Report - web.info.app.79-137-206-206.cprapid.com/it

Report Overview

Submitted URL
web.info.app.79-137-206-206.cprapid.com/it
IP
79.137.206.206
ASN
#12695 LLC Digital Network
Submitted
2023-03-29 02:30:03
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
150

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-29T05:11:35Z	1.1 kB	6.0 kB	151.101.130.133
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-29T11:45:01Z	341 B	761 B	192.229.221.95
whos.amung.us	12687	2014-04-02T16:27:13Z	2023-03-29T12:52:10Z	506 B	7.1 kB	104.22.75.171
t.dtscout.com	11951	2017-01-30T05:52:42Z	2023-03-29T12:31:47Z	990 B	1.6 kB	141.101.120.11
web.info.app.79-137-206-206.cprapid.com	unknown	2023-03-03T19:59:16Z	2023-03-29T00:44:32Z	26 kB	958 kB	79.137.206.206
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
assets.adobedtm.com	512	2014-01-28T05:51:35Z	2023-03-29T05:44:03Z	2.8 kB	89 kB	2.18.172.233
widget.poste.it	unknown	2019-11-29T21:07:58Z	2023-03-26T00:32:18Z	4.8 kB	1.2 MB	62.241.5.94
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	54 kB	34.120.237.76
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-29T08:59:28Z	340 B	963 B	172.64.155.188
waust.at	38137	2016-01-28T19:24:33Z	2023-03-28T19:43:40Z	372 B	722 B	104.26.4.7
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.0 kB	5.3 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	54.148.183.113
ic.tynt.com	4300	2013-08-06T03:33:59Z	2023-03-29T12:59:06Z	2.1 kB	1.2 kB	67.202.105.32
de.tynt.com	1252	2013-08-06T03:33:59Z	2023-03-29T12:44:24Z	472 B	404 B	67.202.105.33
api.ipify.org	3267	2014-10-06T14:38:43Z	2023-03-29T05:48:51Z	426 B	222 B	173.231.16.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	1.2 kB	25 kB	35.241.9.150
www.poste.it	132877	2012-12-06T12:16:12Z	2023-03-29T01:25:58Z	853 B	22 kB	13.107.237.61
posteitalianespa.sc.omtrdc.net	428002	2019-03-11T13:40:11Z	2023-03-26T00:32:18Z	2.1 kB	2.1 kB	15.236.125.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-03-28	medium	web.info.app.79-137-206-206.cprapid.com/it	Poste Italiane S.p.A

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/poste-it.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/megamenu-pi.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/utilita.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/scroll-pi.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.min.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/slick.min.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/posteID/x-jod-poste-id.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/hashtable.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-polling/jdpolling.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/start-script.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/rsa.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js	Phishing
2023-03-29	medium	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/bootstrap.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed
2023-03-29	medium	cprapid.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (47)

	URL	Size	First Seen	Last Seen
	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js	2.9 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:19 Times Seen726 Hash 03aea05809bf32353408cb78cdf40f08 5bfe199b18c64b584d8bc98308c769c8e32b331a 9b8d058f857c6ca7f7d4c0ef2e800c6884d6a89bb52cb294774505d1d3c7283b Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	345 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:18 Times Seen333 Hash 729bb4a9b0bfb273baac5ea6e6844de7 be5c9fa7dcb38b831522664a8de97049a4d564f9 d2b54a0869695bbbf4073b99f12debb9688a51783a951ca3eeecfcf500e54adb Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	201 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:18 Times Seen332 Hash 92ecbd74e6a8ffe88bf29c4402b21ab7 b47632a523d0099de70d232788bc92a9c1a0ce5e faf2beeea765110aba5bc5ad31289d627cf6bb54043a82c9887ba751e19a596f Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	92 B	2023-03-07	2024-03-05
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:10 Last Seen2024-03-05 17:14:55 Times Seen130 Hash d2a267bb66e73f3dbc523bda7b45e41e ebc8795be02826851ab3621a054c2ddf9eadf293 b17e5e9c24781262ed1c383cb94d378abe60fadd2fe0b5f5b2b3a457ff7e1458 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js	8.9 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:19 Times Seen640 Hash 0cef027039bf8251fa53f22336981780 02f550f2117d54683191a964e0b54f3c253bb1b3 ce237a2bc80dd06901d9d66d3d6fd1a634157389d2daeabb377caab879ce3a02 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	1.0 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:18 Times Seen196 Hash 7cffb57b0ae161a30c4e3901d5bba6c3 bef394816ef46e7822ee55b4006ff872ddfd0f55 2dae4dc78c864eb104091a459d6961c4045d6d43e3497313042031b455586fc9 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js	7.8 kB	2023-03-07	2024-04-18
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:10 Last Seen2024-04-18 11:32:38 Times Seen1523 Hash 74ee4c679b03074b55a1da9bbbe29cf5 745701d8ab39733f989313a5747c54cf3248eb5b 5c2f6c5d5cd0fe0ecfa24b844f841c8a73d8baaafb827ec413afa41335aa1c47 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	593 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:10 Last Seen2024-04-04 07:19:18 Times Seen193 Hash b369ffdf74430da8bdada0d051db4b91 76faf71e0380fbeac69bea75bfd440176701930b 81c4e492a699906be679f05e7598fa4e78eaac101265cbed6e4245e0b4d7c595 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	240 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:18 Times Seen349 Hash dbc7441180dc8acc784aede20da4fc8c 23f95d05836bad5e55a43d998bd72b8d699596b4 e25c8a4e352ae2c9d77ee3ca500eddb76a508929ee52e19937a4be864bb19e15 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	278 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:18 Times Seen182 Hash 55e29ccb09e1561f37867681c967bd0b 104413e24e350a8ffb3bb0982b504b16b9a14cce 8474b9e3067f6a270df9341690ab847c732afcfaf2829e0c35fa2664f3bba28f Loading...

	assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js	34 kB	2023-03-08	2024-04-18
Pretty URL assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js IP 2.18.172.233 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:57:44 Last Seen2024-04-18 11:00:14 Times Seen6799 Hash dfdd9e1f988805f0c2fbb10cd6b8f034 b6cd42821dd2e732919fd053a4665af0e15e0335 d6d01246a30e9d483531c27721f73f266fa4af35effdb21683ac02a620ab8aaf Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 19:30:13 Times Seen36966104 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/utilita.js	14 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/utilita.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:19 Times Seen705 Hash 15e270138da3a46ed6a82f192fa0cf5c 86f7a03b47e1d63a8b5aecdb15be546aa7ec057a ca9c7a3760bf9bf10d8386938fdce15b4327a4158bd836a446c2d4af3aa2d88d Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	2.5 kB	2023-03-07	2024-03-13
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-03-13 15:39:59 Times Seen263 Hash acf35cfe3c0faf5ceb5169f23750ee4e f94a68f0482a6fa4a44405b887d104162f15af58 29baddcbf85cc23a50db492d649d56cbeecd12748011b0bac15311c5ec595731 Loading...

	assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCace12870bc974581b26b193857913875-source.min.js	3.4 kB	2023-03-29	2023-04-06
Pretty URL assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCace12870bc974581b26b193857913875-source.min.js IP 2.18.172.233 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:48 Last Seen2023-04-06 08:47:52 Times Seen12 Hash 74cbc82ae5104e90ca213616ba14d275 2b198cbb88ee635ad817dd0b874ef4b7979bdf09 cb11b0b8dac599b33ea60c2b082290017e132e0dea56d61bce4a204566dd909f Loading...

	cdn.tynt.com/tc.js	18 kB	2023-03-26	2023-06-01
Pretty URL cdn.tynt.com/tc.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 06:14:32 Last Seen2023-06-01 00:32:07 Times Seen1872 Hash 569be2758b9d2b1b2b12b32cb4e77722 c899cb2adea760c6cdb2d471a7408ddbc811e363 b1804777ba20dafab3f354093af8b20442bec0eb61b2d34ea8a735a3bfefa278 Loading...

	widget.poste.it/js/lib/widgets.min.js	839 kB	2023-03-08	2024-04-04
Pretty URL widget.poste.it/js/lib/widgets.min.js IP 62.241.5.94 ASN #15720 Poste Italiane S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:17:34 Last Seen2024-04-04 07:19:19 Times Seen365 Hash 82374b6c20855319bda55472e83e82b4 9067439be48ff638c5ff5ef790ce12bc08b21414 18fc4c844d845b1c289d1d1d324ff6e7abf51785619c9a60d9e245b2100c256a Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/slick.min.js	42 kB	2023-03-07	2024-04-10
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/slick.min.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-10 07:11:58 Times Seen596 Hash 14c2e83236ae603c42164f30103634c6 1b2bad348d7fb92022c2218882242ee6223b46b6 6fa18ab0db86897ea250d65eda6233b1533fdf7f94c9d44a6af2ee16af8242ab Loading...

	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/posteID/x-jod-poste-id.js	3.8 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/posteID/x-jod-poste-id.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:19 Times Seen716 Hash fec7eb85618cb63c3fb5b3efee61d2b2 9c120ed394fa9ddf75062361fc00c073d3ace5aa 12359170db0ece19b214a4f15092e82199ca7b179bc8ef4ffa722918f4623b46 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/bootstrap.js	69 kB	2023-03-07	2024-04-11
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/bootstrap.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-11 19:18:02 Times Seen1194 Hash e3676b6eb90f0f6739c89d56a3efa245 83188f24cfbd8e33b69b23139202c0cf2f390063 31d80f65a2c078aa3ca5051504f29d8986df61f04bc998036527374eef1c286b Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	787 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:18 Times Seen185 Hash ae5c848f3af9d1b63ec7ca3d7149260c a8f9e17bdf47af30afd50a145ba929f3d17d77fc 49ce904ced87a4d6128d53bae2a6775eaf64abc7a3c4b8c79527b1d97aa8bbaf Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/megamenu-pi.js	14 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/megamenu-pi.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:19 Times Seen405 Hash 250bfa1bdb9cc3ed6b8a48a5f2281784 092938daea2f1352513f18a21e27d4a9860bc31f c5d5b2ba0288caa7178d3999dd5478ab6c9d2f6528ee421fa0af724cb8c94035 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/poste-it.js	5.6 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/poste-it.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:19 Times Seen404 Hash 11ed8d787ab28bb7faad321627cbf050 a82e0d6e34c4c166a1d0eb05907cbca2db830886 ee466faaa33a9e0c8786659f3a54c09fb056815dac6059867937a31797fa7929 Loading...

	assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js	2.9 kB	2023-03-29	2023-04-06
Pretty URL assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js IP 2.18.172.233 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:48 Last Seen2023-04-06 08:47:52 Times Seen12 Hash 2c64d7e800f8238437255e8dbeff5e9e 67a4993cf8704a5d374a2df394555943a4e24ffe 6545ca16fd14781b9262eb6c4622a4d1cc48571a80916c5c327c148c9836781f Loading...

	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/rsa.js	39 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/rsa.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:19 Times Seen720 Hash 5791e2f173300646df45d5698867dc27 b28280fcfccd6891e88d912834062ee18e9f7333 a8e90848cdc80b7134da128a50574ec9f913f947ce72a769d392177eb8647377 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	6 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:18 Times Seen267 Hash 4b8c072994ba9bea859a9b01d6205208 3eaae93ae9fb5785690b12424b6af2a6243ee7f1 ce85089bfa9d83e2220a519a0a0624d0e943376211d1a43eaaa231646615709b Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	865 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:18 Times Seen180 Hash 71a346023b3fd5e9704745e701630082 1dac74d77d1af4375e9427850d6448489566eb47 5e88bc305e6bcfdc09f6302f6aa63efabdbb335547278a64341375781dd78507 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	3.1 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:10 Last Seen2024-04-04 07:19:18 Times Seen264 Hash 6177f27c5d4e4974cda783b9b0171472 ffdba3107dbdf8749b8b25eb44f1649f4f962e83 d88fd2724a4d928cb046c746f4c4f8faf8654ab107aaab46f9335f5285a7e3dc Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	3.0 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:10 Last Seen2024-04-04 07:19:18 Times Seen264 Hash 9c5fcce06b915aa7ed6cfe6b20c05693 ad57ebdad2f2fbaec5ba047506518ae020103963 3eec832c5175607f11ce1670f99fd506653996017a282b793bbce69e022b3270 Loading...

	de.tynt.com/deb/v2?id=w!c6hn8dsrid&dn=TC&cc=1&r=&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F	4 B	2023-03-07	2024-04-19
Pretty URL de.tynt.com/deb/v2?id=w!c6hn8dsrid&dn=TC&cc=1&r=&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F IP 67.202.105.33 ASN #32748 STEADFAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-19 09:17:17 Times Seen3072 Hash 350fd6ef6446635f7a8f608434a405ec a4b6c275ac2c80ec925b5c0c5c6abb79ba897356 d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js	6.8 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:19 Times Seen469 Hash 0db4764d4e4e66899267d79703fe99ce 816c19ddfe3088858714d0ba55a646f5df09321a aa3b054914a360287080d0bf7946f5fc59aab7ed99e2299ba2fc94c16f29f075 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js	694 B	2023-03-07	2024-04-11
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-11 19:18:02 Times Seen1402 Hash b5a0dd7ce1f7c1c6b80b5abe13308dd2 6cc4835430ac4ba8845fd02efdb5688166a5ed8a ce01c41255d7e61cc44e865184559085737a98cf6911ef67f915692152b88852 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js	3.0 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:19 Times Seen611 Hash 9aa07ea97efef38c156c5065ec6b040e 3d25ced0d2bbac415a0f583f54bc270b7b051a45 9bdd42402354335825af6f1b45bb83f645c16199d4bc7ee5f428efb3dbfef811 Loading...

	www.poste.it/bowser.js	17 kB	2023-03-07	2024-04-04
Pretty URL www.poste.it/bowser.js IP 13.107.237.61 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:19 Times Seen598 Hash 971b649748eb819a7f4c8cdc4805376c f520540daa055e999dd6599e6e7e9f977899a8f6 61e2728bce5b153ccca7fd7ffe0a98a29dbfb0218300a39dd0cf0535635683f2 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	568 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:18 Times Seen349 Hash e788b4900338eb30e0d4c6093686364b ab7e690282d3557b0da88f1f5daf29266c3b658b 41644ca837a0cdccd64107c8b820da71897fd873ba985772799f2a05fe91544d Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	63 B	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:18 Times Seen232 Hash 3061b743e16b9c13065db73e07b0ab7f 24d48892a0026114fdaa95e333666d1794dc4698 033d0b061d46c5cde3873a2b595dc959e8a64e4cb20ba92b3f133cede75d9d61 Loading...

	waust.at/d.js	15 kB	2023-03-08	2024-04-19
Pretty URL waust.at/d.js IP 104.26.4.7 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:06 Last Seen2024-04-19 11:03:11 Times Seen2177 Hash 38cdedd658fa41770f607c0b117c1f82 3f3c9c6c330ab649e27ec56a8d852e9d41b0edf4 951feaddb6ad45bcc58fee7033004366978150e8f2927692781c3e2755c7c15c Loading...

	assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js	3.3 kB	2023-03-08	2024-04-18
Pretty URL assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js IP 2.18.172.233 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:57:44 Last Seen2024-04-18 11:00:14 Times Seen5761 Hash b89fcb8870ac40eecb6d3cc844d35389 1bbde1a85912bdeff9c9cf55bf2fb3969d245874 78c1c1baf0d964522f8afab09cfc754685c1648826a7f9967fd52b774b4ec5aa Loading...

	web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/scroll-pi.js	7.5 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/scroll-pi.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:44:29 Last Seen2024-04-04 07:19:19 Times Seen403 Hash 1019dc04b5f21a58f899ef6a5c0391d3 b39e7c8581a6b06a46911b64dbd1e81472971b62 e40c7597c5edee3bddede5398bfa7a3a25acd5e081138da68da133eb4ea8b822 Loading...

	web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/hashtable.js	14 kB	2023-03-07	2024-04-15
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/hashtable.js IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:10 Last Seen2024-04-15 23:28:20 Times Seen761 Hash f47c9a2aad50eddc384597280522f86a 73500eb3a7b9c96d0b6f075bc7a742dfe014a2a1 138143108101149f64bcda5fe38cdd2f3f2139cc957b45949e71fac33ea94482 Loading...

	t.dtscout.com/pv/?_a=v&_h=web.info.app.79-137-206-206.cprapid.com&_ss=4odw32lrll&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=60l8&_cb=_dtspv.c	52 B	2023-03-29	2023-03-29
Pretty URL t.dtscout.com/pv/?_a=v&_h=web.info.app.79-137-206-206.cprapid.com&_ss=4odw32lrll&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=60l8&_cb=_dtspv.c IP 141.101.120.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:48 Last Seen2023-03-29 23:41:48 Times Seen1 Hash b5cef271a1dc4627bd55a19cd034db61 40148f94508b62d4e110d574993fc55920d6de1f 7172f477b8535bbf39ac50ae89b0c7da093e36212a974dcc6ff1b9549b379e96 Loading...

	whos.amung.us/pingjs/?k=c6hn8dsrid&t=Accedi%20o%20Registrati&c=d&x=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&y=&a=0&v=27&r=1756	28 B	2023-03-29	2023-04-14
Pretty URL whos.amung.us/pingjs/?k=c6hn8dsrid&t=Accedi%20o%20Registrati&c=d&x=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&y=&a=0&v=27&r=1756 IP 104.22.75.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:48 Last Seen2023-04-14 08:50:24 Times Seen3 Hash a0ae542746bcc8a7cd200314686cf8a4 594656d14531a54aee483bccfa5baa3a8ffd0e7e 904a53f25da56a1a2338ee3a03661092ddff5b2894edf2db044e4c936688f0d4 Loading...

	widget.poste.it/js/custom.js	32 kB	2023-03-14	2023-04-11
Pretty URL widget.poste.it/js/custom.js IP 62.241.5.94 ASN #15720 Poste Italiane S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 19:33:55 Last Seen2023-04-11 13:39:34 Times Seen31 Hash dc35b5976f8b2106a89786489b8a87e1 ae5cabe43e1f9570846e0637a588ec98f0f85474 16edb4295206702d8074c76a6193a7fbff0e51ee0d335442734e0c2b5bff7edd Loading...

	assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCce78d2ba79364101b982bf481cca240c-source.min.js	3.5 kB	2023-03-29	2023-04-06
Pretty URL assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCce78d2ba79364101b982bf481cca240c-source.min.js IP 2.18.172.233 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:41:48 Last Seen2023-04-06 08:47:52 Times Seen12 Hash 9288aff7912aa1263e08705a4668d5a1 b72817b1c65cdcfe4a6a3dc5971f2dbd2ecefd6d 4c31a00c55b3efeffb9a9b75e079e158d287dcd158c84e12132dc5545cf7f437 Loading...

	t.dtscout.com/i/?l=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&j=	2.1 kB	2023-03-07	2024-04-19
Pretty URL t.dtscout.com/i/?l=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&j= IP 141.101.120.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-19 18:33:29 Times Seen4397 Hash 51bd741af3fcc4984d1a753eebfa1141 534664acf69cbbb5c9b97c96b63dd37bdc580da2 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c Loading...

	web.info.app.79-137-206-206.cprapid.com/it/	1.8 kB	2023-03-07	2024-04-04
Pretty URL web.info.app.79-137-206-206.cprapid.com/it/ IP 79.137.206.206 ASN #12695 LLC Digital Network Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-04 07:19:18 Times Seen264 Hash 4a9b51435df0c8a9ca1a726488553820 d9649606b9d1a6f964a53dc57b9572da17b6a4aa c77f67307aadbb33a6c9d23883483041b7f2366634c229f74cc14f5f1617b6fc Loading...

		Size	First Seen	Last Seen
	#1 Eval - b2c2041f8d99c45e0f21474fe4f8b7bc	17 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-19 13:33:24 Times Seen7408 Hash b2c2041f8d99c45e0f21474fe4f8b7bc 0b876666393469c726a2e3edbb29544c03a92154 17f5bfdbae6b35ae8bc3b27c069526d694021fe1e37a8027678e770fbb05e061 Loading...

HTTP Transactions (104)

URL IP Response Size

web.info.app.79-137-206-206.cprapid.com/it

79.137.206.206

301 Moved Permanently

259 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
259 B (259 bytes)
Hash
b554933ee25cbfa2e9dd326d8f71f6b7
4b662aded230832ca4bb473ef1cc84ffe0508d5a
b98ac597dc34beef00f511839e7e5a2921cee5a3a5432e2d1f6d4aba82bd186b

Detections

Analyzer	Verdict	Alert
openphish	Poste Italiane S.p.A
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Wed, 29 Mar 2023 02:29:51 GMT
Server: Apache
Location: https://web.info.app.79-137-206-206.cprapid.com/it/
Content-Length: 259
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6925
Expires: Wed, 29 Mar 2023 04:25:16 GMT
Date: Wed, 29 Mar 2023 02:29:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2762
Expires: Wed, 29 Mar 2023 03:15:53 GMT
Date: Wed, 29 Mar 2023 02:29:51 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 29 Mar 2023 02:15:53 GMT
content-type: application/json
age: 838
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3074
Expires: Wed, 29 Mar 2023 03:21:05 GMT
Date: Wed, 29 Mar 2023 02:29:51 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: UPwE/lEgpL33Q5lkSXWTYeJc3kTGvwZtG5uTQ0+FJ0oFDzKsjKdiFB1RBbJcBnoCZ3IRxDTMtww=
x-amz-request-id: C9FDSPDVS3J8PPF5
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 29 Mar 2023 02:02:17 GMT
age: 1654
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

web.info.app.79-137-206-206.cprapid.com/it/

79.137.206.206

200 OK

30 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
30 kB (30283 bytes)
Hash
0030f6836ce07235b484941a1bcd53b6
fbf13b6ec95c566ecbf01b3eb9e8df7e503e6b09
3c7a5bbd7079fd2a3eec33ea828a783d301c76ff5231fb368405adf35dc260b1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/ HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:51 GMT
Server: Apache
Set-Cookie: COOKIE_KEY=168005699189; expires=Sat, 26-Mar-2033 02:29:51 GMT; Max-Age=315360000
COOKIE_KEY=168005699143; expires=Sat, 26-Mar-2033 02:29:51 GMT; Max-Age=315360000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 02:29:51 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/owl.carousel.css

79.137.206.206

200 OK

4.6 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/owl.carousel.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
4.6 kB (4614 bytes)
Hash
b51416af9e8adbe3d16f5f2526aba221
097c8d67412f44534449ed4cadc6dd22b025801d
dd7b97c7ad9d7b3eb79bdc728bcbc6a7ab8e3d5db0421fb0dd16d34f3dc88277

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/owl.carousel.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 4614
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css

79.137.206.206

200 OK

416 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
416 B (416 bytes)
Hash
a00dda3f91b12b16ef9736f89c1d5042
0ad4a038ed350f7a4bbb738849f876eeced6c1d3
0da7a1b970b5c8e4c5f781761450c034462288a375d5c189f7e90027207f3524

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/base.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 416
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/retina.css

79.137.206.206

200 OK

115 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/retina.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
115 B (115 bytes)
Hash
ee5d2b27eb8a486f46909f007cd2c3bc
f1b58d02621607b7cbe1c775a5c04572fd2859ce
63ae9fac5779ea8db4b2bf9adebfb54f5651b105e4a935b3f4c42308e3ab8557

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/retina.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 115
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/css/bootstrap.min.css

79.137.206.206

200 OK

122 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/css/bootstrap.min.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (64985)
Size
122 kB (122291 bytes)
Hash
6181a38a601eb664522623bae7db95c9
9671b5fc92e27a915769b59bc60bf26fde343d7e
8b922a249c9f81562d99eee24407bf38c7feac74a10dfe712292c0b032144dfa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 122291
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/megamenu-pi.css

79.137.206.206

200 OK

26 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/megamenu-pi.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
26 kB (26357 bytes)
Hash
91a45dd5d6409bb0a5db3104a2f6c543
933b6e5b6acac709ff1e36d52135bf819df48507
89c0e53575ae03072f5b2a9d587c1611bad7a22090382318c391756dcf6e812c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/megamenu-pi.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 26357
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/poste-it.js

79.137.206.206

200 OK

5.6 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/poste-it.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (326)
Size
5.6 kB (5588 bytes)
Hash
11ed8d787ab28bb7faad321627cbf050
a82e0d6e34c4c166a1d0eb05907cbca2db830886
ee466faaa33a9e0c8786659f3a54c09fb056815dac6059867937a31797fa7929

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/poste-it.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 5588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/megamenu-pi.js

79.137.206.206

200 OK

14 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/megamenu-pi.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
Unicode text, UTF-8 text
Size
14 kB (14476 bytes)
Hash
250bfa1bdb9cc3ed6b8a48a5f2281784
092938daea2f1352513f18a21e27d4a9860bc31f
c5d5b2ba0288caa7178d3999dd5478ab6c9d2f6528ee421fa0af724cb8c94035

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/megamenu-pi.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 14476
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/utilita.js

79.137.206.206

200 OK

14 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/utilita.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (534)
Size
14 kB (13994 bytes)
Hash
15e270138da3a46ed6a82f192fa0cf5c
86f7a03b47e1d63a8b5aecdb15be546aa7ec057a
ca9c7a3760bf9bf10d8386938fdce15b4327a4158bd836a446c2d4af3aa2d88d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/utilita.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 13994
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/scroll-pi.js

79.137.206.206

200 OK

7.5 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/scroll-pi.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
7.5 kB (7538 bytes)
Hash
1019dc04b5f21a58f899ef6a5c0391d3
b39e7c8581a6b06a46911b64dbd1e81472971b62
e40c7597c5edee3bddede5398bfa7a3a25acd5e081138da68da133eb4ea8b822

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/scroll-pi.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 7538
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js

79.137.206.206

200 OK

8.9 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
exported SGML document, ASCII text, with very long lines (8423)
Size
8.9 kB (8885 bytes)
Hash
0cef027039bf8251fa53f22336981780
02f550f2117d54683191a964e0b54f3c253bb1b3
ce237a2bc80dd06901d9d66d3d6fd1a634157389d2daeabb377caab879ce3a02

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 8885
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.min.js

79.137.206.206

200 OK

97 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.min.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (32077)
Size
97 kB (97163 bytes)
Hash
4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/jquery.min.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 97163
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js

79.137.206.206

200 OK

7.8 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (7687)
Size
7.8 kB (7784 bytes)
Hash
74ee4c679b03074b55a1da9bbbe29cf5
745701d8ab39733f989313a5747c54cf3248eb5b
5c2f6c5d5cd0fe0ecfa24b844f841c8a73d8baaafb827ec413afa41335aa1c47

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 7784
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/stili/custom-form-element.css

79.137.206.206

200 OK

18 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/stili/custom-form-element.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (376)
Size
18 kB (18280 bytes)
Hash
eb65c2ea5d0082591243aee8425d4eff
a5adf6ce96c015f865a93d54b930cdfd5c6c669a
2213c377877c722511173afad5794c4ca2fce629c79d26a4df200fc4ab3f06f3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/applicazioni/trasversali/stili/custom-form-element.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 18280
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/slick.min.js

79.137.206.206

200 OK

42 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/slick.min.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (32076)
Size
42 kB (41953 bytes)
Hash
14c2e83236ae603c42164f30103634c6
1b2bad348d7fb92022c2218882242ee6223b46b6
6fa18ab0db86897ea250d65eda6233b1533fdf7f94c9d44a6af2ee16af8242ab

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/slick.min.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 41953
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js

79.137.206.206

200 OK

3.0 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
3.0 kB (2983 bytes)
Hash
9aa07ea97efef38c156c5065ec6b040e
3d25ced0d2bbac415a0f583f54bc270b7b051a45
9bdd42402354335825af6f1b45bb83f645c16199d4bc7ee5f428efb3dbfef811

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 2983
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/posteID/x-jod-poste-id.js

79.137.206.206

200 OK

3.8 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/posteID/x-jod-poste-id.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with CRLF line terminators
Size
3.8 kB (3812 bytes)
Hash
fec7eb85618cb63c3fb5b3efee61d2b2
9c120ed394fa9ddf75062361fc00c073d3ace5aa
12359170db0ece19b214a4f15092e82199ca7b179bc8ef4ffa722918f4623b46

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/jod-fcc/posteID/x-jod-poste-id.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 3812
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/hashtable.js

79.137.206.206

200 OK

14 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/hashtable.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with CRLF line terminators
Size
14 kB (14081 bytes)
Hash
f47c9a2aad50eddc384597280522f86a
73500eb3a7b9c96d0b6f075bc7a742dfe014a2a1
138143108101149f64bcda5fe38cdd2f3f2139cc957b45949e71fac33ea94482

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/jod-fcc/resources/portal/js-rsa-2/hashtable.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 14081
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-polling/jdpolling.js

79.137.206.206

404 Not Found

315 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-polling/jdpolling.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/jod-fcc/resources/portal/js-polling/jdpolling.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/start-script.js

79.137.206.206

200 OK

23 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/javascript/start-script.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
Unicode text, UTF-8 text, with very long lines (306)
Size
23 kB (22866 bytes)
Hash
ed56f6a18269e8a0626db5de25f3f657
c850fa6c06893edb1926db33bf7d13971f6e2ad5
4d43fc9cc16f5907f1a85777ae1e40d4e520a10302c424c505325723b64ea160

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/javascript/start-script.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 22866
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js

79.137.206.206

200 OK

694 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
694 B (694 bytes)
Hash
b5a0dd7ce1f7c1c6b80b5abe13308dd2
6cc4835430ac4ba8845fd02efdb5688166a5ed8a
ce01c41255d7e61cc44e865184559085737a98cf6911ef67f915692152b88852

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 694
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js

79.137.206.206

200 OK

2.9 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (597), with CRLF line terminators
Size
2.9 kB (2915 bytes)
Hash
03aea05809bf32353408cb78cdf40f08
5bfe199b18c64b584d8bc98308c769c8e32b331a
9b8d058f857c6ca7f7d4c0ef2e800c6884d6a89bb52cb294774505d1d3c7283b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 2915
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/typography.css

79.137.206.206

200 OK

5.1 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/typography.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
assembler source, ASCII text
Size
5.1 kB (5123 bytes)
Hash
9bc1f2ccabef97230a29e52bb7d71e2e
c2cc92960a2674ffa0c8d32b2133e596b3613630
2a96cd832563fdde56f4c71a663dd68bd9202eeed6a4c2c525e3275e4e68be06

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/typography.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 5123
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/spaces.css

79.137.206.206

200 OK

30 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/spaces.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
30 kB (29954 bytes)
Hash
a0339ef2039b90034b16e341e508b5e8
dab67a84e5a8228a6f9ed90f05b8a7b983912b3c
9fb634a5bbfbee4fc2503595fa18a98142ca8cf0bb29984d065edfeef0006bdd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/spaces.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 29954
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/alignment.css

79.137.206.206

200 OK

2.7 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/alignment.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
assembler source, ASCII text
Size
2.7 kB (2731 bytes)
Hash
2b774691bee7183287e841ed3287c1c1
bb03284b1ee77d718adee2286f8ce20e42f0e9c6
8d4821ff1de6348bb012672849a8205eb9833edde9b1e417f2fa5365261c08bf

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/alignment.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/extra.css

79.137.206.206

200 OK

5.0 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/extra.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
5.0 kB (4991 bytes)
Hash
6845e4602367a2454bf3a8aa15d014a6
841e011124cb8f568f3c2d8bfcb3013ea6f042fd
dc4a581b65b22475fbb99580954525d488986dc35b37b19310d30a0598a32fde

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/extra.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 4991
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/rsa.js

79.137.206.206

200 OK

39 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/jod-fcc/resources/portal/js-rsa-2/rsa.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text, with very long lines (2059), with CRLF line terminators
Size
39 kB (39372 bytes)
Hash
5791e2f173300646df45d5698867dc27
b28280fcfccd6891e88d912834062ee18e9f7333
a8e90848cdc80b7134da128a50574ec9f913f947ce72a769d392177eb8647377

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/jod-fcc/resources/portal/js-rsa-2/rsa.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 39372
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css

79.137.206.206

200 OK

4.5 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
4.5 kB (4511 bytes)
Hash
c26ff7c37210341d690599a8a2310737
3127758f8fcf89472099f6963b90464cbe3b01b9
f4e596fd7ef88f965cc4df8dd6895f65cbdb0d2f49e58bfc5c4832675318ddc0

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/fonts.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 4511
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

assets.adobedtm.com/launch-EN592261e36dc14b10a9936e854a4b30db.min.js

2.18.172.233

200 OK

69 kB

URL HTTP/2
assets.adobedtm.com/launch-EN592261e36dc14b10a9936e854a4b30db.min.js
IP
2.18.172.233:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (32752)
Size
69 kB (68683 bytes)
Hash
9354a7710f76838dc3644ed951bf4884
5dfe028d35cb82a16fe22e7bff8e99b93db3c1c8
6ad4935bb853cdffa6bf85c91ec5964ece753dd8a99b45765929ab086fd2323a

HTTP Headers

GET /launch-EN592261e36dc14b10a9936e854a4b30db.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "20afcb2cf43d28f3f0bc402927850f64:1680021957.317596"
last-modified: Tue, 28 Mar 2023 16:45:57 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 68683
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:29:52 GMT
date: Wed, 29 Mar 2023 02:29:52 GMT
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base-element.css

79.137.206.206

200 OK

214 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base-element.css
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
ASCII text
Size
214 kB (213450 bytes)
Hash
f938de6880813c3c7b2a30b28a6c0da8
19d93950a34345d83dfc8096214d6082c2d6706a
1f615511776a12840fb4cccea90ef49bc3c6bc0d430932bd6f219e82e13c025b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/base-element.css HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 213450
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

ocsp.globalsign.com/gsrsaovsslca2018

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1432 bytes)
Hash
9948f394552bf176f176e31e65310c65
d725e5c5fed66de7ea72ab2f48cc28f50e5d64a6
fb756ee88243eb9309208fb6a4177490759d149490474a38ec03352712c93900

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 02 Apr 2023 02:29:51 GMT
ETag: "d725e5c5fed66de7ea72ab2f48cc28f50e5d64a6"
Last-Modified: Wed, 29 Mar 2023 02:29:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 29 Mar 2023 02:29:52 GMT
Age: 0
X-Served-By: cache-qpg1263-QPG, cache-bma1625-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1680056993.500494,VS0,VE203

ocsp.globalsign.com/gsrsaovsslca2018

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1432 bytes)
Hash
9948f394552bf176f176e31e65310c65
d725e5c5fed66de7ea72ab2f48cc28f50e5d64a6
fb756ee88243eb9309208fb6a4177490759d149490474a38ec03352712c93900

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sun, 02 Apr 2023 02:29:51 GMT
ETag: "d725e5c5fed66de7ea72ab2f48cc28f50e5d64a6"
Last-Modified: Wed, 29 Mar 2023 02:29:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 29 Mar 2023 02:29:52 GMT
Age: 0
X-Served-By: cache-qpg1263-QPG, cache-bma1675-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1680056993.500377,VS0,VE203

www.poste.it/bowser.js

13.107.237.61

200 OK

17 kB

URL HTTP/2
www.poste.it/bowser.js
IP
13.107.237.61:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with CRLF line terminators
Size
17 kB (16647 bytes)
Hash
971b649748eb819a7f4c8cdc4805376c
f520540daa055e999dd6599e6e7e9f977899a8f6
61e2728bce5b153ccca7fd7ffe0a98a29dbfb0218300a39dd0cf0535635683f2

HTTP Headers

GET /bowser.js HTTP/1.1
Host: www.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=3600,public
pragma: public
content-length: 16647
content-type: application/javascript
expires: Wed, 29 Mar 2023 03:29:52 GMT
last-modified: Wed, 20 Oct 2021 13:58:32 GMT
accept-ranges: bytes
etag: "61702088-4107"
x-cache: CONFIG_NOCACHE
mylocation: TORINO
x-azure-ref: 0oKIjZAAAAACE5DE2RK9xRJjzO1LykOYnU1ZHMjBFREdFMDYwOABiZWE0YWQ2MS1kNWI2LTRmYmYtOWYyMC04NzJlNzI1N2U1NmE=
date: Wed, 29 Mar 2023 02:29:52 GMT
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Retry-After, ETag, Content-Length, Content-Type, Backoff, Pragma, Expires, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 29 Mar 2023 02:14:36 GMT
age: 916
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

web.info.app.79-137-206-206.cprapid.com/it/.jod-fcc/qrr.png

79.137.206.206

404 Not Found

315 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/.jod-fcc/qrr.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/.jod-fcc/qrr.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/ico-pp.png

79.137.206.206

200 OK

3.0 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/ico-pp.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
PNG image data, 45 x 44, 8-bit/color RGB, non-interlaced\012- data
Size
3.0 kB (2957 bytes)
Hash
b58f05ef3e25628af63aca1f633afef2
ed29c9437597aed2c13291305a262d03684d8910
068347897472440f46e706b2d61c77ec861e2facb34b567e2e2c851ae1bc4dea

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt_ext/icone/ico-pp.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 2957
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/ico-bp.png

79.137.206.206

200 OK

3.5 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/ico-bp.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
PNG image data, 45 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3511 bytes)
Hash
8d96bc9b08477815ed8655ced98af0ac
04b6fa972775456746a7cfeba72f3878cf904183
d7f9c88c4f19de13e5ef1040c08cd72970808301de221e2ea7acfc71bf802cc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt_ext/icone/ico-bp.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 3511
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/small-modal-ico-bp-pp.png

79.137.206.206

200 OK

13 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/small-modal-ico-bp-pp.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
PNG image data, 132 x 132, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12995 bytes)
Hash
22e37aed1a37a4d10a2c011e969a1337
05d054f563899fffd3ffd4f5cba486c5273d17d9
d4a66d846de1a39c49b3d03f1c4c4d21cd9f5436f362b7a72fd2eb773f6cfaca

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt_ext/icone/small-modal-ico-bp-pp.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 12995
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/empty-profile.png

79.137.206.206

404 Not Found

315 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/empty-profile.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt_ext/icone/empty-profile.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

web.info.app.79-137-206-206.cprapid.com/it/.jod-fcc/qrr.png

79.137.206.206

404 Not Found

315 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/.jod-fcc/qrr.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/.jod-fcc/qrr.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.poste.it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png

13.107.237.61

200 OK

5.0 kB

URL HTTP/2
www.poste.it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png
IP
13.107.237.61:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 110 x 14, 8-bit/color RGBA, non-interlaced\012- data
Size
5.0 kB (4959 bytes)
Hash
0e9962a2babbe39b3725e2a13d7b233d
e67105271b1076016a630071a3a231e0084e96ed
ccb7ecb1eadb470600c66ed9548f5dd49cfbbbd67eb34f9d4437eeec55c69212

HTTP Headers

GET /risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png HTTP/1.1
Host: www.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3600,public
pragma: public
content-length: 4959
content-type: image/png
expires: Wed, 29 Mar 2023 03:29:52 GMT
last-modified: Wed, 21 Dec 2022 14:55:14 GMT
accept-ranges: bytes
etag: "63a31e52-135f"
x-cache: CONFIG_NOCACHE
mylocation: TORINO
x-azure-ref: 0oKIjZAAAAACsNngIe5SPS4bwsa2ThQSaU1ZHMjBFREdFMDYwOABiZWE0YWQ2MS1kNWI2LTRmYmYtOWYyMC04NzJlNzI1N2U1NmE=
date: Wed, 29 Mar 2023 02:29:52 GMT
X-Firefox-Spdy: h2

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png

79.137.206.206

404 Not Found

315 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/empty-profile.png

79.137.206.206

404 Not Found

315 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/empty-profile.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt_ext/icone/empty-profile.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png

79.137.206.206

404 Not Found

315 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/base-element.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/immagini/eye.png

79.137.206.206

200 OK

645 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/immagini/eye.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
PNG image data, 24 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
645 B (645 bytes)
Hash
5dfd11f759177ca66df6bfb649fa131c
8151b051d99d5988a9761adcc40089bfb20f5576
5931ba755c44c364f074f95a904536fb4076da4e44c811a1934c5fff735c39c4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/applicazioni/trasversali/immagini/eye.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 645
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/bg-qrcode.png

79.137.206.206

200 OK

5.3 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt_ext/icone/bg-qrcode.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
PNG image data, 624 x 210, 8-bit/color RGBA, non-interlaced\012- data
Size
5.3 kB (5348 bytes)
Hash
4ed242012ee510aca41b30408eb02cc7
957fd32bcb5bc79b1f6e7795e2c6a6444dc462f0
bf6bcbcf84ff0f18c4110fa868c29ff14aef2458be49afd0ffe37e5f9cd74950

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt_ext/icone/bg-qrcode.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 5348
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff

79.137.206.206

200 OK

32 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Size
32 kB (32376 bytes)
Hash
8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 32376
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff

79.137.206.206

200 OK

32 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
Web Open Font Format, TrueType, length 31976, version 1.0\012- data
Size
32 kB (31976 bytes)
Hash
dcdd69e7910e57b0adc381e0fcf93e3e
21fd668706b3cd97f1b5df0c61ac4b05ab0bdf29
e3e914fafd966522cc6e0db2355a72202ece3052e768b0e34d05bdc4d26bf489

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 31976
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff

79.137.206.206

200 OK

32 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
Web Open Font Format, TrueType, length 32412, version 1.0\012- data
Size
32 kB (32412 bytes)
Hash
e49b4a99e99a162382c9135468cdff61
6fe7b52d7195d20e9d8ad05d4068dd87ddaeff76
0fa4aee030662ed700dc5cb2e13e52b85fb1254a195d9ab0a1a10d79e645c8f8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 32412
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff

79.137.206.206

200 OK

33 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
Web Open Font Format, TrueType, length 32756, version 1.0\012- data
Size
33 kB (32756 bytes)
Hash
ddcb123ab58089ce07fa2d0e767decc4
b6bdcb18d6e6c3a28a40a041324001c794375c85
98a9f23066501d2b1676f72a2feb355caa114d4dffce7bae927083af92ccd6c9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 32756
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
da5340ee69a1000f751686df9e716663
a5da880a61ed119790a7990bbdcc0c97eecf04f2
d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9374
Expires: Wed, 29 Mar 2023 05:06:07 GMT
Date: Wed, 29 Mar 2023 02:29:53 GMT
Connection: keep-alive

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/generiche/spinner_giallo.gif

79.137.206.206

200 OK

34 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/generiche/spinner_giallo.gif
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
GIF image data, version 89a, 150 x 150\012- data
Size
34 kB (33869 bytes)
Hash
442d51dab3205cf4c81de67e4bafdbda
52726f8f87116bd1fd03e9d99c0bb22afd168937
ea638c8244c7a5cc50e617807b1fc35637430f976e8210ef3d560a5eb059e5f5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/immagini/generiche/spinner_giallo.gif HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 33869
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/gif

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png

79.137.206.206

200 OK

7.3 kB

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
PNG image data, 388 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
7.3 kB (7296 bytes)
Hash
5f334889f79c8a60aca123b6f0e77cd6
b24faf71ad0f3fdb6228e8c101190aafa12b9216
f73f55b1729c6267bf5137b3de7a4e3a842780a87d7a918e878ff63437bb6a87

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 7296
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png

assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js

2.18.172.233

200 OK

12 kB

URL HTTP/2
assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js
IP
2.18.172.233:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (32717)
Size
12 kB (12384 bytes)
Hash
9edbefe8919a34cc9ec5343e49caf90d
9e8f2b92a35df8e01814e558d10248a928ea2504
c276e66ee697edfb8fbe70a13d6cb8498b21fb998d10d6faaf3999f34f5525cc

HTTP Headers

GET /extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "dfdd9e1f988805f0c2fbb10cd6b8f034:1663863409.614694"
last-modified: Thu, 22 Sep 2022 16:16:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12384
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
cache-control: no-cache
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2

assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js

2.18.172.233

200 OK

1.6 kB

URL HTTP/2
assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js
IP
2.18.172.233:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (3138)
Size
1.6 kB (1598 bytes)
Hash
dbb5211703cf7696d634360cc8874fa7
9231e7ebe8096b629c9ac522e41f8c2a8013db99
535a218392da01549f9fd640908f59c213e809c2db778c36094e3a84959106df

HTTP Headers

GET /extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "b89fcb8870ac40eecb6d3cc844d35389:1663863409.92483"
last-modified: Thu, 22 Sep 2022 16:16:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1598
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
cache-control: no-cache
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2

assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js

2.18.172.233

200 OK

1.2 kB

URL HTTP/2
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js
IP
2.18.172.233:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (2795)
Size
1.2 kB (1209 bytes)
Hash
3e5794c992c494516715a39bc11e012d
4d44566450e03c3bff475a4144ac20eb7d61e80e
fd268baed92029190606820e809ab439b96df04b14159ae63fcaf27631bc2038

HTTP Headers

GET /4d622ce80bd2/66013fe91d66/80a0b49044a5/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d0124e848cae409573428204d12cc15a:1680021958.018754"
last-modified: Tue, 28 Mar 2023 16:45:58 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1209
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2

assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCce78d2ba79364101b982bf481cca240c-source.min.js

2.18.172.233

200 OK

1.1 kB

URL HTTP/2
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCce78d2ba79364101b982bf481cca240c-source.min.js
IP
2.18.172.233:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (3366)
Size
1.1 kB (1104 bytes)
Hash
f8d88c907bf3fef0e113cb4805ccb8bf
05e1fed243d236e517e678fab692fbb5488d6edf
a1566f05c0e95af9553c8a5540a8e48f3e98b06fe92c478c45f388f9d8926569

HTTP Headers

GET /4d622ce80bd2/66013fe91d66/80a0b49044a5/RCce78d2ba79364101b982bf481cca240c-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d0124e848cae409573428204d12cc15a:1680021958.018754"
last-modified: Tue, 28 Mar 2023 16:45:58 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1104
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2

assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCace12870bc974581b26b193857913875-source.min.js

2.18.172.233

200 OK

1.1 kB

URL HTTP/2
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/80a0b49044a5/RCace12870bc974581b26b193857913875-source.min.js
IP
2.18.172.233:0
ASN
#16625 AKAMAI-AS

File type
HTML document, ASCII text, with very long lines (3225)
Size
1.1 kB (1072 bytes)
Hash
140209fd0e08fdad73a4ffb228f7a67c
d9b99212cc84395d7e48e1663126f5b4bb1aaa3d
52be6b1834cb22e73cf55ff6ba17fb0044b107a17f21179c9bc19cd808a7daea

HTTP Headers

GET /4d622ce80bd2/66013fe91d66/80a0b49044a5/RCace12870bc974581b26b193857913875-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d0124e848cae409573428204d12cc15a:1680021958.018754"
last-modified: Tue, 28 Mar 2023 16:45:58 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1072
cache-control: max-age=3600
expires: Wed, 29 Mar 2023 03:29:53 GMT
date: Wed, 29 Mar 2023 02:29:53 GMT
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.148.183.113

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.183.113:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /ZcKcB/c2I7aRDSIN7Vv/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JvF9ftC4YfWoH7NP7BVJHDJ7BiY=

web.info.app.79-137-206-206.cprapid.com/favicon.ico

79.137.206.206

404 Not Found

315 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/favicon.ico
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: s_fid=0E3E8B284498C453-34D8E828EAE47581; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.globalsign.com/gsrsaovsslca2018

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1432 bytes)
Hash
df22acbfbc28e1c4415fadeef3517e29
a182037ca00cd2621fb50e50bebe71244c8ae685
778d205887a163c046d6f639e5e5aa17f1d0e41380f607c162b6419d53e3f872

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 01 Apr 2023 23:07:02 GMT
ETag: "a182037ca00cd2621fb50e50bebe71244c8ae685"
Last-Modified: Tue, 28 Mar 2023 23:07:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Wed, 29 Mar 2023 02:29:53 GMT
Age: 1900
X-Served-By: cache-qpg1223-QPG, cache-bma1625-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 2, 0
X-Timer: S1680056993.268056,VS0,VE202

ocsp.digicert.com/

192.229.221.95

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
192.229.221.95:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f8a73bd24166648157435f1ff278007
2e5e2a76165a95eb165f785e40ab431426138053
5217a8a210c479a003a68b350e06f6ed745373aa0c2db4fde166c2f785ce7646

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1904
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 02:29:53 GMT
Etag: "6422c904-1d7"
Last-Modified: Wed, 29 Mar 2023 01:58:10 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221680048079765%22

35.241.9.150

200 OK

22 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221680048079765%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (22067), with no line terminators
Size
22 kB (22067 bytes)
Hash
27dc9fb04a49e79392b7455f58a4b0ac
55a0eab0a375a788d10860095f30b46d3e1e488f
5f3e199f3543f3f8ad72394d66d3127f9e2c88e086fbffff7ae50dd33fa5a34d

HTTP Headers

GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221680048079765%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 22067
via: 1.1 google
date: Wed, 29 Mar 2023 02:02:05 GMT
age: 1668
last-modified: Wed, 29 Mar 2023 00:01:19 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1

15.236.125.10

302 Found

0 B

URL HTTP/2
posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP
15.236.125.10:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: posteitalianespa.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
access-control-allow-origin: *
vary: Origin
date: Wed, 29 Mar 2023 02:29:53 GMT
content-type: text/plain;charset=utf-8
expires: Tue, 28 Mar 2023 02:29:53 GMT
last-modified: Thu, 30 Mar 2023 02:29:53 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_oplkzx7Eoo1pizmx7Ess1oplkz1vkx7Esvx7Eqz=[CS]v4|0-0|6423A2A1[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Fri, 28 Mar 2025 02:29:29 GMT; SameSite=None; Secure
location: https://posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&pccr=true&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
content-length: 0
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

widget.poste.it/js/custom.js

62.241.5.94

200 OK

32 kB

URL HTTP/1.1
widget.poste.it/js/custom.js
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
HTML document, Unicode text, UTF-8 text, with very long lines (306)
Size
32 kB (31581 bytes)
Hash
dc35b5976f8b2106a89786489b8a87e1
ae5cabe43e1f9570846e0637a588ec98f0f85474
16edb4295206702d8074c76a6193a7fbff0e51ee0d335442734e0c2b5bff7edd

HTTP Headers

GET /js/custom.js HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:50 GMT
ETag: "7b5d-5f5ffbffc4580"
Accept-Ranges: bytes
Content-Length: 31581
Access-Control-Allow-Origin: 
Keep-Alive: timeout=278, max=34
Connection: Keep-Alive
Content-Type: application/javascript

posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&pccr=true&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1

15.236.125.10

200 OK

43 B

URL HTTP/2
posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&pccr=true&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP
15.236.125.10:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 2 x 2\012- data
Size
43 B (43 bytes)
Hash
ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506

HTTP Headers

GET /b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s05605130185464?AQB=1&pccr=true&ndh=1&pf=1&t=29%2F2%2F2023%202%3A30%3A15%203%200&fid=0E3E8B284498C453-34D8E828EAE47581&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&c2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v2=web.info.app.79-137-206-206.cprapid.com%2Fit%2F&v32=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&v46=DEFAULT&v198=2023-03-28T16%3A44%3A06Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: posteitalianespa.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 29 Mar 2023 02:29:53 GMT
expires: Tue, 28 Mar 2023 02:29:53 GMT
last-modified: Thu, 30 Mar 2023 02:29:53 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_oplkzx7Eoo1pizmx7Ess1oplkz1vkx7Esvx7Eqz=[CS]v4|E3E8B284498C453-34D8E828EAE47581|0[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Fri, 28 Mar 2025 02:29:29 GMT; SameSite=None; Secure
etag: 3607894921172549632-4619628966114506870
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

widget.poste.it/json/widgetLabels.json

62.241.5.94

200 OK

7.1 kB

URL HTTP/1.1
widget.poste.it/json/widgetLabels.json
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
JSON data\012- , Unicode text, UTF-8 text, with CRLF line terminators
Size
7.1 kB (7125 bytes)
Hash
f6bcc872c62240d4339b14acdb952341
2a14c8c5c5513ba23351a67ae1a6f23f95626a23
5dee78278049e1a73e771b2ea7b4d3cbf89f71a2e6c535e07e45ff392cb89fa4

HTTP Headers

POST /json/widgetLabels.json HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:53 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "1bd5-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 7125
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=86
Connection: Keep-Alive
Content-Type: application/json

whos.amung.us/pingjs/?k=c6hn8dsrid&t=Accedi%20o%20Registrati&c=d&x=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&y=&a=0&v=27&r=1756

104.22.75.171

200 OK

6.9 kB

URL HTTP/2
whos.amung.us/pingjs/?k=c6hn8dsrid&t=Accedi%20o%20Registrati&c=d&x=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&y=&a=0&v=27&r=1756
IP
104.22.75.171:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (631)
Size
6.9 kB (6917 bytes)
Hash
cef08af14f9caf1554d2e57c15ad85ed
8d53c5844e9acb504fa8c1fe3056a76ee486223e
030533d08fe039ad008d1ecb14b86713a868f63f2bd626daa0d9e6e25d69ca58

HTTP Headers

GET /pingjs/?k=c6hn8dsrid&t=Accedi%20o%20Registrati&c=d&x=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&y=&a=0&v=27&r=1756 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:29:53 GMT
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7af4b01118742d63-ARN
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14857
Expires: Wed, 29 Mar 2023 06:37:31 GMT
Date: Wed, 29 Mar 2023 02:29:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14857
Expires: Wed, 29 Mar 2023 06:37:31 GMT
Date: Wed, 29 Mar 2023 02:29:54 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7017 bytes)
Hash
e2c8db4c7fb7a75c469208510007edef
7d4f86b02d0f30ff44453f3fb5ae2704895e92a3
f923d651ca0e6481a2819b891c546f84c3d3b6ae86a14c94ca8050c2b6c412d3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31d591ce-7175-4db6-bd2d-2f461a9a39fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7017
x-amzn-requestid: 8f686bb3-a4ad-4d2f-b947-5e6b83cb24f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CWnNqG49oAMFxKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f5257-4f5c982f03e2f15b16c6bebd;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 19:58:15 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Xj27okGEgDh6N9CuQySGMs4g_OApIelvOqQrAHlFyAaaFxF1UbHmCQ==
via: 1.1 b6cdb2111444305bd4957a473b711ad6.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 00:25:05 GMT
age: 40589
etag: "7d4f86b02d0f30ff44453f3fb5ae2704895e92a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7630 bytes)
Hash
096bf7a8a2bfe48c19e6bf6887145e64
6193039864cae4ab0163f3a7d45613fb86e6be14
51625131b04aa5294e90062807ca728b7a41db79ea069cd238711f8ead5ecd8a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7630
x-amzn-requestid: 5f162d03-0d82-4cd6-8812-4dac159bc2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY9HwhIAMFeOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-670279397929c69c0ee58b35;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: LBOtzCZ-Ef7MsXDj9uh8QSi4jdLTSR3lEtZqRrU6ldmCZVqvpoAQmw==
via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:43:57 GMT
age: 17157
etag: "6193039864cae4ab0163f3a7d45613fb86e6be14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11027 bytes)
Hash
11a3ec10ceec6a8147a4c173b4b420d7
9fe904e5f3062677c6290b821c89a7e3aaee0371
ce934631eda7670329b9bc46a14eff0dd9839bdc838ad90d401600bee70c4f4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32e391ba-5f96-413b-afda-e6ea52953668.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11027
x-amzn-requestid: 48f65bca-a792-4f2c-8eb4-d05c6dc2c2e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CXODXE7eoAMFl3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f907b-6a5a7a890aa383fc4e0eb983;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 00:23:23 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qeit17u4hnY6-u4djG8q98cqMH0bj5wwWQxczrjTN02iB3tQ8nq5MQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 14:23:50 GMT
age: 43564
etag: "9fe904e5f3062677c6290b821c89a7e3aaee0371"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8745 bytes)
Hash
ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: FHONNj6M7I5oVTKAKYspq0ZAJMYohURXs5ufSL-r--zCSdjuSvrpSA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:51:37 GMT
age: 16697
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (6049 bytes)
Hash
253f48aa7cbf667d52cb37fda10cdb1f
e29478b866f90402b48d2b516d01d60a863c9cf9
b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CgvBFFMGIAMFhCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: -XwoHom5AT8j5yHNvfnYQ-9xIqVpsyDffwFM0d_ESJicJvL8pTcABg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:50:28 GMT
age: 16766
etag: "e29478b866f90402b48d2b516d01d60a863c9cf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e8842db-211d-4276-b788-ef1e9cb5f3f2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7053 bytes)
Hash
c59a4159472f366958e67dc928b2a749
0c483adeebf10605e954c55e94c3f43bf1dace30
8fe24cee6c4ee94547e8721448fbdcbd0ab6a38de924d62e00ee6310a1cdfe4e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e8842db-211d-4276-b788-ef1e9cb5f3f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7053
x-amzn-requestid: 2fc4b1ec-6550-4e18-8374-4f174b081f40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguaOHC-IAMFUYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dda-1e21707f0ceb33ff63afb449;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:26 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: olz0Fnxykdz9uh4RfYsf3wQahJCrqAUJc2pt7rTwFNqKGXZ6WBewBg==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 22:01:51 GMT
age: 16083
etag: "0c483adeebf10605e954c55e94c3f43bf1dace30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&t=Accedi%20o%20Registrati

67.202.105.32

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&t=Accedi%20o%20Registrati
IP
67.202.105.32:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&t=Accedi%20o%20Registrati HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 29 Mar 2023 02:29:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5198841d99bbca771107a14e9d7825c2
147f46dc5080f9aa7ae8878cc71eb2a8730583a9
28643a3c710bf8246ca43c73b91fef78d4d951474f73ae13f6847b5a5729c53a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 23:45:36 GMT
Expires: Sat, 01 Apr 2023 23:45:35 GMT
Etag: "147f46dc5080f9aa7ae8878cc71eb2a8730583a9"
Cache-Control: max-age=335140,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7af4b017fe89b50c-OSL

de.tynt.com/deb/v2?id=w!c6hn8dsrid&dn=TC&cc=1&r=&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F

67.202.105.33

200 OK

4 B

URL HTTP/2
de.tynt.com/deb/v2?id=w!c6hn8dsrid&dn=TC&cc=1&r=&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
IP
67.202.105.33:0
ASN
#32748 STEADFAST

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179

HTTP Headers

GET /deb/v2?id=w!c6hn8dsrid&dn=TC&cc=1&r=&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=86400
expires: Thu, 30 Mar 2023 02:29:54 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA, Sec-CH-UA-Mobile
content-type: application/javascript
content-length: 4
date: Wed, 29 Mar 2023 02:29:54 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F

67.202.105.32

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
IP
67.202.105.32:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 29 Mar 2023 02:29:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

api.ipify.org/

173.231.16.76

200 OK

12 B

URL HTTP/2
api.ipify.org/
IP
173.231.16.76:0
ASN
#18450 WEBNX

File type
ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d

HTTP Headers

GET / HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://web.info.app.79-137-206-206.cprapid.com
content-type: text/plain
date: Wed, 29 Mar 2023 02:29:54 GMT
vary: Origin
content-length: 12
X-Firefox-Spdy: h2

ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F

67.202.105.32

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
IP
67.202.105.32:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 29 Mar 2023 02:29:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

widget.poste.it/fonts/Texta-Black.woff

62.241.5.94

200 OK

33 kB

URL HTTP/1.1
widget.poste.it/fonts/Texta-Black.woff
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
Web Open Font Format, TrueType, length 33140, version 1.0\012- data
Size
33 kB (33140 bytes)
Hash
bb38c2004fb8284b41ab208428f57e57
eede479ce3535e6dd33934e677de0b7224ce31c4
3d4a9402bef6028217f3f4279e7f6c4bb9af9bfce7786eac52d3a5d0065a27af

HTTP Headers

POST /fonts/Texta-Black.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "8174-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 33140
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=82
Connection: Keep-Alive
Content-Type: application/font-woff

ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F

67.202.105.32

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F
IP
67.202.105.32:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=w!c6hn8dsrid&lm=0&ts=1680057015842&dn=TC&iso=0&pu=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 29 Mar 2023 02:29:55 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

widget.poste.it/fonts/Texta-LightItalic.woff

62.241.5.94

200 OK

32 kB

URL HTTP/1.1
widget.poste.it/fonts/Texta-LightItalic.woff
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
Web Open Font Format, TrueType, length 32084, version 1.0\012- data
Size
32 kB (32084 bytes)
Hash
50ff911beaeaea06a186cbe72898ea42
610aa069b2987d6fbbf46c456f177ced1aa49a57
91509bd0e2ed20655b4cbbf585f5587a1a1cc282291dd56d7821881699757971

HTTP Headers

POST /fonts/Texta-LightItalic.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7d54-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32084
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=81
Connection: Keep-Alive
Content-Type: application/font-woff

widget.poste.it/fonts/Texta-Regular.woff

62.241.5.94

200 OK

32 kB

URL HTTP/1.1
widget.poste.it/fonts/Texta-Regular.woff
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Size
32 kB (32376 bytes)
Hash
8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2

HTTP Headers

POST /fonts/Texta-Regular.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7e78-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32376
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=80
Connection: Keep-Alive
Content-Type: application/font-woff

widget.poste.it/css/chat_custom.css

62.241.5.94

200 OK

1.8 kB

URL HTTP/1.1
widget.poste.it/css/chat_custom.css
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
ASCII text, with CRLF line terminators
Size
1.8 kB (1813 bytes)
Hash
b5630f2b6ef609755051582891d6f95f
ff9df70fc8ca0653c0fade1e7e062813785d5cec
0c4b8459c2b949886ae64971a9d3f2555b680dd1c1fa36a0b42dbca2a21bd053

HTTP Headers

GET /css/chat_custom.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "715-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 1813
Access-Control-Allow-Origin: 
Keep-Alive: timeout=278, max=20
Connection: Keep-Alive
Content-Type: text/css

widget.poste.it/css/chat_common.css

62.241.5.94

200 OK

12 kB

URL HTTP/1.1
widget.poste.it/css/chat_common.css
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
ASCII text, with CRLF line terminators
Size
12 kB (11516 bytes)
Hash
76f9060cb105221022b473277418b467
e2bfcc835a6c8bcf4ceb9e1da7b731591cf6b723
b6343a0f5e0b6b1955a69ca6fb1ef749bbeb18c633e08cff39689d773a0fa53f

HTTP Headers

GET /css/chat_common.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "2cfc-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 11516
Access-Control-Allow-Origin: 
Keep-Alive: timeout=278, max=17
Connection: Keep-Alive
Content-Type: text/css

widget.poste.it/css/widgets.min.css

62.241.5.94

200 OK

118 kB

URL HTTP/1.1
widget.poste.it/css/widgets.min.css
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
ASCII text, with very long lines (64898), with CRLF line terminators
Size
118 kB (118490 bytes)
Hash
8a02a55585ef2630988a32645ce68be2
00d11de0e5150cf3d35629f2bc52af00bfce4ee0
f0cf34169482d5d1aa31c2910fea9ad33979b7bf52a1202ab83d3de29843d8a3

HTTP Headers

GET /css/widgets.min.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "1ceda-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 118490
Access-Control-Allow-Origin: 
Keep-Alive: timeout=278, max=30
Connection: Keep-Alive
Content-Type: text/css

widget.poste.it/js/lib/widgets.min.js

62.241.5.94

200 OK

839 kB

URL HTTP/1.1
widget.poste.it/js/lib/widgets.min.js
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
ASCII text, with very long lines (64898), with CRLF line terminators
Size
839 kB (839332 bytes)
Hash
82374b6c20855319bda55472e83e82b4
9067439be48ff638c5ff5ef790ce12bc08b21414
18fc4c844d845b1c289d1d1d324ff6e7abf51785619c9a60d9e245b2100c256a

HTTP Headers

GET /js/lib/widgets.min.js HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:55 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "ccea4-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 839332
Access-Control-Allow-Origin: 
Keep-Alive: timeout=278, max=32
Connection: Keep-Alive
Content-Type: application/javascript

widget.poste.it/img/button_openChat.png

62.241.5.94

200 OK

20 kB

URL HTTP/1.1
widget.poste.it/img/button_openChat.png
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20107 bytes)
Hash
7305cd2f12691ddda291fb1b21bd4347
5b3f944fc435c3ad74f138942aaf50ff159cbee0
25fbb9e5014408868cbd5d87ac48192ddddcb3b32ca3cdfb8e3efa0ebba2e251

HTTP Headers

GET /img/button_openChat.png HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.poste.it/css/chat_custom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:56 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "4e8b-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 20107
Access-Control-Allow-Origin: 
Keep-Alive: timeout=278, max=29
Connection: Keep-Alive
Content-Type: image/png

widget.poste.it/fonts/Texta-Regular.woff

62.241.5.94

200 OK

32 kB

URL HTTP/1.1
widget.poste.it/fonts/Texta-Regular.woff
IP
62.241.5.94:0
ASN
#15720 Poste Italiane S.p.A.

File type
Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Size
32 kB (32376 bytes)
Hash
8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2

HTTP Headers

GET /fonts/Texta-Regular.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web.info.app.79-137-206-206.cprapid.com
Connection: keep-alive
Referer: https://widget.poste.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:56 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7e78-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32376
Access-Control-Allow-Origin: https://web.info.app.79-137-206-206.cprapid.com
Keep-Alive: timeout=278, max=79
Connection: Keep-Alive
Content-Type: application/font-woff

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js

79.137.206.206

200 OK

0 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 6831
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

waust.at/d.js

104.26.4.7

200 OK

0 B

URL HTTP/2
waust.at/d.js
IP
104.26.4.7:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:29:52 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:30 GMT
etag: W/"63c04122-3972"
expires: Thu, 30 Mar 2023 01:50:03 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
age: 2389
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wVDtSsj4lcmo77q9Omq57YLYZnVUhtP%2BxtOlnAcS9A5asKtM2%2B6mUelld6WnkIZv7YNEl5YonR2vr1teABmS2NecVfT5Rusf0zOn3j5KmVjdc7vmdCjTNR6s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7af4b00ade94b518-OSL
content-encoding: br
X-Firefox-Spdy: h2

web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/bootstrap.js

79.137.206.206

200 OK

0 B

URL HTTP/1.1
web.info.app.79-137-206-206.cprapid.com/it/risorse_dt/bootstrap/js/bootstrap.js
IP
79.137.206.206:0
ASN
#12695 LLC Digital Network

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /it/risorse_dt/bootstrap/js/bootstrap.js HTTP/1.1
Host: web.info.app.79-137-206-206.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/it/
Cookie: COOKIE_KEY=168005699143
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 02:29:52 GMT
Server: Apache
Last-Modified: Thu, 28 Apr 2022 12:21:22 GMT
Accept-Ranges: bytes
Content-Length: 69214
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

t.dtscout.com/i/?l=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&j=

141.101.120.11

200 OK

0 B

URL HTTP/2
t.dtscout.com/i/?l=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&j=
IP
141.101.120.11:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /i/?l=https%3A%2F%2Fweb.info.app.79-137-206-206.cprapid.com%2Fit%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:29:53 GMT
content-type: application/javascript
x-s: ger1
set-cookie: m=1; Domain=dtscout.com; Expires=Wed, 29-Mar-2023 03:53:13 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Wed, 29-Mar-2023 06:29:53 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1680056993; Domain=dtscout.com; Expires=Fri, 07-Jul-2023 02:29:53 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.597
expires: Wed, 29 Mar 2023 02:29:52 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HFTJuYUecz1i5NLa%2BAu5k1vfPFJhfkVRj6J5GCHTQYAQmW6utAaW9Fum7oqBMn2%2B7MXyoh8M5Quy4BOUqf0V1ompEn7rRo3PdguPV3FfAjiWG19DGYAUspCjSroXts0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4b00f18a52e0b-ARN
content-encoding: br
X-Firefox-Spdy: h2

t.dtscout.com/pv/?_a=v&_h=web.info.app.79-137-206-206.cprapid.com&_ss=4odw32lrll&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=60l8&_cb=_dtspv.c

141.101.120.11

200 OK

0 B

URL HTTP/2
t.dtscout.com/pv/?_a=v&_h=web.info.app.79-137-206-206.cprapid.com&_ss=4odw32lrll&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=60l8&_cb=_dtspv.c
IP
141.101.120.11:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /pv/?_a=v&_h=web.info.app.79-137-206-206.cprapid.com&_ss=4odw32lrll&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=60l8&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web.info.app.79-137-206-206.cprapid.com/
Cookie: m=1; oa=1; df=1680056993
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 29 Mar 2023 02:29:53 GMT
content-type: application/javascript
x-t: 0.137
x-c: 0
expires: Wed, 29 Mar 2023 02:29:52 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c0DksWobdR3DEVEa1QpsT6sb%2B%2BlOARKgUMdbpXAFujy99jYbLNZA%2BIkBqyRnq9eH%2BWGB7SGn9EjTmw9lDLRwsab3mBTent%2FzIjRV9gk8S173whVNGctn8t6x0KCgBXM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7af4b00fc9202e0b-ARN
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (47)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML