT
accept-ranges: bytes
etag: "022d46926a9d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 3690
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/logo-footer.png
80.88.86.102200 OK 24 kB URL HTTP/2 greencash.it/nuovo/immagini/logo-footer.png
IP 80.88.86.102:0
File type PNG image data, 164 x 64, 8-bit/color RGBA, interlaced\012- data
Hash bc4f17cd43f28f8f770197a488bb3e0d
9bcc3ebca7423cf7ed021eec3027a620dace9b61
34f8ed8dcd58a0807e18d77881f60a4148b292df75fff915ac329932e40a223b
GET /nuovo/immagini/logo-footer.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Tue, 27 Oct 2020 16:57:31 GMT
accept-ranges: bytes
etag: "ecf5c4282acd61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 24315
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/google-recenzioni.png
80.88.86.102200 OK 23 kB URL HTTP/2 greencash.it/nuovo/immagini/google-recenzioni.png
IP 80.88.86.102:0
File type PNG image data, 152 x 70, 8-bit/color RGBA, interlaced\012- data
Hash ffa8d7065cab07caae763561e8062d30
02159855eafc7e233fcfa3716acbf9fbd1461409
5bc395a8d884c7c56ac60b2dd08afe102521ea9be751d7493d850fac8f85291f
GET /nuovo/immagini/google-recenzioni.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Mon, 02 Nov 2020 21:40:24 GMT
accept-ranges: bytes
etag: "20a773c560b1d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 23014
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/pagamentopay.png
80.88.86.102200 OK 12 kB URL HTTP/2 greencash.it/nuovo/immagini/pagamentopay.png
IP 80.88.86.102:0
File type PNG image data, 435 x 64, 8-bit colormap, non-interlaced\012- data
Hash ddce192981f153c08d3e43ae147a76fc
8d5eb045370bde5c4aaf8e6244477c608d18025e
220f70fbf543593e98fd3aed575245fd83959d7355e31f23c6b6d22ffa3fd906
GET /nuovo/immagini/pagamentopay.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Thu, 29 Oct 2020 15:13:48 GMT
accept-ranges: bytes
etag: "3a85e7196aed61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 11709
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/trasporto.png
80.88.86.102200 OK 19 kB URL HTTP/2 greencash.it/nuovo/immagini/trasporto.png
IP 80.88.86.102:0
File type PNG image data, 180 x 52, 8-bit/color RGBA, interlaced\012- data
Hash c781fc9a1413f84f8f89bd0e5dab9614
ca3c7b83c06946a875e1bb387887ab586f0ebf2b
a9c73231111c8e11f42efb11acd53b217f8b5ab84e693c4ca47ad1b9821789e1
GET /nuovo/immagini/trasporto.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Tue, 03 Nov 2020 10:45:00 GMT
accept-ranges: bytes
etag: "479df60ceb1d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 19006
X-Firefox-Spdy: h2
greencash.it/files/green_cash_copy_Files/Web/Layout17/Galleries/1/1/banner2copia.png
80.88.86.102200 OK 456 kB URL HTTP/2 greencash.it/files/green_cash_copy_Files/Web/Layout17/Galleries/1/1/banner2copia.png
IP 80.88.86.102:0
File type PNG image data, 1450 x 364, 8-bit/color RGB, non-interlaced\012- data
Size 456 kB (455455 bytes)
Hash 9a8512255619a06e24a3f59b1deb7187
1e38b727bd95e595b6bd975f269f1adb5bb68322
5b9858ef8b35816b44a7668db6c61009a26f3b52d839cb6c3a6ac474614f0a88
GET /files/green_cash_copy_Files/Web/Layout17/Galleries/1/1/banner2copia.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Wed, 22 Jun 2022 09:53:23 GMT
accept-ranges: bytes
etag: "f62332e91d86d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 455455
X-Firefox-Spdy: h2
greencash.it/files/green_cash_copy_Files/Web/Layout17/Galleries/1/2/videogames.png
80.88.86.102200 OK 586 kB URL HTTP/2 greencash.it/files/green_cash_copy_Files/Web/Layout17/Galleries/1/2/videogames.png
IP 80.88.86.102:0
File type PNG image data, 1450 x 364, 8-bit/color RGBA, non-interlaced\012- data
Size 586 kB (586452 bytes)
Hash 1fd07cc54e0681732cc5fc4191783b68
4f940509ff4bb71c9b0c5e39dde6cc9b837dee7a
d5ab593ce2c07b9f49f885bef913c2f566f4b550e9ca4a320198e97aa8583484
GET /files/green_cash_copy_Files/Web/Layout17/Galleries/1/2/videogames.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Fri, 03 Jun 2022 15:57:57 GMT
accept-ranges: bytes
etag: "75a19ab16277d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 586452
X-Firefox-Spdy: h2
greencash.it/files/green_cash_copy_Files/Web/Layout17/Galleries/1/3/negozio.png
80.88.86.102200 OK 560 kB URL HTTP/2 greencash.it/files/green_cash_copy_Files/Web/Layout17/Galleries/1/3/negozio.png
IP 80.88.86.102:0
File type PNG image data, 1450 x 364, 8-bit/color RGBA, non-interlaced\012- data
Size 560 kB (560465 bytes)
Hash b5d2e9eaf0bd645a73c71287afef30a5
fbc850d6911821d695cadb58d0bc8f32b8434e10
568f322ea484f37854e79e9140d7d0a8b808c67c74e867794dab633eca14e534
GET /files/green_cash_copy_Files/Web/Layout17/Galleries/1/3/negozio.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Wed, 22 Jun 2022 09:32:08 GMT
accept-ranges: bytes
etag: "fbec8bf11a86d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 560465
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:53:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a10c6e58c3b2d93009af0bbf0c1b9876
e1770e14d56bf4f92719aeaf44dc21933230a7d2
ed84c78a7315e66162a609a32a50ebb016243e8f8516248e09531eeef0c3b5ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5733
Cache-Control: max-age=172136
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:53:28 GMT
Etag: "63d50fdb-116"
Expires: Mon, 30 Jan 2023 13:42:24 GMT
Last-Modified: Sat, 28 Jan 2023 12:06:51 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 278
greencash.it/nuovo/immagini/film-dvd-usati.jpg
80.88.86.102200 OK 226 kB URL HTTP/2 greencash.it/nuovo/immagini/film-dvd-usati.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2020:10:22 18:38:06], baseline, precision 8, 594x342, components 3\012- data
Size 226 kB (226019 bytes)
Hash b49134060c36b6e5d83d2c05ad96cc2a
93191ca6d724ecf7418e74603c8b6dd2dc14d523
47c9d136737e1abc5d63c0bafefe352dd9007aa058eb1fc1c1f970b0e098c36f
GET /nuovo/immagini/film-dvd-usati.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Thu, 22 Oct 2020 16:43:34 GMT
accept-ranges: bytes
etag: "21fea97b92a8d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 226019
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/computer-usati.jpg
80.88.86.102200 OK 93 kB URL HTTP/2 greencash.it/nuovo/immagini/computer-usati.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=419, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=570], baseline, precision 8, 500x419, components 3\012- data
Hash 281c1755f4e75e6848a77fd700381527
f75595e3e5a482269b7615a8fafcdc2866abae7d
d2545776f575100ed3a8b9196091c1d28acbe7105aaa307c2dbf634564bd2fde
GET /nuovo/immagini/computer-usati.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Mon, 26 Oct 2020 17:25:39 GMT
accept-ranges: bytes
etag: "127b26bdabd61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 93178
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:53:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
greencash.it/nuovo/immagini/strumenti-musicali-usati.jpg
80.88.86.102200 OK 275 kB URL HTTP/2 greencash.it/nuovo/immagini/strumenti-musicali-usati.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2020:10:22 18:52:05], baseline, precision 8, 600x461, components 3\012- data
Size 275 kB (275327 bytes)
Hash 2c9bfa98c0de02ca2dab11db4785d7a7
6fdb333b379b71c2606fdc20b678459a3898de63
d293da8223f67f653bace239bac88e643042291a5a0747f7768f232ec3b2ac59
GET /nuovo/immagini/strumenti-musicali-usati.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Thu, 22 Oct 2020 16:52:15 GMT
accept-ranges: bytes
etag: "3a772db293a8d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 275327
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:53:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlEA.ttf
216.58.207.227200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlEA.ttf
IP 216.58.207.227:0
File type TrueType Font data, 12 tables, 1st "GPOS", 8 names, Microsoft, language 0x409\012- data
Hash 94fd1d25052ca2229d37675e8d5f8386
d9b7e86e11abb5ff21f16bebef08bb0524f62817
30735d12f3b2155a19172277e5a9d0f01c600dd70c32d52faf5a3f7d54314554
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlEA.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://greencash.it
Connection: keep-alive
Referer: https://greencash.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10630
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:07:08 GMT
expires: Sat, 27 Jan 2024 02:07:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:08 GMT
content-type: font/ttf
age: 128780
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfedw.ttf
216.58.207.227200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfedw.ttf
IP 216.58.207.227:0
File type TrueType Font data, 12 tables, 1st "GPOS", 8 names, Microsoft, language 0x409\012- data
Hash ceabe641efbd5fbe7d50370669b95d82
05c6c1f26301d64489aa42f93f6eac6992ecd4fc
694e2ecdc43f7610c958086f25a7809369cb8d12deb13a155cd75c75df46da44
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfedw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://greencash.it
Connection: keep-alive
Referer: https://greencash.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10577
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:07 GMT
expires: Sat, 27 Jan 2024 02:06:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/ttf
age: 128841
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:53:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
greencash.it/nuovo/immagini/tv-usata.jpg
80.88.86.102200 OK 106 kB URL HTTP/2 greencash.it/nuovo/immagini/tv-usata.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=419, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=570], baseline, precision 8, 500x419, components 3\012- data
Size 106 kB (106068 bytes)
Hash 4f5702ddbb462a0a5858a6ee0dfea5b4
698fad02e41d57a3d4cdf84994a38d3fbf542d03
f2cd3fcfc8223f345f3df2a49119fcca8c0379438fa549361296cc6b9fd72bf0
GET /nuovo/immagini/tv-usata.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Mon, 26 Oct 2020 17:27:15 GMT
accept-ranges: bytes
etag: "d1de213fbdabd61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 106068
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/paly-station-usata.jpg
80.88.86.102200 OK 64 kB URL HTTP/2 greencash.it/nuovo/immagini/paly-station-usata.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2020:10:22 19:39:52], baseline, precision 8, 527x365, components 3\012- data
Hash a91b46fa943696f531ec6287293907b8
e0cf8549881f88c240ac8199ec2905623cb62171
3187b2e37ad12342a6eb6262f5d6f09899bec1ef6ec0acc18d873c394483dd74
GET /nuovo/immagini/paly-station-usata.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Thu, 22 Oct 2020 17:41:35 GMT
accept-ranges: bytes
etag: "54773f969aa8d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 63846
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/musica-stereo.jpg
80.88.86.102200 OK 62 kB URL HTTP/2 greencash.it/nuovo/immagini/musica-stereo.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=419, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=570], baseline, precision 8, 570x419, components 3\012- data
Hash 7a918e2d1a225d51a15d89f89c299c9b
cff1d9565359e9dea4ee765311b900f19f515e95
b0419c81c0353128909162106724b72a0ac6379378adc660925c47051f6718c4
GET /nuovo/immagini/musica-stereo.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Mon, 26 Oct 2020 16:35:00 GMT
accept-ranges: bytes
etag: "541acf2b5abd61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 62046
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/smartphone-usati.jpg
80.88.86.102200 OK 194 kB URL HTTP/2 greencash.it/nuovo/immagini/smartphone-usati.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=369, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=526], baseline, precision 8, 526x369, components 3\012- data
Size 194 kB (193479 bytes)
Hash f19ed8c3a7ef77d2c7b15c891a63db5b
e0278d02e79cc93b0e3988d6ef8ae418d6ba6f9d
3c5a598ecc3c52fb142e17d2620737270780844c2253dfe8c133d18e4547acbe
GET /nuovo/immagini/smartphone-usati.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Mon, 26 Oct 2020 16:38:57 GMT
accept-ranges: bytes
etag: "cc2e57fb6abd61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 193479
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.255.30101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.255.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: x6QZFrDYfxB7EtMfQvNtUw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7tglmWCjGvMSfP3EPicNEKPTKRo=
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a10c6e58c3b2d93009af0bbf0c1b9876
e1770e14d56bf4f92719aeaf44dc21933230a7d2
ed84c78a7315e66162a609a32a50ebb016243e8f8516248e09531eeef0c3b5ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5733
Cache-Control: max-age=172136
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:53:28 GMT
Etag: "63d50fdb-116"
Expires: Mon, 30 Jan 2023 13:42:24 GMT
Last-Modified: Sat, 28 Jan 2023 12:06:51 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:53:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://greencash.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 110720
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.paypal.com/sdk/js?locale=it_IT¤cy=EUR&client-id=AXirfPLmbfwXimY5biDLvxtkNJxqBbEFKc0Knt7e_DrnIyXcDb6A6MpwlIL3mojXGpJcsjrn2wj0Ww1M
151.101.1.21200 OK 94 kB URL HTTP/2 www.paypal.com/sdk/js?locale=it_IT¤cy=EUR&client-id=AXirfPLmbfwXimY5biDLvxtkNJxqBbEFKc0Knt7e_DrnIyXcDb6A6MpwlIL3mojXGpJcsjrn2wj0Ww1M
IP 151.101.1.21:0
File type ASCII text, with very long lines (65472)
Hash d259b8ac87a151c15cfafb4f4e55e5e3
107a9298203bc646d1ae050aa2e070dd4bb6352f
6598c393db3561a078730072e9b4ed9bcd37bc8d4984d507056f39d83bdfc968
GET /sdk/js?locale=it_IT¤cy=EUR&client-id=AXirfPLmbfwXimY5biDLvxtkNJxqBbEFKc0Knt7e_DrnIyXcDb6A6MpwlIL3mojXGpJcsjrn2wj0Ww1M HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600, s-maxage=10800
content-encoding: gzip
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.qualtrics.com; script-src 'nonce-vgB2iyj3CEd4Irecpo49HBPohAAoXcOJ1WLR1fWDKTI3ko/k' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; style-src 'nonce-vgB2iyj3CEd4Irecpo49HBPohAAoXcOJ1WLR1fWDKTI3ko/k' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; object-src 'none'; img-src https: data:; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: application/javascript; charset=utf-8
etag: W/"17118-EHqSmCA7xkbRrgUKouBw3Uu2NS8"
p3p: true
paypal-debug-id: f15887787f831
traceparent: 00-0000000000000000000f15887787f831-c8ee3011603c0069-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Jan 2023 13:53:29 GMT
age: 0
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220066-HHN, cache-bma1622-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674914009.588123,VS0,VE587
vary: Accept-Encoding
server-timing: "traceparent;desc="00-0000000000000000000f15887787f831-d9bf7856ee7f08b3-01"";content-encoding;desc="gzip",x-cdn;desc="fastly"
content-length: 94488
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/foto-video.jpg
80.88.86.102200 OK 166 kB URL HTTP/2 greencash.it/nuovo/immagini/foto-video.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2020:10:23 00:05:16], baseline, precision 8, 570x419, components 3\012- data
Size 166 kB (165661 bytes)
Hash 5acbf0c57757536ed32926bebd0b7b46
857c33952563b1075e62abd5a0a61d5f6d71458b
01fec2dd6ad54cab3d48bf5ab9396731201a84aabd4f94e6f1d322098a9b81bc
GET /nuovo/immagini/foto-video.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Thu, 22 Oct 2020 22:05:28 GMT
accept-ranges: bytes
etag: "2d4a8873bfa8d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 165661
X-Firefox-Spdy: h2
www.paypal.com/tagmanager/pptm.js?id=greencash.it&t=xo&v=5.0.350&source=payments_sdk&client_id=AXirfPLmbfwXimY5biDLvxtkNJxqBbEFKc0Knt7e_DrnIyXcDb6A6MpwlIL3mojXGpJcsjrn2wj0Ww1M&vault=false
151.101.1.21200 OK 4.3 kB URL HTTP/2 www.paypal.com/tagmanager/pptm.js?id=greencash.it&t=xo&v=5.0.350&source=payments_sdk&client_id=AXirfPLmbfwXimY5biDLvxtkNJxqBbEFKc0Knt7e_DrnIyXcDb6A6MpwlIL3mojXGpJcsjrn2wj0Ww1M&vault=false
IP 151.101.1.21:0
File type ASCII text, with very long lines (12084), with no line terminators
Hash da1b94bdea2eb1769e74df6fbd2c1a2e
4c7f6b5318ffd3d36b6b431f4bd113b55d8f14a7
45cc4e008a654e4ef3f3b3eb0ca92f52ade64445039059b5395b11734b033be4
GET /tagmanager/pptm.js?id=greencash.it&t=xo&v=5.0.350&source=payments_sdk&client_id=AXirfPLmbfwXimY5biDLvxtkNJxqBbEFKc0Knt7e_DrnIyXcDb6A6MpwlIL3mojXGpJcsjrn2wj0Ww1M&vault=false HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-3nOsZ9OkhLvVJ+6iL4Z8KKMKSwN3WAiNW4OKRB4h40YpnmqN' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval'; img-src * data:; object-src 'none'; font-src 'self' https://*.paypalobjects.com https://*.paypal.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://nexus.ensighten.com https://*.google-analytics.com 'unsafe-inline' https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' https://*.qualtrics.com;
content-type: application/x-javascript; charset=utf-8
etag: W/"2f34-zQQ0FVqIlbkbuS4WgpPW/nUPXC4"
paypal-debug-id: f4036664c14aa
traceparent: 00-0000000000000000000f4036664c14aa-2d3088bfb0694ab3-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Jan 2023 13:53:29 GMT
age: 65904
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220066-HHN, cache-bma1622-BMA
x-cache: HIT, MISS
x-cache-hits: 12, 0
x-timer: S1674914009.297069,VS0,VE22
vary: Accept-Encoding
server-timing: "traceparent;desc="00-0000000000000000000f4036664c14aa-4b03472dac6b6909-01"";content-encoding;desc="gzip",x-cdn;desc="fastly"
content-length: 4299
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/musica.jpg
80.88.86.102200 OK 116 kB URL HTTP/2 greencash.it/nuovo/immagini/musica.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=365, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=527], baseline, precision 8, 527x365, components 3\012- data
Size 116 kB (116374 bytes)
Hash f2e22205a78c67baab8fb9c4f11ac423
0da3230422c563c9305666fe07d59480680ffda2
a93d147b1fc8950a326817a776b762d85114bb5931d93ba24ae971c3fb126fe1
GET /nuovo/immagini/musica.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Mon, 26 Oct 2020 13:32:02 GMT
accept-ranges: bytes
etag: "3b8037639cabd61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 116374
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/riparazione-smartphone.jpg
80.88.86.102200 OK 47 kB URL HTTP/2 greencash.it/nuovo/immagini/riparazione-smartphone.jpg
IP 80.88.86.102:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 731x259, components 3\012- data
Hash 0eb91a85eb57d300eb4ba88fa231a038
56041b0ae6a5af57eae908846101da579c564a64
a250beefa874ebe2f8fead6f71bd818cc2cb29fcd89f76f8fc3612fe4a55ecf1
GET /nuovo/immagini/riparazione-smartphone.jpg HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/jpeg
last-modified: Wed, 28 Oct 2020 10:32:51 GMT
accept-ranges: bytes
etag: "1b1d44b015add61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 46605
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/xchiude.png
80.88.86.102200 OK 723 B URL HTTP/2 greencash.it/nuovo/immagini/xchiude.png
IP 80.88.86.102:0
File type PNG image data, 24 x 24, 8-bit colormap, non-interlaced\012- data
Hash 67b088dd3580c2380b1d89f83f3f740d
039bc6a5b8af4656f91d32cd6b541cacff6bd867
85ab0fc0297bf627b43bf4bb0e76f3ca64227c02de789e0ca33167b960988fb3
GET /nuovo/immagini/xchiude.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/nuovo/style.css
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Fri, 30 Oct 2020 17:03:05 GMT
accept-ranges: bytes
etag: "e0138388deaed61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 723
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/user.png
80.88.86.102200 OK 4.8 kB URL HTTP/2 greencash.it/nuovo/immagini/user.png
IP 80.88.86.102:0
File type PNG image data, 45 x 46, 8-bit/color RGBA, interlaced\012- data
Hash 58658323bdec736334fbe78b04aa6977
dfab5bf5d5d145c1916af9fc85618832aeef1dae
7ff3dcc37d56d989a0b7368e29143ec13f006ba212e80e4aa19eb49e8bd25f95
GET /nuovo/immagini/user.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/nuovo/style.css
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Mon, 19 Oct 2020 14:48:36 GMT
accept-ranges: bytes
etag: "2d4e79ec26a6d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 4824
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/cart.png
80.88.86.102200 OK 5.2 kB URL HTTP/2 greencash.it/nuovo/immagini/cart.png
IP 80.88.86.102:0
File type PNG image data, 45 x 46, 8-bit/color RGBA, interlaced\012- data
Hash 2761b142317c0e5b9303d8bfffb152b4
7a2bb9d854bdc87a013f260a6dd3f071c39fbbf7
196e0ab750b964025892e6b5a2de4dd4ad07dda07abc81054e06ba5c63c8e15a
GET /nuovo/immagini/cart.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/nuovo/style.css
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Mon, 19 Oct 2020 14:48:35 GMT
accept-ranges: bytes
etag: "53255eec26a6d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
content-length: 5226
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.13.0/css/all.css
172.64.132.15200 OK 14 kB URL HTTP/2 use.fontawesome.com/releases/v5.13.0/css/all.css
IP 172.64.132.15:0
File type ASCII text, with very long lines (58392)
Hash 08c39694b4c7e09734c448532ddf35e7
1674bfa8a1cd9b4347c7634c1f45942ce0b23f70
bbb534f61351e504ef4c8aad64c34463dcd78fa71083b2428f6bf60f56473ab1
GET /releases/v5.13.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:53:28 GMT
content-type: text/css
x-amz-id-2: Uf0XlYCz7Clm9D6oQjonuREcw5hy38GFHoqaxpCH71tWng9+IOD/oUF+GkYXXBayLgGEEJ5y5bQ=
x-amz-request-id: BJWZ43SG4HERPHVF
last-modified: Wed, 30 Jun 2021 15:38:38 GMT
etag: W/"76cb46c10b6c0293433b371bae2414b2"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 60137
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RY7bG2cGGOo2L%2FLfoNxrZVqvQkVOiKRm3qpi2sy6mPH83GUB9bOArxzcITClnAJNwq1QCe%2BeRB9x93mVnFnJrlqnGlzvvKzrGDgUinoSOs2vw9EZFnVvTiul6wkEHaUXQ%2F054XqX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a36eb2baf35da-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
greencash.it/nuovo/immagini/arrows.png
80.88.86.102200 OK 1.8 kB URL HTTP/2 greencash.it/nuovo/immagini/arrows.png
IP 80.88.86.102:0
File type PNG image data, 53 x 37, 8-bit/color RGBA, interlaced\012- data
Hash 6703c03b4ff3223d9c429c0481b69dad
a2e6bec9e2f65743d979b615c2c853e96d4f1e5c
b445f5190bc7727c810d80da43d20a52cd5ce7c98c2ddec27924e1685e33588e
GET /nuovo/immagini/arrows.png HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/nuovo/style.css
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/png
last-modified: Mon, 19 Oct 2020 14:48:34 GMT
accept-ranges: bytes
etag: "1efab7eb26a6d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:29 GMT
content-length: 1780
X-Firefox-Spdy: h2
greencash.it/favicon.ico
80.88.86.102200 OK 15 kB IP 80.88.86.102:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 62f5f38a4df792a864767dc50a5bba02
dec7decd10b3676f7b23723c2684cf6ef0cfa2a1
13ef6d401ad6d94f528fbc2b5465e5bcf0fb92a59d767aabc85cc72e56631a0f
GET /favicon.ico HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: image/x-icon
last-modified: Wed, 21 Oct 2020 16:07:11 GMT
accept-ranges: bytes
etag: "6fb3b73bc4a7d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:29 GMT
content-length: 15406
X-Firefox-Spdy: h2
t.paypal.com/ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=E-commerce%20greencash.it%20Home%20Page&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674914012233&g=0&completeurl=https%3A%2F%2Fgreencash.it%2F&ru=https%3A%2F%2Fgreencash.it%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D
192.229.221.25200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=E-commerce%20greencash.it%20Home%20Page&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674914012233&g=0&completeurl=https%3A%2F%2Fgreencash.it%2F&ru=https%3A%2F%2Fgreencash.it%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D
IP 192.229.221.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=E-commerce%20greencash.it%20Home%20Page&dh=1024&dw=1280&bh=939&bw=1280&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1674914012233&g=0&completeurl=https%3A%2F%2Fgreencash.it%2F&ru=https%3A%2F%2Fgreencash.it%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Sat, 28 Jan 2023 13:53:29 GMT
expires: Sat, 28 Jan 2023 13:53:29 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 9d948a00b8e52
pragma: no-cache
server: ECAcc (frc/4C9A)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1769608409%26vteXpYrS%3D1674915809%26vr%3Df8a791d71850a621e797e3b1ffffffff%26vt%3Df8a791d71850a621e797e3b1fffffffe; Expires=Wed, 28 Jan 2026 13:53:29 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3Df8a791d71850a621e797e3b1ffffffff%26vt%3Df8a791d71850a621e797e3b1fffffffe; Expires=Wed, 28 Jan 2026 13:53:29 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000009d948a00b8e52-1593039ea9302108-01
content-length: 42
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3837
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 13:53:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3837
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 13:53:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3837
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 13:53:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:20:03 GMT
age: 30807
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 35sWCIsACAhQvXkJvBn0LGf2m9OTklgDprONw5CDUoXD97TUpJ9j5Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:35 GMT
age: 57475
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 57404
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b5b797e164d0f2c91200829d1ec90f8
15a55176d8e55b6816acabae5c7cc3e4528648c9
16eb29148856512f556b22b86a153e54032caaf98dbf141119f8c126e009591f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7395
x-amzn-requestid: 166e5623-fc91-4b12-80c8-f5e1a762b387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-ELH3eIAMF56w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b4-439b5d2b67b9347d4d634d9d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L1BWTWAPsW5tfkJO0UBR4dKoW3_0Le7QhZLjBxtsY0fmf7cwEYWrMQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:01:09 GMT
age: 57141
etag: "15a55176d8e55b6816acabae5c7cc3e4528648c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a40be482a56db1e4d48ba4a8cf515ba
da9c7255d5840c025526c6c24354750d9ba3a4ef
fa0bfe56b97ce5cf450e4799db2fe6d5645553b71d1e2bd928df0278a81a33c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7819
x-amzn-requestid: b9c17e9a-8da5-4736-a8bc-ea430feaef8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_diGfbIAMFX2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f0-695dd291002d9cc425df0edc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RBvJ-kohSNIneW4uHfp0sGGhpKGkzDWt6RjDTqFkK_UJvH2Bq2N8Rg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:00:20 GMT
age: 57190
etag: "da9c7255d5840c025526c6c24354750d9ba3a4ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 56250
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.paypal.com/xoplatform/logger/api/logger
151.101.1.21200 OK 0 B URL HTTP/2 www.paypal.com/xoplatform/logger/api/logger
IP 151.101.1.21:0
OPTIONS /xoplatform/logger/api/logger HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://greencash.it/
Origin: https://greencash.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: https://greencash.it
cache-control: max-age=0, no-cache, no-store, must-revalidate
paypal-debug-id: f576275863b9d
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Sat, 28 Jan 2023 22:39:25 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Sun, 28 Jan 2024 13:53:29 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NDkxNDAwOTg2OCIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=loggernodeweb; Domain=.paypal.com; Path=/; Expires=Tue, 31 Jan 2023 13:53:29 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg02.phx; Path=/; Domain=paypal.com; Expires=Sat, 28 Jan 2023 14:23:29 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1769608409%26vteXpYrS%3D1674915809%26vr%3Df8a792e71850ad045af8c31bfe1cd9e8%26vt%3Df8a792e71850ad045af8c31bfe1cd9e7%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Tue, 27 Jan 2026 13:53:29 GMT; HttpOnly; Secure
ts_c=vr%3Df8a792e71850ad045af8c31bfe1cd9e8%26vt%3Df8a792e71850ad045af8c31bfe1cd9e7; Path=/; Domain=paypal.com; Expires=Tue, 27 Jan 2026 13:53:29 GMT; Secure
traceparent: 00-0000000000000000000f576275863b9d-9118e91c7e3555ed-01
x-content-type-options: nosniff
dc: ccg11-origin-www-1.paypal.com
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Sat, 28 Jan 2023 13:53:29 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220094-HHN, cache-bma1622-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674914010.750864,VS0,VE222
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
X-Firefox-Spdy: h2
greencash.it/scripts/readyprolibrary.min94.js?lang=it
80.88.86.102200 OK 0 B URL HTTP/2 greencash.it/scripts/readyprolibrary.min94.js?lang=it
IP 80.88.86.102:0
Analyzer Verdict Alert fortinet Malware
GET /scripts/readyprolibrary.min94.js?lang=it HTTP/1.1
Host: greencash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Cookie: ASPSESSIONIDCGRBRSQQ=BACKGJCCBJGDPJHGJGKMDIBG
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=1728000
content-type: application/javascript
content-encoding: br
last-modified: Tue, 03 Jan 2023 08:53:13 GMT
accept-ranges: bytes
etag: "b43ee8cf501fd91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-powered-by-plesk: PleskWin
date: Sat, 28 Jan 2023 13:53:28 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;700&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:wght@300;400;700&display=swap
IP 142.250.74.106:0
GET /css2?family=Montserrat:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://greencash.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 13:53:28 GMT
date: Sat, 28 Jan 2023 13:53:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2