web.info.app.79-137-206-206.cprapid.com/it
79.137.206.206301 Moved Permanently 259 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b554933ee25cbfa2e9dd326d8f71f6b7
4b662aded230832ca4bb473ef1cc84ffe0508d5a
b98ac597dc34beef00f511839e7e5a2921cee5a3a5432e2d1f6d4aba82bd186b
Analyzer Verdict Alert openphish Poste Italiane S.p.A
fortinet Phishing
quad9 Sinkholed
GET /it HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Wed, 29 Mar 2023 02:29:51 GMT
Server: Apache
Location: https://web.info.app.79-137-206-206.cprapid.com/it/
Content-Length: 259
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6925
Expires: Wed, 29 Mar 2023 04:25:16 GMT
Date: Wed, 29 Mar 2023 02:29:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2762
Expires: Wed, 29 Mar 2023 03:15:53 GMT
Date: Wed, 29 Mar 2023 02:29:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 29 Mar 2023 02:15:53 GMT
content-type: application/json
age: 838
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3074
Expires: Wed, 29 Mar 2023 03:21:05 GMT
Date: Wed, 29 Mar 2023 02:29:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UPwE/lEgpL33Q5lkSXWTYeJc3kTGvwZtG5uTQ0+FJ0oFDzKsjKdiFB1RBbJcBnoCZ3IRxDTMtww=
x-amz-request-id: C9FDSPDVS3J8PPF5
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 29 Mar 2023 02:02:17 GMT
age: 1654
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
web.info.app.79-137-206-206.cprapid.com/it/
79.137.206.206200 OK 30 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 0030f6836ce07235b484941a1bcd53b6
fbf13b6ec95c566ecbf01b3eb9e8df7e503e6b09
3c7a5bbd7079fd2a3eec33ea828a783d301c76ff5231fb368405adf35dc260b1
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/ HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:51 GMT
Server: Apache
Set-Cookie: COOKIE_KEY=168005699189; expires=Sat, 26-Mar-2033 02:29:51 GMT; Max-Age=315360000
COOKIE_KEY=168005699143; expires=Sat, 26-Mar-2033 02:29:51 GMT; Max-Age=315360000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:29:51 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/owl.carousel.css
79.137.206.206200 OK 4.6 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/owl.carousel.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash b51416af9e8adbe3d16f5f2526aba221
097c8d67412f44534449ed4cadc6dd22b025801d
dd7b97c7ad9d7b3eb79bdc728bcbc6a7ab8e3d5db0421fb0dd16d34f3dc88277
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/owl.carousel.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 4614
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
79.137.206.206200 OK 416 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash a00dda3f91b12b16ef9736f89c1d5042
0ad4a038ed350f7a4bbb738849f876eeced6c1d3
0da7a1b970b5c8e4c5f781761450c034462288a375d5c189f7e90027207f3524
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/base.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 416
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/retina.css
79.137.206.206200 OK 115 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/retina.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash ee5d2b27eb8a486f46909f007cd2c3bc
f1b58d02621607b7cbe1c775a5c04572fd2859ce
63ae9fac5779ea8db4b2bf9adebfb54f5651b105e4a935b3f4c42308e3ab8557
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/retina.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 115
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/css/bootstrap.min.css
79.137.206.206200 OK 122 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/css/bootstrap.min.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (64985)
Size 122 kB (122291 bytes)
Hash 6181a38a601eb664522623bae7db95c9
9671b5fc92e27a915769b59bc60bf26fde343d7e
8b922a249c9f81562d99eee24407bf38c7feac74a10dfe712292c0b032144dfa
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 122291
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/megamenu-pi.css
79.137.206.206200 OK 26 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/megamenu-pi.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash 91a45dd5d6409bb0a5db3104a2f6c543
933b6e5b6acac709ff1e36d52135bf819df48507
89c0e53575ae03072f5b2a9d587c1611bad7a22090382318c391756dcf6e812c
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/megamenu-pi.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 26357
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/poste-it.js
79.137.206.206200 OK 5.6 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/poste-it.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (326)
Hash 11ed8d787ab28bb7faad321627cbf050
a82e0d6e34c4c166a1d0eb05907cbca2db830886
ee466faaa33a9e0c8786659f3a54c09fb056815dac6059867937a31797fa7929
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/poste-it.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 5588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/megamenu-pi.js
79.137.206.206200 OK 14 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/megamenu-pi.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash 250bfa1bdb9cc3ed6b8a48a5f2281784
092938daea2f1352513f18a21e27d4a9860bc31f
c5d5b2ba0288caa7178d3999dd5478ab6c9d2f6528ee421fa0af724cb8c94035
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/megamenu-pi.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 14476
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/utilita.js
79.137.206.206200 OK 14 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/utilita.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (534)
Hash 15e270138da3a46ed6a82f192fa0cf5c
86f7a03b47e1d63a8b5aecdb15be546aa7ec057a
ca9c7a3760bf9bf10d8386938fdce15b4327a4158bd836a446c2d4af3aa2d88d
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/utilita.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 13994
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/scroll-pi.js
79.137.206.206200 OK 7.5 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/scroll-pi.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash 1019dc04b5f21a58f899ef6a5c0391d3
b39e7c8581a6b06a46911b64dbd1e81472971b62
e40c7597c5edee3bddede5398bfa7a3a25acd5e081138da68da133eb4ea8b822
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/scroll-pi.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 7538
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js
79.137.206.206200 OK 8.9 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type exported SGML document, ASCII text, with very long lines (8423)
Hash 0cef027039bf8251fa53f22336981780
02f550f2117d54683191a964e0b54f3c253bb1b3
ce237a2bc80dd06901d9d66d3d6fd1a634157389d2daeabb377caab879ce3a02
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 8885
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.min.js
79.137.206.206200 OK 97 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.min.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (32077)
Hash 4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/jquery.min.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 97163
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js
79.137.206.206200 OK 7.8 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (7687)
Hash 74ee4c679b03074b55a1da9bbbe29cf5
745701d8ab39733f989313a5747c54cf3248eb5b
5c2f6c5d5cd0fe0ecfa24b844f841c8a73d8baaafb827ec413afa41335aa1c47
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 7784
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/stili/custom-form-element.css
79.137.206.206200 OK 18 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/stili/custom-form-element.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (376)
Hash eb65c2ea5d0082591243aee8425d4eff
a5adf6ce96c015f865a93d54b930cdfd5c6c669a
2213c377877c722511173afad5794c4ca2fce629c79d26a4df200fc4ab3f06f3
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/applicazioni/trasversali/stili/custom-form-element.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 18280
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/slick.min.js
79.137.206.206200 OK 42 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/slick.min.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (32076)
Hash 14c2e83236ae603c42164f30103634c6
1b2bad348d7fb92022c2218882242ee6223b46b6
6fa18ab0db86897ea250d65eda6233b1533fdf7f94c9d44a6af2ee16af8242ab
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/slick.min.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 41953
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js
79.137.206.206200 OK 3.0 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash 9aa07ea97efef38c156c5065ec6b040e
3d25ced0d2bbac415a0f583f54bc270b7b051a45
9bdd42402354335825af6f1b45bb83f645c16199d4bc7ee5f428efb3dbfef811
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 2983
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/posteID/x-jod-poste-id.js
79.137.206.206200 OK 3.8 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/posteID/x-jod-poste-id.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with CRLF line terminators
Hash fec7eb85618cb63c3fb5b3efee61d2b2
9c120ed394fa9ddf75062361fc00c073d3ace5aa
12359170db0ece19b214a4f15092e82199ca7b179bc8ef4ffa722918f4623b46
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/jod-fcc/posteID/x-jod-poste-id.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 3812
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/hashtable.js
79.137.206.206200 OK 14 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/hashtable.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with CRLF line terminators
Hash f47c9a2aad50eddc384597280522f86a
73500eb3a7b9c96d0b6f075bc7a742dfe014a2a1
138143108101149f64bcda5fe38cdd2f3f2139cc957b45949e71fac33ea94482
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/jod-fcc/resources/portal/js-rsa-2/hashtable.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 14081
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-polling/jdpolling.js
79.137.206.206404 Not Found 315 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-polling/jdpolling.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/jod-fcc/resources/portal/js-polling/jdpolling.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/start-script.js
79.137.206.206200 OK 23 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/start-script.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type Unicode text, UTF-8 text, with very long lines (306)
Hash ed56f6a18269e8a0626db5de25f3f657
c850fa6c06893edb1926db33bf7d13971f6e2ad5
4d43fc9cc16f5907f1a85777ae1e40d4e520a10302c424c505325723b64ea160
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/javascript/start-script.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 22866
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js
79.137.206.206200 OK 694 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash b5a0dd7ce1f7c1c6b80b5abe13308dd2
6cc4835430ac4ba8845fd02efdb5688166a5ed8a
ce01c41255d7e61cc44e865184559085737a98cf6911ef67f915692152b88852
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 694
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js
79.137.206.206200 OK 2.9 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (597), with CRLF line terminators
Hash 03aea05809bf32353408cb78cdf40f08
5bfe199b18c64b584d8bc98308c769c8e32b331a
9b8d058f857c6ca7f7d4c0ef2e800c6884d6a89bb52cb294774505d1d3c7283b
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 2915
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/typography.css
79.137.206.206200 OK 5.1 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/typography.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type assembler source, ASCII text
Hash 9bc1f2ccabef97230a29e52bb7d71e2e
c2cc92960a2674ffa0c8d32b2133e596b3613630
2a96cd832563fdde56f4c71a663dd68bd9202eeed6a4c2c525e3275e4e68be06
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/typography.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 5123
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/spaces.css
79.137.206.206200 OK 30 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/spaces.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash a0339ef2039b90034b16e341e508b5e8
dab67a84e5a8228a6f9ed90f05b8a7b983912b3c
9fb634a5bbfbee4fc2503595fa18a98142ca8cf0bb29984d065edfeef0006bdd
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/spaces.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 29954
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/alignment.css
79.137.206.206200 OK 2.7 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/alignment.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type assembler source, ASCII text
Hash 2b774691bee7183287e841ed3287c1c1
bb03284b1ee77d718adee2286f8ce20e42f0e9c6
8d4821ff1de6348bb012672849a8205eb9833edde9b1e417f2fa5365261c08bf
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/alignment.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/extra.css
79.137.206.206200 OK 5.0 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/extra.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash 6845e4602367a2454bf3a8aa15d014a6
841e011124cb8f568f3c2d8bfcb3013ea6f042fd
dc4a581b65b22475fbb99580954525d488986dc35b37b19310d30a0598a32fde
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/extra.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 4991
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/rsa.js
79.137.206.206200 OK 39 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/rsa.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (2059), with CRLF line terminators
Hash 5791e2f173300646df45d5698867dc27
b28280fcfccd6891e88d912834062ee18e9f7333
a8e90848cdc80b7134da128a50574ec9f913f947ce72a769d392177eb8647377
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/jod-fcc/resources/portal/js-rsa-2/rsa.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 39372
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
79.137.206.206200 OK 4.5 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Hash c26ff7c37210341d690599a8a2310737
3127758f8fcf89472099f6963b90464cbe3b01b9
f4e596fd7ef88f965cc4df8dd6895f65cbdb0d2f49e58bfc5c4832675318ddc0
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/fonts.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 4511
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
assets.adobedtm.com/launch-EN592261e36dc14b10a9936e854a4b30db.min.js
2.18.172.233200 OK 69 kB URL HTTP/2 assets.adobedtm.com/launch-EN592261e36dc14b10a9936e854a4b30db.min.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (32752)
Hash 9354a7710f76838dc3644ed951bf4884
5dfe028d35cb82a16fe22e7bff8e99b93db3c1c8
6ad4935bb853cdffa6bf85c91ec5964ece753dd8a99b45765929ab086fd2323a
GET /launch-EN592261e36dc14b10a9936e854a4b30db.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "20afcb2cf43d28f3f0bc402927850f64:1680021957.317596"
last-modified: Tue, 28 Mar 2023 16:45:57 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 68683
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:29:52 GMT
date: Wed, 29 Mar 2023 02:29:52 GMT
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base-element.css
79.137.206.206200 OK 214 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base-element.css
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Size 214 kB (213450 bytes)
Hash f938de6880813c3c7b2a30b28a6c0da8
19d93950a34345d83dfc8096214d6082c2d6706a
1f615511776a12840fb4cccea90ef49bc3c6bc0d430932bd6f219e82e13c025b
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/base-element.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 213450
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
ocsp.globalsign.com/gsrsaovsslca2018
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.130.133:0
Hash 9948f394552bf176f176e31e65310c65
d725e5c5fed66de7ea72ab2f48cc28f50e5d64a6
fb756ee88243eb9309208fb6a4177490759d149490474a38ec03352712c93900
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 02 Apr 2023 02:29:51 GMT
ETag: "d725e5c5fed66de7ea72ab2f48cc28f50e5d64a6"
Last-Modified: Wed, 29 Mar 2023 02:29:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 29 Mar 2023 02:29:52 GMT
Age: 0
X-Served-By: cache-qpg1263-QPG, cache-bma1625-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1680056993.500494,VS0,VE203
ocsp.globalsign.com/gsrsaovsslca2018
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.130.133:0
Hash 9948f394552bf176f176e31e65310c65
d725e5c5fed66de7ea72ab2f48cc28f50e5d64a6
fb756ee88243eb9309208fb6a4177490759d149490474a38ec03352712c93900
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 02 Apr 2023 02:29:51 GMT
ETag: "d725e5c5fed66de7ea72ab2f48cc28f50e5d64a6"
Last-Modified: Wed, 29 Mar 2023 02:29:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 29 Mar 2023 02:29:52 GMT
Age: 0
X-Served-By: cache-qpg1263-QPG, cache-bma1675-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1680056993.500377,VS0,VE203
www.poste.it/bowser.js
13.107.237.61200 OK 17 kB IP 13.107.237.61:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 971b649748eb819a7f4c8cdc4805376c
f520540daa055e999dd6599e6e7e9f977899a8f6
61e2728bce5b153ccca7fd7ffe0a98a29dbfb0218300a39dd0cf0535635683f2
GET /bowser.js HTTP/1.1
Host: www.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=3600,public
pragma: public
content-length: 16647
content-type: application/javascript
expires: Wed, 29 Mar 2023 03:29:52 GMT
last-modified: Wed, 20 Oct 2021 13:58:32 GMT
accept-ranges: bytes
etag: "61702088-4107"
x-cache: CONFIG_NOCACHE
mylocation: TORINO
x-azure-ref: 0oKIjZAAAAACE5DE2RK9xRJjzO1LykOYnU1ZHMjBFREdFMDYwOABiZWE0YWQ2MS1kNWI2LTRmYmYtOWYyMC04NzJlNzI1N2U1NmE=
date: Wed, 29 Mar 2023 02:29:52 GMT
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Retry-After, ETag, Content-Length, Content-Type, Backoff, Pragma, Expires, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 29 Mar 2023 02:14:36 GMT
age: 916
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
web.info.app.79-137-206-206.cprapid.com/it/.jod-fcc/qrr.png
79.137.206.206404 Not Found 315 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/.jod-fcc/qrr.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert quad9 Sinkholed
GET /it/.jod-fcc/qrr.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/ico-pp.png
79.137.206.206200 OK 3.0 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/ico-pp.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type PNG image data, 45 x 44, 8-bit/color RGB, non-interlaced\012- data
Hash b58f05ef3e25628af63aca1f633afef2
ed29c9437597aed2c13291305a262d03684d8910
068347897472440f46e706b2d61c77ec861e2facb34b567e2e2c851ae1bc4dea
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt_ext/icone/ico-pp.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 2957
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/ico-bp.png
79.137.206.206200 OK 3.5 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/ico-bp.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type PNG image data, 45 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d96bc9b08477815ed8655ced98af0ac
04b6fa972775456746a7cfeba72f3878cf904183
d7f9c88c4f19de13e5ef1040c08cd72970808301de221e2ea7acfc71bf802cc1
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt_ext/icone/ico-bp.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 3511
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/small-modal-ico-bp-pp.png
79.137.206.206200 OK 13 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/small-modal-ico-bp-pp.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type PNG image data, 132 x 132, 8-bit/color RGBA, non-interlaced\012- data
Hash 22e37aed1a37a4d10a2c011e969a1337
05d054f563899fffd3ffd4f5cba486c5273d17d9
d4a66d846de1a39c49b3d03f1c4c4d21cd9f5436f362b7a72fd2eb773f6cfaca
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt_ext/icone/small-modal-ico-bp-pp.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 12995
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/empty-profile.png
79.137.206.206404 Not Found 315 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/empty-profile.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt_ext/icone/empty-profile.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.info.app.79-137-206-206.cprapid.com/it/.jod-fcc/qrr.png
79.137.206.206404 Not Found 315 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/.jod-fcc/qrr.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert quad9 Sinkholed
GET /it/.jod-fcc/qrr.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.poste.it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png
13.107.237.61200 OK 5.0 kB URL HTTP/2 www.poste.it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png
IP 13.107.237.61:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 110 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e9962a2babbe39b3725e2a13d7b233d
e67105271b1076016a630071a3a231e0084e96ed
ccb7ecb1eadb470600c66ed9548f5dd49cfbbbd67eb34f9d4437eeec55c69212
GET /risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png HTTP/1.1
Host: www.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600,public
pragma: public
content-length: 4959
content-type: image/png
expires: Wed, 29 Mar 2023 03:29:52 GMT
last-modified: Wed, 21 Dec 2022 14:55:14 GMT
accept-ranges: bytes
etag: "63a31e52-135f"
x-cache: CONFIG_NOCACHE
mylocation: TORINO
x-azure-ref: 0oKIjZAAAAACsNngIe5SPS4bwsa2ThQSaU1ZHMjBFREdFMDYwOABiZWE0YWQ2MS1kNWI2LTRmYmYtOWYyMC04NzJlNzI1N2U1NmE=
date: Wed, 29 Mar 2023 02:29:52 GMT
X-Firefox-Spdy: h2
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png
79.137.206.206404 Not Found 315 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/empty-profile.png
79.137.206.206404 Not Found 315 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/empty-profile.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt_ext/icone/empty-profile.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png
79.137.206.206404 Not Found 315 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base-element.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/immagini/eye.png
79.137.206.206200 OK 645 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/immagini/eye.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type PNG image data, 24 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 5dfd11f759177ca66df6bfb649fa131c
8151b051d99d5988a9761adcc40089bfb20f5576
5931ba755c44c364f074f95a904536fb4076da4e44c811a1934c5fff735c39c4
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/applicazioni/trasversali/immagini/eye.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 645
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/bg-qrcode.png
79.137.206.206200 OK 5.3 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/bg-qrcode.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type PNG image data, 624 x 210, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ed242012ee510aca41b30408eb02cc7
957fd32bcb5bc79b1f6e7795e2c6a6444dc462f0
bf6bcbcf84ff0f18c4110fa868c29ff14aef2458be49afd0ffe37e5f9cd74950
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt_ext/icone/bg-qrcode.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 5348
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff
79.137.206.206200 OK 32 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Hash 8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 32376
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff
79.137.206.206200 OK 32 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type Web Open Font Format, TrueType, length 31976, version 1.0\012- data
Hash dcdd69e7910e57b0adc381e0fcf93e3e
21fd668706b3cd97f1b5df0c61ac4b05ab0bdf29
e3e914fafd966522cc6e0db2355a72202ece3052e768b0e34d05bdc4d26bf489
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 31976
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff
79.137.206.206200 OK 32 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type Web Open Font Format, TrueType, length 32412, version 1.0\012- data
Hash e49b4a99e99a162382c9135468cdff61
6fe7b52d7195d20e9d8ad05d4068dd87ddaeff76
0fa4aee030662ed700dc5cb2e13e52b85fb1254a195d9ab0a1a10d79e645c8f8
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 32412
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff
79.137.206.206200 OK 33 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type Web Open Font Format, TrueType, length 32756, version 1.0\012- data
Hash ddcb123ab58089ce07fa2d0e767decc4
b6bdcb18d6e6c3a28a40a041324001c794375c85
98a9f23066501d2b1676f72a2feb355caa114d4dffce7bae927083af92ccd6c9
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 32756
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da5340ee69a1000f751686df9e716663
a5da880a61ed119790a7990bbdcc0c97eecf04f2
d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9374
Expires: Wed, 29 Mar 2023 05:06:07 GMT
Date: Wed, 29 Mar 2023 02:29:53 GMT
Connection: keep-alive
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/generiche/spinner_giallo.gif
79.137.206.206200 OK 34 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/generiche/spinner_giallo.gif
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type GIF image data, version 89a, 150 x 150\012- data
Hash 442d51dab3205cf4c81de67e4bafdbda
52726f8f87116bd1fd03e9d99c0bb22afd168937
ea638c8244c7a5cc50e617807b1fc35637430f976e8210ef3d560a5eb059e5f5
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/immagini/generiche/spinner_giallo.gif HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 33869
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/gif
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png
79.137.206.206200 OK 7.3 kB URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type PNG image data, 388 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f334889f79c8a60aca123b6f0e77cd6
b24faf71ad0f3fdb6228e8c101190aafa12b9216
f73f55b1729c6267bf5137b3de7a4e3a842780a87d7a918e878ff63437bb6a87
Analyzer Verdict Alert quad9 Sinkholed
GET /it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 7296
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js
2.18.172.233200 OK 12 kB URL HTTP/2 assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (32717)
Hash 9edbefe8919a34cc9ec5343e49caf90d
9e8f2b92a35df8e01814e558d10248a928ea2504
c276e66ee697edfb8fbe70a13d6cb8498b21fb998d10d6faaf3999f34f5525cc
GET /extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "dfdd9e1f988805f0c2fbb10cd6b8f034:1663863409.614694"
last-modified: Thu, 22 Sep 2022 16:16:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12384
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
cache-control: no-cache
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js
2.18.172.233200 OK 1.6 kB URL HTTP/2 assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (3138)
Hash dbb5211703cf7696d634360cc8874fa7
9231e7ebe8096b629c9ac522e41f8c2a8013db99
535a218392da01549f9fd640908f59c213e809c2db778c36094e3a84959106df
GET /extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "b89fcb8870ac40eecb6d3cc844d35389:1663863409.92483"
last-modified: Thu, 22 Sep 2022 16:16:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1598
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
cache-control: no-cache
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js
2.18.172.233200 OK 1.2 kB URL HTTP/2 assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (2795)
Hash 3e5794c992c494516715a39bc11e012d
4d44566450e03c3bff475a4144ac20eb7d61e80e
fd268baed92029190606820e809ab439b96df04b14159ae63fcaf27631bc2038
GET /4d622ce80bd2/66013fe91d66/80a0b49044a5/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d0124e848cae409573428204d12cc15a:1680021958.018754"
last-modified: Tue, 28 Mar 2023 16:45:58 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1209
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCce78d2ba79364101b982bf481cca240c-source.min.js
2.18.172.233200 OK 1.1 kB URL HTTP/2 assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCce78d2ba79364101b982bf481cca240c-source.min.js
IP 2.18.172.233:0
File type ASCII text, with very long lines (3366)
Hash f8d88c907bf3fef0e113cb4805ccb8bf
05e1fed243d236e517e678fab692fbb5488d6edf
a1566f05c0e95af9553c8a5540a8e48f3e98b06fe92c478c45f388f9d8926569
GET /4d622ce80bd2/66013fe91d66/80a0b49044a5/RCce78d2ba79364101b982bf481cca240c-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d0124e848cae409573428204d12cc15a:1680021958.018754"
last-modified: Tue, 28 Mar 2023 16:45:58 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1104
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCace12870bc974581b26b193857913875-source.min.js
2.18.172.233200 OK 1.1 kB URL HTTP/2 assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCace12870bc974581b26b193857913875-source.min.js
IP 2.18.172.233:0
File type HTML document, ASCII text, with very long lines (3225)
Hash 140209fd0e08fdad73a4ffb228f7a67c
d9b99212cc84395d7e48e1663126f5b4bb1aaa3d
52be6b1834cb22e73cf55ff6ba17fb0044b107a17f21179c9bc19cd808a7daea
GET /4d622ce80bd2/66013fe91d66/80a0b49044a5/RCace12870bc974581b26b193857913875-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d0124e848cae409573428204d12cc15a:1680021958.018754"
last-modified: Tue, 28 Mar 2023 16:45:58 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1072
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.183.113101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.183.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /ZcKcB/c2I7aRDSIN7Vv/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JvF9ftC4YfWoH7NP7BVJHDJ7BiY=
web.info.app.79-137-206-206.cprapid.com/favicon.ico
79.137.206.206404 Not Found 315 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/favicon.ico
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: s_fid=0E3E8B284498C453-34D8E828EAE47581; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.globalsign.com/gsrsaovsslca2018
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.130.133:0
Hash df22acbfbc28e1c4415fadeef3517e29
a182037ca00cd2621fb50e50bebe71244c8ae685
778d205887a163c046d6f639e5e5aa17f1d0e41380f607c162b6419d53e3f872
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 01 Apr 2023 23:07:02 GMT
ETag: "a182037ca00cd2621fb50e50bebe71244c8ae685"
Last-Modified: Tue, 28 Mar 2023 23:07:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 29 Mar 2023 02:29:53 GMT
Age: 1900
X-Served-By: cache-qpg1223-QPG, cache-bma1625-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 2, 0
X-Timer: S1680056993.268056,VS0,VE202
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 1f8a73bd24166648157435f1ff278007
2e5e2a76165a95eb165f785e40ab431426138053
5217a8a210c479a003a68b350e06f6ed745373aa0c2db4fde166c2f785ce7646
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1904
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:29:53 GMT
Etag: "6422c904-1d7"
Last-Modified: Wed, 29 Mar 2023 01:58:10 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221680048079765%22
35.241.9.150200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221680048079765%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (22067), with no line terminators
Hash 27dc9fb04a49e79392b7455f58a4b0ac
55a0eab0a375a788d10860095f30b46d3e1e488f
5f3e199f3543f3f8ad72394d66d3127f9e2c88e086fbffff7ae50dd33fa5a34d
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221680048079765%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 22067
via: 1.1 google
date: Wed, 29 Mar 2023 02:02:05 GMT
age: 1668
last-modified: Wed, 29 Mar 2023 00:01:19 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.125.10302 Found 0 B URL HTTP/2 posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.125.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: posteitalianespa.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
access-control-allow-origin: *
vary: Origin
date: Wed, 29 Mar 2023 02:29:53 GMT
content-type: text/plain;charset=utf-8
expires: Tue, 28 Mar 2023 02:29:53 GMT
last-modified: Thu, 30 Mar 2023 02:29:53 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_oplkzx7Eoo1pizmx7Ess1oplkz1vkx7Esvx7Eqz=[CS]v4|0-0|6423A2A1[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Fri, 28 Mar 2025 02:29:29 GMT; SameSite=None; Secure
location: https://posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&pccr=true&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
content-length: 0
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
widget.poste.it/js/custom.js
62.241.5.94200 OK 32 kB URL HTTP/1.1 widget.poste.it/js/custom.js
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type HTML document, Unicode text, UTF-8 text, with very long lines (306)
Hash dc35b5976f8b2106a89786489b8a87e1
ae5cabe43e1f9570846e0637a588ec98f0f85474
16edb4295206702d8074c76a6193a7fbff0e51ee0d335442734e0c2b5bff7edd
GET /js/custom.js HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:50 GMT
ETag: "7b5d-5f5ffbffc4580"
Accept-Ranges: bytes
Content-Length: 31581
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=34
Connection: Keep-Alive
Content-Type: application/javascript
posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&pccr=true&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.125.10200 OK 43 B URL HTTP/2 posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&pccr=true&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.125.10:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&pccr=true&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: posteitalianespa.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 29 Mar 2023 02:29:53 GMT
expires: Tue, 28 Mar 2023 02:29:53 GMT
last-modified: Thu, 30 Mar 2023 02:29:53 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_oplkzx7Eoo1pizmx7Ess1oplkz1vkx7Esvx7Eqz=[CS]v4|E3E8B284498C453-34D8E828EAE47581|0[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Fri, 28 Mar 2025 02:29:29 GMT; SameSite=None; Secure
etag: 3607894921172549632-4619628966114506870
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
widget.poste.it/json/widgetLabels.json
62.241.5.94200 OK 7.1 kB URL HTTP/1.1 widget.poste.it/json/widgetLabels.json
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type JSON data\012- , Unicode text, UTF-8 text, with CRLF line terminators
Hash f6bcc872c62240d4339b14acdb952341
2a14c8c5c5513ba23351a67ae1a6f23f95626a23
5dee78278049e1a73e771b2ea7b4d3cbf89f71a2e6c535e07e45ff392cb89fa4
POST /json/widgetLabels.json HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "1bd5-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 7125
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=86
Connection: Keep-Alive
Content-Type: application/json
whos.amung.us/pingjs/?k=c6hn8dsrid&t=Accedi%20o%20Registrati&c=d&x=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&y=&a=0&v=27&r=1756
104.22.75.171200 OK 6.9 kB URL HTTP/2 whos.amung.us/pingjs/?k=c6hn8dsrid&t=Accedi%20o%20Registrati&c=d&x=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&y=&a=0&v=27&r=1756
IP 104.22.75.171:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (631)
Hash cef08af14f9caf1554d2e57c15ad85ed
8d53c5844e9acb504fa8c1fe3056a76ee486223e
030533d08fe039ad008d1ecb14b86713a868f63f2bd626daa0d9e6e25d69ca58
GET /pingjs/?k=c6hn8dsrid&t=Accedi%20o%20Registrati&c=d&x=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&y=&a=0&v=27&r=1756 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:29:53 GMT
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7af4b01118742d63-ARN
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14857
Expires: Wed, 29 Mar 2023 06:37:31 GMT
Date: Wed, 29 Mar 2023 02:29:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14857
Expires: Wed, 29 Mar 2023 06:37:31 GMT
Date: Wed, 29 Mar 2023 02:29:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2c8db4c7fb7a75c469208510007edef
7d4f86b02d0f30ff44453f3fb5ae2704895e92a3
f923d651ca0e6481a2819b891c546f84c3d3b6ae86a14c94ca8050c2b6c412d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7017
x-amzn-requestid: 8f686bb3-a4ad-4d2f-b947-5e6b83cb24f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CWnNqG49oAMFxKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f5257-4f5c982f03e2f15b16c6bebd;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 19:58:15 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Xj27okGEgDh6N9CuQySGMs4g_OApIelvOqQrAHlFyAaaFxF1UbHmCQ==
via: 1.1 b6cdb2111444305bd4957a473b711ad6.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 00:25:05 GMT
age: 40589
etag: "7d4f86b02d0f30ff44453f3fb5ae2704895e92a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 096bf7a8a2bfe48c19e6bf6887145e64
6193039864cae4ab0163f3a7d45613fb86e6be14
51625131b04aa5294e90062807ca728b7a41db79ea069cd238711f8ead5ecd8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7630
x-amzn-requestid: 5f162d03-0d82-4cd6-8812-4dac159bc2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY9HwhIAMFeOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-670279397929c69c0ee58b35;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: LBOtzCZ-Ef7MsXDj9uh8QSi4jdLTSR3lEtZqRrU6ldmCZVqvpoAQmw==
via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:43:57 GMT
age: 17157
etag: "6193039864cae4ab0163f3a7d45613fb86e6be14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11a3ec10ceec6a8147a4c173b4b420d7
9fe904e5f3062677c6290b821c89a7e3aaee0371
ce934631eda7670329b9bc46a14eff0dd9839bdc838ad90d401600bee70c4f4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11027
x-amzn-requestid: 48f65bca-a792-4f2c-8eb4-d05c6dc2c2e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CXODXE7eoAMFl3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f907b-6a5a7a890aa383fc4e0eb983;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 00:23:23 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qeit17u4hnY6-u4djG8q98cqMH0bj5wwWQxczrjTN02iB3tQ8nq5MQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 14:23:50 GMT
age: 43564
etag: "9fe904e5f3062677c6290b821c89a7e3aaee0371"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: FHONNj6M7I5oVTKAKYspq0ZAJMYohURXs5ufSL-r--zCSdjuSvrpSA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:51:37 GMT
age: 16697
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 253f48aa7cbf667d52cb37fda10cdb1f
e29478b866f90402b48d2b516d01d60a863c9cf9
b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CgvBFFMGIAMFhCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: -XwoHom5AT8j5yHNvfnYQ-9xIqVpsyDffwFM0d_ESJicJvL8pTcABg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:50:28 GMT
age: 16766
etag: "e29478b866f90402b48d2b516d01d60a863c9cf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e8842db-211d-4276-b788-ef1e9cb5f3f2.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e8842db-211d-4276-b788-ef1e9cb5f3f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c59a4159472f366958e67dc928b2a749
0c483adeebf10605e954c55e94c3f43bf1dace30
8fe24cee6c4ee94547e8721448fbdcbd0ab6a38de924d62e00ee6310a1cdfe4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e8842db-211d-4276-b788-ef1e9cb5f3f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7053
x-amzn-requestid: 2fc4b1ec-6550-4e18-8374-4f174b081f40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguaOHC-IAMFUYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dda-1e21707f0ceb33ff63afb449;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:26 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: olz0Fnxykdz9uh4RfYsf3wQahJCrqAUJc2pt7rTwFNqKGXZ6WBewBg==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 22:01:51 GMT
age: 16083
etag: "0c483adeebf10605e954c55e94c3f43bf1dace30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&t=Accedi%20o%20Registrati
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&t=Accedi%20o%20Registrati
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&t=Accedi%20o%20Registrati HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 29 Mar 2023 02:29:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5198841d99bbca771107a14e9d7825c2
147f46dc5080f9aa7ae8878cc71eb2a8730583a9
28643a3c710bf8246ca43c73b91fef78d4d951474f73ae13f6847b5a5729c53a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 23:45:36 GMT
Expires: Sat, 01 Apr 2023 23:45:35 GMT
Etag: "147f46dc5080f9aa7ae8878cc71eb2a8730583a9"
Cache-Control: max-age=335140,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af4b017fe89b50c-OSL
de.tynt.com/deb/v2?id=w!c6hn8dsrid&dn=TC&cc=1&r=&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
67.202.105.33200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!c6hn8dsrid&dn=TC&cc=1&r=&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
IP 67.202.105.33:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!c6hn8dsrid&dn=TC&cc=1&r=&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Thu, 30 Mar 2023 02:29:54 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA, Sec-CH-UA-Mobile
content-type: application/javascript
content-length: 4
date: Wed, 29 Mar 2023 02:29:54 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 29 Mar 2023 02:29:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
api.ipify.org/
173.231.16.76200 OK 12 B IP 173.231.16.76:0
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET / HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
content-type: text/plain
date: Wed, 29 Mar 2023 02:29:54 GMT
vary: Origin
content-length: 12
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 29 Mar 2023 02:29:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
widget.poste.it/fonts/Texta-Black.woff
62.241.5.94200 OK 33 kB URL HTTP/1.1 widget.poste.it/fonts/Texta-Black.woff
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type Web Open Font Format, TrueType, length 33140, version 1.0\012- data
Hash bb38c2004fb8284b41ab208428f57e57
eede479ce3535e6dd33934e677de0b7224ce31c4
3d4a9402bef6028217f3f4279e7f6c4bb9af9bfce7786eac52d3a5d0065a27af
POST /fonts/Texta-Black.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "8174-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 33140
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=82
Connection: Keep-Alive
Content-Type: application/font-woff
ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 29 Mar 2023 02:29:55 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
widget.poste.it/fonts/Texta-LightItalic.woff
62.241.5.94200 OK 32 kB URL HTTP/1.1 widget.poste.it/fonts/Texta-LightItalic.woff
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type Web Open Font Format, TrueType, length 32084, version 1.0\012- data
Hash 50ff911beaeaea06a186cbe72898ea42
610aa069b2987d6fbbf46c456f177ced1aa49a57
91509bd0e2ed20655b4cbbf585f5587a1a1cc282291dd56d7821881699757971
POST /fonts/Texta-LightItalic.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7d54-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32084
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=81
Connection: Keep-Alive
Content-Type: application/font-woff
widget.poste.it/fonts/Texta-Regular.woff
62.241.5.94200 OK 32 kB URL HTTP/1.1 widget.poste.it/fonts/Texta-Regular.woff
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Hash 8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2
POST /fonts/Texta-Regular.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7e78-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32376
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=80
Connection: Keep-Alive
Content-Type: application/font-woff
widget.poste.it/css/chat_custom.css
62.241.5.94200 OK 1.8 kB URL HTTP/1.1 widget.poste.it/css/chat_custom.css
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type ASCII text, with CRLF line terminators
Hash b5630f2b6ef609755051582891d6f95f
ff9df70fc8ca0653c0fade1e7e062813785d5cec
0c4b8459c2b949886ae64971a9d3f2555b680dd1c1fa36a0b42dbca2a21bd053
GET /css/chat_custom.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "715-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 1813
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=20
Connection: Keep-Alive
Content-Type: text/css
widget.poste.it/css/chat_common.css
62.241.5.94200 OK 12 kB URL HTTP/1.1 widget.poste.it/css/chat_common.css
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type ASCII text, with CRLF line terminators
Hash 76f9060cb105221022b473277418b467
e2bfcc835a6c8bcf4ceb9e1da7b731591cf6b723
b6343a0f5e0b6b1955a69ca6fb1ef749bbeb18c633e08cff39689d773a0fa53f
GET /css/chat_common.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "2cfc-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 11516
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=17
Connection: Keep-Alive
Content-Type: text/css
widget.poste.it/css/widgets.min.css
62.241.5.94200 OK 118 kB URL HTTP/1.1 widget.poste.it/css/widgets.min.css
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type ASCII text, with very long lines (64898), with CRLF line terminators
Size 118 kB (118490 bytes)
Hash 8a02a55585ef2630988a32645ce68be2
00d11de0e5150cf3d35629f2bc52af00bfce4ee0
f0cf34169482d5d1aa31c2910fea9ad33979b7bf52a1202ab83d3de29843d8a3
GET /css/widgets.min.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "1ceda-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 118490
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=30
Connection: Keep-Alive
Content-Type: text/css
widget.poste.it/js/lib/widgets.min.js
62.241.5.94200 OK 839 kB URL HTTP/1.1 widget.poste.it/js/lib/widgets.min.js
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type ASCII text, with very long lines (64898), with CRLF line terminators
Size 839 kB (839332 bytes)
Hash 82374b6c20855319bda55472e83e82b4
9067439be48ff638c5ff5ef790ce12bc08b21414
18fc4c844d845b1c289d1d1d324ff6e7abf51785619c9a60d9e245b2100c256a
GET /js/lib/widgets.min.js HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "ccea4-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 839332
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=32
Connection: Keep-Alive
Content-Type: application/javascript
widget.poste.it/img/button_openChat.png
62.241.5.94200 OK 20 kB URL HTTP/1.1 widget.poste.it/img/button_openChat.png
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 7305cd2f12691ddda291fb1b21bd4347
5b3f944fc435c3ad74f138942aaf50ff159cbee0
25fbb9e5014408868cbd5d87ac48192ddddcb3b32ca3cdfb8e3efa0ebba2e251
GET /img/button_openChat.png HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.poste.it/css/chat_custom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:56 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "4e8b-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 20107
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=29
Connection: Keep-Alive
Content-Type: image/png
widget.poste.it/fonts/Texta-Regular.woff
62.241.5.94200 OK 32 kB URL HTTP/1.1 widget.poste.it/fonts/Texta-Regular.woff
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Hash 8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2
GET /fonts/Texta-Regular.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://widget.poste.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:56 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7e78-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32376
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=79
Connection: Keep-Alive
Content-Type: application/font-woff
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js
79.137.206.206200 OK 0 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 6831
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
waust.at/d.js
104.26.4.7200 OK 0 B IP 104.26.4.7:0
GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:29:52 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:30 GMT
etag: W/"63c04122-3972"
expires: Thu, 30 Mar 2023 01:50:03 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 2389
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wVDtSsj4lcmo77q9Omq57YLYZnVUhtP%2BxtOlnAcS9A5asKtM2%2B6mUelld6WnkIZv7YNEl5YonR2vr1teABmS2NecVfT5Rusf0zOn3j5KmVjdc7vmdCjTNR6s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4b00ade94b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/bootstrap.js
79.137.206.206200 OK 0 B URL HTTP/1.1 web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/bootstrap.js
IP 79.137.206.206:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /it/risorse_dt/bootstrap/js/bootstrap.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 69214
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
t.dtscout.com/i/?l=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&j=
141.101.120.11200 OK 0 B URL HTTP/2 t.dtscout.com/i/?l=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&j=
IP 141.101.120.11:0
GET /i/?l=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:29:53 GMT
content-type: application/javascript
x-s: ger1
set-cookie: m=1; Domain=dtscout.com; Expires=Wed, 29-Mar-2023 03:53:13 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Wed, 29-Mar-2023 06:29:53 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1680056993; Domain=dtscout.com; Expires=Fri, 07-Jul-2023 02:29:53 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.597
expires: Wed, 29 Mar 2023 02:29:52 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HFTJuYUecz1i5NLa%2BAu5k1vfPFJhfkVRj6J5GCHTQYAQmW6utAaW9Fum7oqBMn2%2B7MXyoh8M5Quy4BOUqf0V1ompEn7rRo3PdguPV3FfAjiWG19DGYAUspCjSroXts0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4b00f18a52e0b-ARN
content-encoding: br
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=web.info.app.79-137-206-206.cprapid.com&_ss=4odw32lrll&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=60l8&_cb=_dtspv.c
141.101.120.11200 OK 0 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=web.info.app.79-137-206-206.cprapid.com&_ss=4odw32lrll&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=60l8&_cb=_dtspv.c
IP 141.101.120.11:0
GET /pv/?_a=v&_h=web.info.app.79-137-206-206.cprapid.com&_ss=4odw32lrll&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=60l8&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Cookie: m=1; oa=1; df=1680056993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:29:53 GMT
content-type: application/javascript
x-t: 0.137
x-c: 0
expires: Wed, 29 Mar 2023 02:29:52 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c0DksWobdR3DEVEa1QpsT6sb%2B%2BlOARKgUMdbpXAFujy99jYbLNZA%2BIkBqyRnq9eH%2BWGB7SGn9EjTmw9lDLRwsab3mBTent%2FzIjRV9gk8S173whVNGctn8t6x0KCgBXM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4b00fc9202e0b-ARN
content-encoding: br
X-Firefox-Spdy: h2