my-nexi-pay.mypop3.org/
45.125.66.70200 OK 120 B IP 45.125.66.70:0
ASN #133398 Tele Asia Limited
File type ASCII text, with no line terminators
Hash 7c0bde3a8f9710465f306038610055b9
965b90ce1eb8c916cfe84bd3bc9bb59245834b50
cfd6c7b91ed696996645b99b8355cf692c193b8f201d645c8a9667e6f9d6781e
Analyzer Verdict Alert urlquery DynDNS domain detected
fortinet Malware
GET / HTTP/1.1
Host: my-nexi-pay.mypop3.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:34 GMT
Server: Apache/2.4.18 (Ubuntu)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 120
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 01:41:33 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Qkx7Rt1lx8kKGAnEfxSI543RsGM7OyFuLBARxVNe51R8zsjqQSBJTQ==
Age: 2461
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YYS3GvSrUodE8g43yJaa9cpW6UsdO3VNOs9zugk9vVcjBeB0Dbf1DA==
age: 4037
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5248
Expires: Fri, 02 Sep 2022 03:50:02 GMT
Date: Fri, 02 Sep 2022 02:22:34 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 02:22:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 987b7b68ec723f9538d45e4a6217c5dd
4ff5f0d566431c37610185f2ac84df7d1bb91aa9
355bc237bd327018958ecb4dd06c6624c0266dc71293d8105c29a5af7b734494
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 06 Sep 2022 00:49:01 GMT
ETag: "4ff5f0d566431c37610185f2ac84df7d1bb91aa9"
Last-Modified: Fri, 02 Sep 2022 00:49:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7442c75dfafeb523-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 02 Sep 2022 01:38:16 GMT
Cache-Control: max-age=3600
Expires: Fri, 02 Sep 2022 02:09:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rRYVBbtNQUyyPgPDnOWQeUgDzXykK9SemsRHMnmru8p8kfbxHdlbeA==
Age: 2659
assets.adobedtm.com/9dd8bdfc74c3/cd37bd923e2c/launch-a40afd213c32.min.js
23.38.200.237200 OK 71 kB URL HTTP/2 assets.adobedtm.com/9dd8bdfc74c3/cd37bd923e2c/launch-a40afd213c32.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32746)
Hash b3eb0d3a836e484762db3bf7ef3458c3
c6c2817370be9a81191d96ad2e5b7ce108fc86e3
1dba577a90c44faa7488c7d16b69d3d08457723dc29b7acf61acb240782b1129
GET /9dd8bdfc74c3/cd37bd923e2c/launch-a40afd213c32.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "8ea4dd166972a807f089f169e8c4d349:1649164291.270241"
last-modified: Tue, 05 Apr 2022 13:11:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3600
expires: Fri, 02 Sep 2022 03:22:35 GMT
date: Fri, 02 Sep 2022 02:22:35 GMT
content-length: 70944
access-control-allow-origin: https://www.nexi.it
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4963
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Fri, 02 Sep 2022 00:59:52 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7040539fecb815b0cc84c15e3e2e99df
761de2d6da86cb1df6bb1fdd85ad71f75a825bb4
b1edf3547f6db4798d46a116924942acc48ad56da1fd61f9951acf93053a6578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
23.38.200.237200 OK 12 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32768)
Hash e616df092766c7ab7904619f971a35cc
a960429c42802a43e3ce728fc4d1e8bdab10e606
082ae7647bfdb639846791e5c0ca39b96544dff3aed0c365973c9589cd5b091e
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
expires: Fri, 02 Sep 2022 03:22:35 GMT
date: Fri, 02 Sep 2022 02:22:35 GMT
content-length: 12163
cache-control: no-cache
access-control-allow-origin: https://www.nexi.it
timing-allow-origin: *
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MVCHKSD
142.250.74.72200 OK 90 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MVCHKSD
IP 142.250.74.72:0
File type ASCII text, with very long lines (36044)
Hash 14c2c372453c83f7ceab215fe8a542ed
4bb7cf70212c885e273da166a8b1eaf433806c6f
b9c2f3d92a1a42c724f2c4cd89b61693d9e9b3b42a78948c4561dc56d326e582
GET /gtm.js?id=GTM-MVCHKSD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Sep 2022 02:22:35 GMT
expires: Fri, 02 Sep 2022 02:22:35 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 90494
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7040539fecb815b0cc84c15e3e2e99df
761de2d6da86cb1df6bb1fdd85ad71f75a825bb4
b1edf3547f6db4798d46a116924942acc48ad56da1fd61f9951acf93053a6578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b83499acb9d9084e2ae6344d7e4ffd8e
fec88d25ed11714853c1e46f6e3799bcebfe38d5
9b3f32dd934f53283b161aa93e4829bed6dd90e162bd0a9d38eec60b1b91c5ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4521
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Fri, 02 Sep 2022 01:07:15 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=6A724E255ED5F2A60A495E0E%40AdobeOrg&d_nsid=0&ts=1662085354896
52.49.126.217200 OK 315 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=6A724E255ED5F2A60A495E0E%40AdobeOrg&d_nsid=0&ts=1662085354896
IP 52.49.126.217:0
File type JSON data\012- , ASCII text, with very long lines (371), with no line terminators
Hash 427987bfe0befeb75d1f9e9c8e244156
027b28767bf09a648b334d8ee01744ba5fc9e5ac
5f70b7e4b358f1599d42904e5acc654f66fb2b81453694c8fcea57268cc867d8
GET /id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=6A724E255ED5F2A60A495E0E%40AdobeOrg&d_nsid=0&ts=1662085354896 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.nexi.it
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v038-0f7693ade.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=50739723843328575321130399173706975298; Max-Age=15552000; Expires=Wed, 01 Mar 2023 02:22:35 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: HFw9kYykTzs=
Content-Length: 315
Connection: keep-alive
www.nexi.it/etc/designs/icbpi-common/libs/jquery-3.5.1.min.js
185.198.117.126200 OK 90 kB URL HTTP/1.1 www.nexi.it/etc/designs/icbpi-common/libs/jquery-3.5.1.min.js
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 9ac39dc31635a363e377eda0f6fbe03f
29fa5ad995e9ec866ece1d3d0b698fc556580eee
9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38
GET /etc/designs/icbpi-common/libs/jquery-3.5.1.min.js HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Tue, 26 Jul 2022 13:18:15 GMT
ETag: "15d84-5e4b52210ebb2"
Accept-Ranges: bytes
Content-Length: 89476
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/etc/designs/nexi/clientlib-node/style.css
185.198.117.126200 OK 129 kB URL HTTP/1.1 www.nexi.it/etc/designs/nexi/clientlib-node/style.css
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type ASCII text, with very long lines (56247), with CRLF, LF line terminators
Size 129 kB (128954 bytes)
Hash 5c1cf7b3ba59e2f5e00a20f70e62d5c9
6a1136a71434bdf05ce4a029b679f0b57c04a99b
f8e3795dd0909b7f3b1ca933e0257f83d52f2913273993babcc6c4be1ad2b886
GET /etc/designs/nexi/clientlib-node/style.css HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:42 GMT
ETag: "8647c-5e766df47b53d"
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Content-Encoding: gzip
Transfer-Encoding: chunked
push.services.mozilla.com/
52.39.242.22101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.242.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ud4Zu5zSzSgeamqDtpa/qg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /c9t9Rt9amnqrK6WmqwoAUVUlPg=
www.nexi.it/content/dam/nexi/new-login-2019/loghi/logo--light-double.svg
185.198.117.126200 OK 1.5 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/new-login-2019/loghi/logo--light-double.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 77ef18d95472ac80e6e86cf40daf8d4e
9289a4e6397fb8374db9532c00b684d0568c9e2c
c37a1253313f01ecf7b8d5ac83025a8059d161d955ecbe5254c99d4edf6989fc
GET /content/dam/nexi/new-login-2019/loghi/logo--light-double.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:50 GMT
ETag: "5c4-5e766dfc13b13"
Accept-Ranges: bytes
Content-Length: 1476
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/content/dam/nexi/new-login-2019/icons/google_play.svg
185.198.117.126200 OK 25 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/new-login-2019/icons/google_play.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (24914)
Hash 9f366adad75cc2c3bf7d704939967a7b
54264a40ad66760e85e4a7407f78a94ccfe754d1
ed313341bbd73a61ddacf268f494c9f85cb84e46f8954bde8a5260e21174f340
GET /content/dam/nexi/new-login-2019/icons/google_play.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Mon, 29 Aug 2022 20:12:00 GMT
ETag: "62ff-5e766e05d4eac"
Accept-Ranges: bytes
Content-Length: 25343
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/content/dam/nexi/new-login-2019/icons/app_store.svg
185.198.117.126200 OK 16 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/new-login-2019/icons/app_store.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1295)
Hash d11b30ed05c8b249efe85b47532305c4
e2be0738062a412e6a31b6bc67ea983b1db98732
5e3c6b5c51b5fbf7691fa5d0adbcd05be694548d5f03aee7d59d7a8b092b5d27
GET /content/dam/nexi/new-login-2019/icons/app_store.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:24 GMT
ETag: "3dc8-5e766de37f74d"
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Transfer-Encoding: chunked
www.nexi.it/content/dam/nexi/img/icone/svg/icon-close.svg
185.198.117.126200 OK 1.6 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/img/icone/svg/icon-close.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6a2b6418343e69fd866ebb827f33a2d6
4b6842649792e108920c211c2dca658e6f429734
f1926ee7a205ed96afdd1b8a74d845d21a64dadb6ef76e672558e5b84b58274c
GET /content/dam/nexi/img/icone/svg/icon-close.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:38 GMT
ETag: "628-5e766df15fac5"
Accept-Ranges: bytes
Content-Length: 1576
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/content/dam/nexi/new-login-2019/icons/huawei-store.svg
185.198.117.126200 OK 22 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/new-login-2019/icons/huawei-store.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (18654)
Hash c26df35adcfe9f354a77777ea613f41d
45f3282c28ae184c6a1811c21e08526c6c7dc45f
a22ea2c13b8179c675566ef9ce7a77c663056b6147674c851d898b21f6c68ee6
GET /content/dam/nexi/new-login-2019/icons/huawei-store.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:38 GMT
ETag: "5675-5e766df1527d5"
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Transfer-Encoding: chunked
www.nexi.it/content/dam/nexi/img/icone/svg/icon-phone.svg
185.198.117.126200 OK 4.0 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/img/icone/svg/icon-phone.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ba155a06b6ed2efff975f38208ca03a7
e75f40d95197f19c38d900ac7c749857fbdb93f7
7e6f9ccce4ea514b53fb258d72b5682c74d1e81ef9148d3c406fbd03cfd56919
GET /content/dam/nexi/img/icone/svg/icon-phone.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:39 GMT
ETag: "fb0-5e766df175acc"
Accept-Ranges: bytes
Content-Length: 4016
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/content/dam/nexi/img/icone/svg/icon-close-white.svg
185.198.117.126200 OK 1.6 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/img/icone/svg/icon-close-white.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e61ea756f9b2ae7f774048dfbc85f1df
d50555f8f6e6882e1031332a76a48ab9709f13b1
32cde70fcb4ed6949904cec5ef9065adce2196b3e8216bb5874019a9efe96edd
GET /content/dam/nexi/img/icone/svg/icon-close-white.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:39 GMT
ETag: "637-5e766df18b5fd"
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Transfer-Encoding: chunked
www.nexi.it/content/dam/nexi/img/icone/svg/icon-phone-warning-white.svg
185.198.117.126200 OK 3.9 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/img/icone/svg/icon-phone-warning-white.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8ca4186994be106eea6423d4f2d9af10
4963eaacbdf6ba1cf7c529694ec488eea950bc92
c8e1f312e86564f3d293bb04806f55d4296cc3342321655bb738d7d61eeeef22
GET /content/dam/nexi/img/icone/svg/icon-phone-warning-white.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:39 GMT
ETag: "f29-5e766df1a1dd4"
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Transfer-Encoding: chunked
www.nexi.it/content/dam/nexi/img/icone/svg/ico-down-blue.svg
185.198.117.126200 OK 898 B URL HTTP/1.1 www.nexi.it/content/dam/nexi/img/icone/svg/ico-down-blue.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 1b2dba4a014e4d4c5a8eec84e206663f
256506879ea3d3c18b65439a36611fb759893283
d5ded7a91066c885b90252eb9849575a6c2f2e9c87d8748c496af886b731d3f8
GET /content/dam/nexi/img/icone/svg/ico-down-blue.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:12:09 GMT
ETag: "382-5e766e0e04ecb"
Accept-Ranges: bytes
Content-Length: 898
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/cookieservice/nexi-it/style.css
185.198.117.126200 OK 6.8 kB URL HTTP/1.1 www.nexi.it/cookieservice/nexi-it/style.css
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
Hash a44e7ee77847a1fc51c3d4fd03121997
38c8466690ee68cf72ade2deb45bbd6eb50848fe
a16ecf05a07718b0abed8aa88376dc930fad915ca41e0565048d74741b431eaf
GET /cookieservice/nexi-it/style.css HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:35 GMT
ETag: "52c6-5e766dedc82de"
Accept-Ranges: bytes
Content-Length: 6775
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Content-Encoding: gzip
www.nexi.it/content/dam/nexi/img/icone/svg/icon-blocked.svg
185.198.117.126200 OK 935 B URL HTTP/1.1 www.nexi.it/content/dam/nexi/img/icone/svg/icon-blocked.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c3034188332fd8391df588c244a10a55
8a95344a40342edf303b04b994f1787dd2207efb
92751c1749c593c1ad2a7b61ff640b0dbb1a4c32db1981a523e5432cc35a029f
GET /content/dam/nexi/img/icone/svg/icon-blocked.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:12:07 GMT
ETag: "3a7-5e766e0c61c3a"
Accept-Ranges: bytes
Content-Length: 935
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
185.198.117.126200 OK 942 kB URL HTTP/1.1 www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2795), with CRLF, LF line terminators
Size 942 kB (941789 bytes)
Hash 8ff82b3e52efbeaabb850d5952cc26e7
cc2fc531f61a90b398810a4272f406bf2a0735a8
b5d524d9a2524dabc48288aea56c39b25fba552fb8e6b9a48527a99dbef48f42
GET /login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:35 GMT
Last-Modified: Mon, 29 Aug 2022 22:02:12 GMT
ETag: "e5e00-5e7686a720d40"
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; Path=/; Domain=.nexi.it; Expires=Fri, 02-Sep-2022 04:22:35 GMT
ncsi=8d4ad44f59a8e605329af9c4228d865c; Path=/; Domain=nexi.it; Expires=Fri, 02-Sep-2022 02:52:35 GMT
binc=0c9fe9a8988856af2781a8f37eddbbed; Path=/; Domain=nexi.it; Expires=Sat, 02-Sep-2023 02:22:35 GMT
TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; path=/; domain=nexi.it
uniqueid: 37b213c813752f77491ebe2ab2d60f0d
Transfer-Encoding: chunked
www.nexi.it/etc/designs/nexi/clientlib-node/fonts/karbon-semibold-webfont.woff
185.198.117.126200 OK 25 kB URL HTTP/1.1 www.nexi.it/etc/designs/nexi/clientlib-node/fonts/karbon-semibold-webfont.woff
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type Web Open Font Format, TrueType, length 25032, version 1.0\012- data
Hash 4e893a43d47ba798763b8990f9e07180
9ac339e30beac18d0a4aaecce5b66a723ec46532
0696904b24ea3bdaf9ee857ded71391ccd44d40b84334571a5c5e71f93b4a0c6
GET /etc/designs/nexi/clientlib-node/fonts/karbon-semibold-webfont.woff HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.nexi.it/etc/designs/nexi/clientlib-node/style.css
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:31 GMT
ETag: "61c8-5e766deaa33f6"
Accept-Ranges: bytes
Content-Length: 25032
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/font-woff
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/etc/designs/nexi/clientlib-node/fonts/karbon-regular-webfont.woff
185.198.117.126200 OK 24 kB URL HTTP/1.1 www.nexi.it/etc/designs/nexi/clientlib-node/fonts/karbon-regular-webfont.woff
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type Web Open Font Format, TrueType, length 24308, version 1.0\012- data
Hash e6b850dccbd545df306ea2f25452a124
08bdf0f61b8316130f85a2725dcbd7eb5a6dc750
ade827343407a2a81168acb91cabc1ed7d83de7010966dd1b7f06f4e0344b9e6
GET /etc/designs/nexi/clientlib-node/fonts/karbon-regular-webfont.woff HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.nexi.it/etc/designs/nexi/clientlib-node/style.css
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:55 GMT
ETag: "5ef4-5e766e01277f3"
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/font-woff
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Transfer-Encoding: chunked
www.nexi.it/etc/designs/nexi/clientlib-node/fonts/karbon-medium-webfont.woff
185.198.117.126200 OK 25 kB URL HTTP/1.1 www.nexi.it/etc/designs/nexi/clientlib-node/fonts/karbon-medium-webfont.woff
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type Web Open Font Format, TrueType, length 24956, version 1.0\012- data
Hash 034fa219154a0eed22d6ef6ebd89c3a9
c8574cf3bfc69f53392d916aef929ccc882a9386
4061275193aa1a5245941f7768b307219fc0f86f44dc1cf4d293168b93a72259
GET /etc/designs/nexi/clientlib-node/fonts/karbon-medium-webfont.woff HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.nexi.it/etc/designs/nexi/clientlib-node/style.css
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:43 GMT
ETag: "617c-5e766df580cd5"
Accept-Ranges: bytes
Content-Length: 24956
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/font-woff
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 67921e2bd7c620bdd4db5ed1e73d3146
1deaa030ab490c63f94bde4c7ada5e2f849fb506
7fcee2496cdc63c9779941621d9e61acd006910947ccb6c7e98f383b0bf4574c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nexi.it/content/dam/nexi/new-login-2019/loghi/logo--dark-double.svg
185.198.117.126200 OK 1.5 kB URL HTTP/1.1 www.nexi.it/content/dam/nexi/new-login-2019/loghi/logo--dark-double.svg
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ad5bc83de3f4aad3b6447bf24ef7c1a1
fc47fd659f9a887177992e39bdaefda20e9ae65f
64e35e6e3e1969550eda7af80ded7e8e7ffdc15dd6a2bfdc4ed9bf1cb82cc762
GET /content/dam/nexi/new-login-2019/loghi/logo--dark-double.svg HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:12:07 GMT
ETag: "5c8-5e766e0c67612"
Accept-Ranges: bytes
Content-Length: 1480
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.google.com/recaptcha/api.js
142.250.74.164200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 20ea0fc27ddf01e53ed8882484fc01de
0ab2af2f82275ff31c78701aeaad55f702ac8a40
f6bd5bccba08ad51ba7be815ff11f12155c7f507a37c690075b3e01dc25d6fcd
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 02 Sep 2022 02:22:36 GMT
date: Fri, 02 Sep 2022 02:22:36 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.nexi.it/g78f9/in/37b213c813752f77491ebe2ab2d60f0d/2/1?t=1662085355
185.198.117.126200 OK 5.3 kB URL HTTP/1.1 www.nexi.it/g78f9/in/37b213c813752f77491ebe2ab2d60f0d/2/1?t=1662085355
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type ASCII text, with very long lines (11179), with no line terminators
Hash f9b8ea8e297968ef3b05c335c437ff32
e3bf1b2fcb804e606db19a8f5150c71171b5ffeb
4d3266e925aae9fc6a013724d54f4f720981710ed9180cb03778c6e0a31b9e5b
GET /g78f9/in/37b213c813752f77491ebe2ab2d60f0d/2/1?t=1662085355 HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Content-Type: text/javascript; charset=utf-8
Cache-Control: no-cache, no-store, proxy-revalidate, no-transform, must-revalidate
Pragma: no-cache
Expires: 0
Vary: Accept-Encoding
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Content-Encoding: gzip
Transfer-Encoding: chunked
www.nexi.it/cookieservice/nexi-it/content.ckscript.js
185.198.117.126200 OK 81 kB URL HTTP/1.1 www.nexi.it/cookieservice/nexi-it/content.ckscript.js
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type Unicode text, UTF-8 text, with very long lines (9056)
Hash 0086b1d5a24deda2c6948cf98c1204c2
482b164ae2967c8dd8dbb622a29b49e9cc347d00
985d09a4efadc95d6807e63c203ebac79f5d7533de4109adf07dbc6ba9d2b72e
GET /cookieservice/nexi-it/content.ckscript.js HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:26 GMT
ETag: "13da0-5e766de572b95"
Accept-Ranges: bytes
Content-Length: 81312
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nexipayments.demdex.net/dest5.html?d_nsid=0
52.215.111.225200 OK 2.8 kB URL HTTP/1.1 nexipayments.demdex.net/dest5.html?d_nsid=0
IP 52.215.111.225:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: nexipayments.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Fri, 2 Sep 2022 02:22:36 GMT
DCS: dcs-prod-irl1-2-v038-000197fe5.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Wed, 3 Aug 2022 12:17:13 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: Itr99qttTLk=
transfer-encoding: chunked
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-2EQBRC1CMY>m=2oe8v0&_p=237736706&tt=external&cid=252689493.1662085355&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&dt=%2Flogin-titolari.html&sid=1662085355&sct=1&seg=0&dl=https%3A%2F%2Fwww.nexi.it%2Flogin-titolari.html%3Fhttps%3A%2F%2Fwww.nexi.it%2Fprivati%2Fservizi%2Farea-personale.html&en=page_view&_fv=1&_nsi=1&_ss=1&epn.is_internal_traffic=0&epn.device_pixel_ratio=1&ep.cookie_policy_acceptance=not%20accepted&ep.container_id=GTM-MVCHKSD&epn.is_nb_customer=0
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-2EQBRC1CMY>m=2oe8v0&_p=237736706&tt=external&cid=252689493.1662085355&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&dt=%2Flogin-titolari.html&sid=1662085355&sct=1&seg=0&dl=https%3A%2F%2Fwww.nexi.it%2Flogin-titolari.html%3Fhttps%3A%2F%2Fwww.nexi.it%2Fprivati%2Fservizi%2Farea-personale.html&en=page_view&_fv=1&_nsi=1&_ss=1&epn.is_internal_traffic=0&epn.device_pixel_ratio=1&ep.cookie_policy_acceptance=not%20accepted&ep.container_id=GTM-MVCHKSD&epn.is_nb_customer=0
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2EQBRC1CMY>m=2oe8v0&_p=237736706&tt=external&cid=252689493.1662085355&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&dt=%2Flogin-titolari.html&sid=1662085355&sct=1&seg=0&dl=https%3A%2F%2Fwww.nexi.it%2Flogin-titolari.html%3Fhttps%3A%2F%2Fwww.nexi.it%2Fprivati%2Fservizi%2Farea-personale.html&en=page_view&_fv=1&_nsi=1&_ss=1&epn.is_internal_traffic=0&epn.device_pixel_ratio=1&ep.cookie_policy_acceptance=not%20accepted&ep.container_id=GTM-MVCHKSD&epn.is_nb_customer=0 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.nexi.it
date: Fri, 02 Sep 2022 02:22:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.nexi.it/content/dam/nexi/new-login-2019/img/placeholder_login_portale_privati.png
185.198.117.126200 OK 1.3 MB URL HTTP/1.1 www.nexi.it/content/dam/nexi/new-login-2019/img/placeholder_login_portale_privati.png
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type PNG image data, 1440 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Size 1.3 MB (1294068 bytes)
Hash 9b4f08a7eada2bd2112e81a742f5130d
f571a9a391a86bc0046aa9a299592a65e44cf4f1
4e78d7ff08366ee22738a94a7c0777add9bfa2363548916d32da8387e1c81a1e
GET /content/dam/nexi/new-login-2019/img/placeholder_login_portale_privati.png HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:12:01 GMT
ETag: "13bef4-5e766e070bc4c"
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Transfer-Encoding: chunked
www.nexi.it/etc/designs/nexi/clientlib-node/bundle.js
185.198.117.126200 OK 1.1 MB URL HTTP/1.1 www.nexi.it/etc/designs/nexi/clientlib-node/bundle.js
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type ASCII text, with very long lines (65472)
Size 1.1 MB (1089869 bytes)
Hash 9d606006ec09aaf52ef34c1f5c3450e9
3066ccde6c8e2b8c26ec50ff374e0868c82d5ff7
37e18042907560da2dc851e4958ccf7d6d52ff930cadc7607956110fd796fe5c
GET /etc/designs/nexi/clientlib-node/bundle.js HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:54 GMT
ETag: "10a14d-5e766dffefa3d"
Accept-Ranges: bytes
Content-Length: 1089869
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 24da99bbb6147610a3cb3ea7b826a240
5314c5d75d0cab943686cafea7dc6b4066871056
aff69a9dd0a19991fc9cafa62778c5b8382961f7ac0af625a9d714ce8721ff0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 02 Sep 2022 00:41:12 GMT
expires: Fri, 02 Sep 2022 02:41:12 GMT
cache-control: public, max-age=7200
age: 6084
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nexi.it/etc/designs/nexi/favicon/favicon-16x16.png
185.198.117.126200 OK 300 B URL HTTP/1.1 www.nexi.it/etc/designs/nexi/favicon/favicon-16x16.png
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 200029b5e4fb2ebe6681acdc3c54f558
8f2eda5c64a7cfde221947a29fc6ffb57b11b772
b6a9125da73f90564107299c92997b40c2ddba9bd37272c960b16932d5854e4d
GET /etc/designs/nexi/favicon/favicon-16x16.png HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:12:08 GMT
ETag: "12c-5e766e0dbc2bb"
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Transfer-Encoding: chunked
www.nexi.it/etc/designs/nexi/favicon/favicon-196x196.png
185.198.117.126200 OK 25 kB URL HTTP/1.1 www.nexi.it/etc/designs/nexi/favicon/favicon-196x196.png
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type PNG image data, 196 x 196, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a0ce25384d4ea5734d25779bc8bd41a
62b5bd3bdeac213d075f7de99a2b96283717574e
77d497a3c716b3fb900f01e92bc5b6f0928c6040d30a3d88eb8a95df71c625cf
GET /etc/designs/nexi/favicon/favicon-196x196.png HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:36 GMT
Last-Modified: Mon, 29 Aug 2022 20:11:46 GMT
ETag: "627f-5e766df8412d3"
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET, HEAD
Cache-Control: max-age=300, public
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Transfer-Encoding: chunked
www.gstatic.com/recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (613)
Size 158 kB (157730 bytes)
Hash d27f59fd0d124cb313fe64dd5ba8b26c
05da0ecd3970a5a568305a51f1e38945cca7ab39
09b3f5846ef9e14fd2fb99c280cee6a25fc4c7c96e050e70cc754a96625de485
GET /recaptcha/releases/mBwkfBPLFWI0ygbsp8eJNMkw/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157730
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 16:27:28 GMT
expires: Tue, 29 Aug 2023 16:27:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 04:01:21 GMT
content-type: text/javascript
age: 294908
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.nexi.it/g78f9/in/37b213c813752f77491ebe2ab2d60f0d/3/1
185.198.117.126200 OK 43 B URL HTTP/1.1 www.nexi.it/g78f9/in/37b213c813752f77491ebe2ab2d60f0d/3/1
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /g78f9/in/37b213c813752f77491ebe2ab2d60f0d/3/1 HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:37 GMT
Content-Type: image/gif
Cache-Control: no-cache, no-store, proxy-revalidate, no-transform, must-revalidate
Pragma: no-cache
Expires: 0
Content-Length: 43
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
Vary: Accept-Encoding
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3702
Expires: Fri, 02 Sep 2022 03:24:19 GMT
Date: Fri, 02 Sep 2022 02:22:37 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash bd238958ab99478d68a7c3b515d3f5ca
634a7bc0f5bc12a74ea1fcb09411cd32f18af038
2fe36388dbd1b04954941053ca0dcd4d46f8f24e57576d0db483236581d20447
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 02:22:37 GMT
Last-Modified: Fri, 02 Sep 2022 00:47:47 GMT
Server: ECS (dcb/7F17)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z3D8jHVTy7Z2ZNI1U9joZW9dDiwZwvNzpmncCZmuZ3TMCJ02jWQkbg==
Age: 5690
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3702
Expires: Fri, 02 Sep 2022 03:24:19 GMT
Date: Fri, 02 Sep 2022 02:22:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3702
Expires: Fri, 02 Sep 2022 03:24:19 GMT
Date: Fri, 02 Sep 2022 02:22:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3702
Expires: Fri, 02 Sep 2022 03:24:19 GMT
Date: Fri, 02 Sep 2022 02:22:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
age: 16011
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cab49f59207f816d98a21cd3fc2c37d1
8a9278f8ff5d149420673649878ca1ee266a0783
aebe0748f049bcb801be83459d4bae66b9c1453de3b0ea7e6a63bea88b6e7a5a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13104
x-amzn-requestid: da627f0c-5cde-4a37-878c-dcada8a25f64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzL6_EYoIAMFiYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631126ac-10dbcb432e6d1af46cffaefe;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4Ve7euVpAusbqUYkx-vWIBLDbIidnuXDqMDG0LRpu40sXh6a2fEPJA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:06:50 GMT
age: 15347
etag: "8a9278f8ff5d149420673649878ca1ee266a0783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdec8409-e401-4b73-bbb3-47aa626edd42.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdec8409-e401-4b73-bbb3-47aa626edd42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37fee36d8fd409ea63dd4a26dee39510
6b00992edf40eb957e6900d592ebcb0c5e611944
a36b1bf6a3bedcb0d842b29538ce966ebb37e5c371d5dca74ee1634f29799065
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdec8409-e401-4b73-bbb3-47aa626edd42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9200
x-amzn-requestid: 5a10ba85-af61-4f8d-a293-38d8c028fb9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTWaEzIIAMF_zQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c65c2-17f7c0552179175c3400a90d;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:07:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Bj242vaxQJa4JwOdMcIsAEpSVR4fZP8dfg4zvGkPnFnqHEu2jGOH9A==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:56:35 GMT
etag: "6b00992edf40eb957e6900d592ebcb0c5e611944"
content-type: image/jpeg
age: 12362
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c1e7f6c9e17585905fdbe9ae4da50b
67192f5be476ac4dada66dc9fbe26469d62e2d78
21ca880b36bbb7791f8df2bf9830f11a960692123dd6dde5be42bda004dc428b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9642
x-amzn-requestid: 52c698d7-6419-4614-9c53-68a265266337
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbEvgoAMFkKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-547a72850cce71da013383f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I3pDTq3EeJJtzJFsAFaym7cV5nCrwFailDRzgA3QkAFOYj3xV43v2w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 17111
etag: "67192f5be476ac4dada66dc9fbe26469d62e2d78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e10519422b7ff91c72bcf2234cea36cf
63cff2232383d9d7f2371d1f60cf7923b629fc82
71a4bfc0031e0f6152c441f4bf413c6e953f38a587a95900f3a6c63beecafb4b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12204
x-amzn-requestid: 5293c66e-68d3-472a-a6d2-69f161262f26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMLDGK6oAMFTzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112713-66d01d9c2d12d55c465c5108;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:41:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6b6K6qPPzI8g3_MADZH84JtcPaDP00roz3A-6QEpbUY3boLIPOatjg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:49:06 GMT
age: 16411
etag: "63cff2232383d9d7f2371d1f60cf7923b629fc82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 17111
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cm.everesttech.net/cm/dd?d_uuid=50739723843328575321130399173706975298
34.248.32.199302 0 B URL HTTP/1.1 cm.everesttech.net/cm/dd?d_uuid=50739723843328575321130399173706975298
IP 34.248.32.199:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/dd?d_uuid=50739723843328575321130399173706975298 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Fri, 02 Sep 2022 02:22:37 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~YxFo7QAAAH_RogN-; Domain=.everesttech.net; Expires=Sat, 02-Sep-2023 02:22:37 GMT; Path=/
everest_session_v2="YxFo7QAAAH@RowN-"; Version=1; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=YxFo7QAAAH_RogN-
Server: AMO-cookiemap/1.1
www.nexi.it/api/services/nexi-utilities-service/prelogin/retrieve-cookie-policy
185.198.117.126200 OK 4.7 kB URL HTTP/1.1 www.nexi.it/api/services/nexi-utilities-service/prelogin/retrieve-cookie-policy
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type JSON data\012- , ASCII text, with very long lines (4693), with no line terminators
Hash 87e16f6b4ba9e9e7290bdd493f5c752c
767e1cfed76427d5fa028b234973da78def3811e
f788e376e14be4b187702e7cbdb6d14710e4e84247b430fc0bf83046f21f4e88
POST /api/services/nexi-utilities-service/prelogin/retrieve-cookie-policy HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
pragma: no-cache
cache-control: no-cache
cookie-origin: https://www.nexi.it
Application: sp
Env: PRODUCTION
Client-Version: web
Channel: web
Locale: it
X-Requested-With: XMLHttpRequest
Content-Length: 60
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.nexi.it
X-Application-Context: zuul-gateway:production:4000
Content-Type: application/json;charset=UTF-8
Content-Length: 4693
Date: Fri, 02 Sep 2022 02:22:37 GMT
Set-Cookie: wpamm_cookie=22871524266710712682556000000000000000000000; Max-Age=2147483647; Path=/CHP/api/services/nexi-utilities-service/prelogin; HttpOnly; Domain=www.nexi.it
lb_cookie=rd7o00000000000000000000ffff0a0a0105o8443; expires=Sat, 03-Sep-2022 02:22:37 GMT; path=/
TS01a05a0f=01d37309fc3ae404a748f188438f008533b6d6947f915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa069898dd9c85d2069c08efce46250c2090ca8b9e263178cb68022e9127fb28d8; Path=/; Domain=.www.nexi.it
TS0154e360=01d37309fc68ba04c41d1b8aff64e7254741c475ef915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fab5410242989d12c91effc5050246d7da8b8b6d8cd0d5234934aeb159996a2368; path=/CHP/api/services/nexi-utilities-service/prelogin
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
143.204.55.118200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
IP 143.204.55.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash 0b3d3f4206ab84d8861a8cc4b2ddbe66
4561b7c0419b65db5c1314be2143bd1734e88d89
ec42652b198c82469afbe5e6e69312a25425c1fd38d379cf3761b328ecd48e4a
GET /box-1ada912494ba7fc7aca15fcef1c2a7ae.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 13 Jul 2022 08:33:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "0b3d3f4206ab84d8861a8cc4b2ddbe66"
last-modified: Wed, 13 Jul 2022 08:32:20 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JOwZcYFCt0s8Cjh0Ru1WEfgvUDfUyCkM_vAKTRsdkITAIilnx5pKfw==
age: 4384171
X-Firefox-Spdy: h2
www.nexi.it/content/nexi/it.navs.json?_=1662085356079
185.198.117.126200 OK 60 kB URL HTTP/1.1 www.nexi.it/content/nexi/it.navs.json?_=1662085356079
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (59645), with no line terminators
Hash 8fe60b3f1b7b713fd094f25a872e577a
f0e424a0b0c392ed638b1bb674e5e4bd2d6c44b0
a096d1bd981ad253bc8044e913724d139e06e9d9e2b4dc059702658d7b1e8758
GET /content/nexi/it.navs.json?_=1662085356079 HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc3ae404a748f188438f008533b6d6947f915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa069898dd9c85d2069c08efce46250c2090ca8b9e263178cb68022e9127fb28d8; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.2.252689493.1662085355; _gid=GA1.2.2066488474.1662085356; _gat_UA-3681719-1=1; lb_cookie=rd7o00000000000000000000ffff0a0a0105o8443
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:37 GMT
Last-Modified: Thu, 01 Sep 2022 10:24:05 GMT
ETag: "e96b-5e79b03545117"
Accept-Ranges: bytes
Content-Length: 59755
Vary: Accept-Encoding
Access-Control-Allow-Methods: GET, HEAD
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/json
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: ncsi=8d4ad44f59a8e605329af9c4228d865c; Path=/; Domain=nexi.it; Expires=Fri, 02-Sep-2022 02:52:37 GMT
binc=0c9fe9a8988856af2781a8f37eddbbed; Path=/; Domain=nexi.it; Expires=Sat, 02-Sep-2023 02:22:37 GMT
TS01a05a0f=01d37309fc3ae404a748f188438f008533b6d6947f915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa069898dd9c85d2069c08efce46250c2090ca8b9e263178cb68022e9127fb28d8; Path=/; Domain=.www.nexi.it
TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; path=/; domain=nexi.it
uniqueid: da9bf99684086107ff21b8eaac286f9f
www.nexi.it/g78f9/in/37b213c813752f77491ebe2ab2d60f0d/1
185.198.117.126200 OK 0 B URL HTTP/1.1 www.nexi.it/g78f9/in/37b213c813752f77491ebe2ab2d60f0d/1
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g78f9/in/37b213c813752f77491ebe2ab2d60f0d/1 HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
x-as-transport: 6
Content-Length: 291940
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.1.252689493.1662085355
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:37 GMT
Access-Control-Allow-Origin: https://www.nexi.it
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Type: text/plain
Cache-Control: no-cache, no-store, proxy-revalidate, no-transform, must-revalidate
Pragma: no-cache
Expires: 0
Content-Length: 0
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc7022c3f0afe4f7cf7264ab1aecaf71d5915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa8c7b87099f6c7cbb961e4e4bec78e539; Path=/; Domain=.www.nexi.it
www.nexi.it/g78f9/in/da9bf99684086107ff21b8eaac286f9f/8/37b213c813752f77491ebe2ab2d60f0d
185.198.117.126200 OK 43 B URL HTTP/1.1 www.nexi.it/g78f9/in/da9bf99684086107ff21b8eaac286f9f/8/37b213c813752f77491ebe2ab2d60f0d
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /g78f9/in/da9bf99684086107ff21b8eaac286f9f/8/37b213c813752f77491ebe2ab2d60f0d HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc3ae404a748f188438f008533b6d6947f915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa069898dd9c85d2069c08efce46250c2090ca8b9e263178cb68022e9127fb28d8; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.2.252689493.1662085355; _gid=GA1.2.2066488474.1662085356; _gat_UA-3681719-1=1; lb_cookie=rd7o00000000000000000000ffff0a0a0105o8443; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:37 GMT
Content-Type: image/gif
Cache-Control: no-cache, no-store, proxy-revalidate, no-transform, must-revalidate
Pragma: no-cache
Expires: 0
Content-Length: 43
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc3ae404a748f188438f008533b6d6947f915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa069898dd9c85d2069c08efce46250c2090ca8b9e263178cb68022e9127fb28d8; Path=/; Domain=.www.nexi.it
Vary: Accept-Encoding
www.nexi.it/g78f9/in/da9bf99684086107ff21b8eaac286f9f/2
185.198.117.126200 OK 0 B URL HTTP/1.1 www.nexi.it/g78f9/in/da9bf99684086107ff21b8eaac286f9f/2
IP 185.198.117.126:0
ASN #35051 Nexi Payments S.P.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g78f9/in/da9bf99684086107ff21b8eaac286f9f/2 HTTP/1.1
Host: www.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
x-as-transport: 6
Content-Length: 20096
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/login-titolari.html?https://www.nexi.it/privati/servizi/area-personale.html
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS01a05a0f=01d37309fc3ae404a748f188438f008533b6d6947f915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa069898dd9c85d2069c08efce46250c2090ca8b9e263178cb68022e9127fb28d8; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.2.252689493.1662085355; _gid=GA1.2.2066488474.1662085356; _gat_UA-3681719-1=1; lb_cookie=rd7o00000000000000000000ffff0a0a0105o8443; s_cc=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:37 GMT
Access-Control-Allow-Origin: https://www.nexi.it
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Type: text/plain
Cache-Control: no-cache, no-store, proxy-revalidate, no-transform, must-revalidate
Pragma: no-cache
Expires: 0
Content-Length: 0
P3P: policyref="/w3c/p3p.xml", CP="IDC DSP COR NID DEVi OUR BUS INT"
Set-Cookie: TS01a05a0f=01d37309fc3ae404a748f188438f008533b6d6947f915153676ee938f3867848b7329d7566a4bb97d5da635e6ade50e684891c71fa069898dd9c85d2069c08efce46250c2090ca8b9e263178cb68022e9127fb28d8; Path=/; Domain=.www.nexi.it
script.hotjar.com/modules.07ac9b8d187d510db456.js
143.204.55.68200 OK 65 kB URL HTTP/2 script.hotjar.com/modules.07ac9b8d187d510db456.js
IP 143.204.55.68:0
File type Unicode text, UTF-8 text, with very long lines (48715)
Hash fff5770f0de5c66c4269264cf792ec05
39fdb897caaa4b3d6baaee51c84f6d4ffda5e055
5a4eb0540987c1ad47a0f9080596d4476cb659f503c0b9ab0e5dddd54221deeb
GET /modules.07ac9b8d187d510db456.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 65413
date: Tue, 30 Aug 2022 12:30:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "fff5770f0de5c66c4269264cf792ec05"
last-modified: Tue, 30 Aug 2022 12:29:33 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YUdzizWfY6Z9TAcckKjiuSwJwiV4dNSfpJMmMWxOmih7_rmoRg6EOg==
age: 222750
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=411&dpuuid=YxFo7QAAAH_RogN-
52.49.126.217302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=YxFo7QAAAH_RogN-
IP 52.49.126.217:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=YxFo7QAAAH_RogN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nexi.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v038-04ae7aa8b.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YxFo7QAAAH_RogN-
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=90258914126786259383211246865735912579; Max-Age=15552000; Expires=Wed, 01 Mar 2023 02:22:37 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 7v6BSripQL0=
Content-Length: 0
Connection: keep-alive
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 12:31:58 GMT
expires: Sun, 27 Aug 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 481839
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 9ba16a45d7201960b62c90f92565cae7
0058a5a95f5ccf1eac57786ae61c6c438165893f
a252ef7a84e6b48d4e14bb967283616921d87c009c16f034b86f022a5d5969c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 906
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:37 GMT
Last-Modified: Fri, 02 Sep 2022 02:07:31 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YxFo7QAAAH_RogN-
52.49.126.217200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YxFo7QAAAH_RogN-
IP 52.49.126.217:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=YxFo7QAAAH_RogN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nexi.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v038-0d9230d80.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: NWFWYwFjQ3Q=
Content-Length: 59
Connection: keep-alive
nexipayments.sc.omtrdc.net/b/ss/nexipayments.production/1/JS-2.22.4-LCS4/s64652410130148?AQB=1&ndh=1&pf=1&t=2%2F8%2F2022%202%3A22%3A36%205%200&mid=57459385705537571870466139744865928957&aamlh=6&ce=UTF-8&pageName=%2Flogin-titolari.html&g=https%3A%2F%2Fwww.nexi.it%2Flogin-titolari.html%3Fhttps%3A%2F%2Fwww.nexi.it%2Fprivati%2Fservizi%2Farea-personale.html&cc=EUR&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&v4=%2Flogin-titolari.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=6A724E255ED5F2A60A495E0E%40AdobeOrg&AQE=1
13.36.218.177200 OK 43 B URL HTTP/2 nexipayments.sc.omtrdc.net/b/ss/nexipayments.production/1/JS-2.22.4-LCS4/s64652410130148?AQB=1&ndh=1&pf=1&t=2%2F8%2F2022%202%3A22%3A36%205%200&mid=57459385705537571870466139744865928957&aamlh=6&ce=UTF-8&pageName=%2Flogin-titolari.html&g=https%3A%2F%2Fwww.nexi.it%2Flogin-titolari.html%3Fhttps%3A%2F%2Fwww.nexi.it%2Fprivati%2Fservizi%2Farea-personale.html&cc=EUR&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&v4=%2Flogin-titolari.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=6A724E255ED5F2A60A495E0E%40AdobeOrg&AQE=1
IP 13.36.218.177:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/nexipayments.production/1/JS-2.22.4-LCS4/s64652410130148?AQB=1&ndh=1&pf=1&t=2%2F8%2F2022%202%3A22%3A36%205%200&mid=57459385705537571870466139744865928957&aamlh=6&ce=UTF-8&pageName=%2Flogin-titolari.html&g=https%3A%2F%2Fwww.nexi.it%2Flogin-titolari.html%3Fhttps%3A%2F%2Fwww.nexi.it%2Fprivati%2Fservizi%2Farea-personale.html&cc=EUR&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&v4=%2Flogin-titolari.html&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=6A724E255ED5F2A60A495E0E%40AdobeOrg&AQE=1 HTTP/1.1
Host: nexipayments.sc.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Fri, 02 Sep 2022 02:22:37 GMT
expires: Thu, 01 Sep 2022 02:22:37 GMT
last-modified: Sat, 03 Sep 2022 02:22:37 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3569301127517732864-4619597578264028950
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-3681719-1&cid=252689493.1662085355&jid=676267378&gjid=1657392245&_gid=2066488474.1662085356&_u=YADAAEAAAAAAAC~&z=2093446734
64.233.163.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-3681719-1&cid=252689493.1662085355&jid=676267378&gjid=1657392245&_gid=2066488474.1662085356&_u=YADAAEAAAAAAAC~&z=2093446734
IP 64.233.163.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-3681719-1&cid=252689493.1662085355&jid=676267378&gjid=1657392245&_gid=2066488474.1662085356&_u=YADAAEAAAAAAAC~&z=2093446734 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.nexi.it
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Sep 2022 02:22:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash cbaeb8b7c3872b03102d3866d1e77d51
10688efcf39c17b5da6313d6dead09972b27087c
5292b91c793f1c2cdbeeef0f86ca6613e93d5deda4d9289e6771e39b1bbbb940
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 02:22:37 GMT
Last-Modified: Fri, 02 Sep 2022 01:47:18 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iSjRgbHe9C82_jToL5uSS71Htjtoh_gugPcq15hwbttIjx5WuCPwZw==
Age: 2119
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eedef68c5f0b0909202dbcef92d74149
35c11c4fa0ebc21f5cbcf12700a265d22c3f203c
f93403157449c48d86b6f2f3ebe64aa123b102f03f8e16666308e70796b37f88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2654
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:37 GMT
Last-Modified: Fri, 02 Sep 2022 01:38:23 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 14c3e41aa544b840c3ad6259d3ab3a1d
1d0181652bb3d8f25877b89c5a48045ca312bf6f
1ebf03b8f9ef06979f7ef81b8bd333d39d7b6915d4734247aacefb276e7dfcdf
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 06 Sep 2022 02:16:28 GMT
ETag: "1d0181652bb3d8f25877b89c5a48045ca312bf6f"
Last-Modified: Fri, 02 Sep 2022 02:16:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7442c76f1ccab523-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 14c3e41aa544b840c3ad6259d3ab3a1d
1d0181652bb3d8f25877b89c5a48045ca312bf6f
1ebf03b8f9ef06979f7ef81b8bd333d39d7b6915d4734247aacefb276e7dfcdf
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 02:22:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 06 Sep 2022 02:16:28 GMT
ETag: "1d0181652bb3d8f25877b89c5a48045ca312bf6f"
Last-Modified: Fri, 02 Sep 2022 02:16:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7442c76f397cb515-OSL
nexipayments.tt.omtrdc.net/rest/v1/delivery?client=nexipayments&sessionId=16687471be594b46864540833033039c&version=2.8.2
52.48.238.49200 OK 434 kB URL HTTP/2 nexipayments.tt.omtrdc.net/rest/v1/delivery?client=nexipayments&sessionId=16687471be594b46864540833033039c&version=2.8.2
IP 52.48.238.49:0
Size 434 kB (433784 bytes)
Hash 61106838ff66a7e9a9c480de4baef149
e7c51c4c46e09a159749935d34ee7ac4a30e1b1c
3930c07f1acc3f472f55b475bbbb7cc2b8ada71ee8c135f7117a79a97cd879e4
POST /rest/v1/delivery?client=nexipayments&sessionId=16687471be594b46864540833033039c&version=2.8.2 HTTP/1.1
Host: nexipayments.tt.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1011
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 02:22:37 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://www.nexi.it
access-control-allow-credentials: true
x-request-id: 77f1d7d7b14aa164177e05dee75542f9
timing-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List
content-encoding: gzip
X-Firefox-Spdy: h2
privati.nexi.it/api/services/login/auth/prelogin/card-holder-name
185.198.117.136200 OK 30 B URL HTTP/1.1 privati.nexi.it/api/services/login/auth/prelogin/card-holder-name
IP 185.198.117.136:0
ASN #35051 Nexi Payments S.P.A.
File type JSON data\012- , ASCII text
Hash 960d1cc4e1f7a974a962fb0b012852fc
dcd6c28c02b13f4a53c2f5369447afa209272d43
4d1a6db34f7312fa88cadb1bb9e8c7be442676877b46df4e8833066eb98797d8
OPTIONS /api/services/login/auth/prelogin/card-holder-name HTTP/1.1
Host: privati.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: application,cache-control,channel,client-version,content-type,env,locale,macro-context,micro-context,pragma
Referer: https://www.nexi.it/
Origin: https://www.nexi.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.nexi.it
Access-Control-Allow-Headers: application,cache-control,channel,client-version,content-type,env,locale,macro-context,micro-context,pragma
Content-Type: application/json
Content-Length: 30
Date: Fri, 02 Sep 2022 02:22:37 GMT
Set-Cookie: lb_cookie=rd7o00000000000000000000ffff0a0a0126o8443; expires=Sat, 03-Sep-2022 02:22:38 GMT; path=/
lb_cookie_privati="7afe52f8d9c9fd8f561d9c67b52237c45f6fdb816771503514b7abf64a482be6 pero"; Path=/; Domain=.nexi.it; Expires=Fri, 02-Sep-2022 04:22:38 GMT
ncsi=f56791a008690b5e804d42dcd8fd461e; Path=/; Domain=nexi.it; Expires=Fri, 02-Sep-2022 02:52:38 GMT
binc=39e772a464e2704759097a894dc387ee; Path=/; Domain=nexi.it; Expires=Sat, 02-Sep-2023 02:22:38 GMT
TS014ad647=01d37309fca7bc8b9bd63d05bbfb23dec8a105d5664ebac2302adcc0b8c3f9139a6eff85705dee940e5d8742fa04d70b51f4059464; Path=/
TS01db9159=01d37309fca7bc8b9bd63d05bbfb23dec8a105d5664ebac2302adcc0b8c3f9139a6eff85705dee940e5d8742fa04d70b51f4059464; path=/; domain=.nexi.it
TS01be1f7b=01d37309fca7bc8b9bd63d05bbfb23dec8a105d5664ebac2302adcc0b8c3f9139a6eff85705dee940e5d8742fa04d70b51f4059464; path=/; domain=nexi.it
uniqueid: cbb248dc55e85fcd835816b8b1340d9a
Strict-Transport-Security: max-age=16070400; includeSubDomains; preload
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 77dcbad667fa753223ab404f9e5efc2e
8aa7da6ed9b77d478e9205e41c8b6fe0a973ae70
0a59d091c042b60cb2193e33754db4e8c2fd7c8e4abd5150a72db06cdc661a94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
privati.nexi.it/api/services/login/auth/prelogin/card-holder-name
185.198.117.136200 OK 2 B URL HTTP/1.1 privati.nexi.it/api/services/login/auth/prelogin/card-holder-name
IP 185.198.117.136:0
ASN #35051 Nexi Payments S.P.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /api/services/login/auth/prelogin/card-holder-name HTTP/1.1
Host: privati.nexi.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.nexi.it/
Content-Type: application/json
pragma: no-cache
cache-control: no-cache
Application: pt
Env: PRODUCTION
Client-Version: [object Object]
Channel: web
Locale: it
Macro-Context:
Micro-Context:
Origin: https://www.nexi.it
Connection: keep-alive
Cookie: lb_cookie2="edeab91b5e4f2565a552d154e3191fd1f2600d2124a43a3c3d7676668b209287 pero"; ncsi=8d4ad44f59a8e605329af9c4228d865c; binc=0c9fe9a8988856af2781a8f37eddbbed; TS019ca071=01d37309fcbebb5cc935aaae9664ba05792d51ac7e915153676ee938f3867848b7329d75661d4fe87c30354807b95ed9d640788dc09e3ae19e082663316145a1299207e21effdfb1134fd38d28dcafc75279a74a24; AMCV_6A724E255ED5F2A60A495E0E%40AdobeOrg=1176715910%7CMCIDTS%7C19238%7CMCMID%7C57459385705537571870466139744865928957%7CMCAAMLH-1662690155%7C6%7CMCAAMB-1662690155%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1662092555s%7CNONE%7CMCSYNCSOP%7C411-19245%7CvVersion%7C5.4.0; AMCVS_6A724E255ED5F2A60A495E0E%40AdobeOrg=1; _ga_2EQBRC1CMY=GS1.1.1662085355.1.0.1662085355.0.0.0; _ga=GA1.2.252689493.1662085355; _gid=GA1.2.2066488474.1662085356; _gat_UA-3681719-1=1; s_cc=true; _hjSessionUser_653229=eyJpZCI6ImQ3OGU5NmRlLTc3NzAtNWVmNC04NTNlLTkyMmQ3NThmNTk4YiIsImNyZWF0ZWQiOjE2NjIwODUzNTY3NjcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_653229=eyJpZCI6IjQ1ZTQyY2JjLWM0ODQtNGMwYS1iMDhiLTA0ZmVlZTExYzgzZCIsImNyZWF0ZWQiOjE2NjIwODUzNTY4MDgsImluU2FtcGxlIjp0cnVlfQ==; _hjAbsoluteSessionInProgress=0; mbox=session#16687471be594b46864540833033039c#1662087217; at_check=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.nexi.it
X-Application-Context: zuul-gateway:production:4000
Content-Type: application/json;charset=UTF-8
Content-Length: 2
Date: Fri, 02 Sep 2022 02:22:38 GMT
Set-Cookie: wpamm_cookie=22871524267190712682557000000000000000000000; Max-Age=2147483647; Path=/CHP/api/services/login/auth/prelogin; HttpOnly; Domain=privati.nexi.it
lb_cookie=rd7o00000000000000000000ffff0a0a0105o8443; expires=Sat, 03-Sep-2022 02:22:38 GMT; path=/
lb_cookie_privati="57eabbc3aed4fa54324972950fe94ef9ae78d4dc91603ec2d46f27f088bed311 pero"; Path=/; Domain=.nexi.it; Expires=Fri, 02-Sep-2022 04:22:38 GMT
ncsi=8d4ad44f59a8e605329af9c4228d865c; Path=/; Domain=nexi.it; Expires=Fri, 02-Sep-2022 02:52:38 GMT
binc=0c9fe9a8988856af2781a8f37eddbbed; Path=/; Domain=nexi.it; Expires=Sat, 02-Sep-2023 02:22:38 GMT
TS014ad647=01d37309fc26080ea0711874aa9029358b5b7b0f68ae141b3dd18a41181f672c6dfbe721b257cc9ade0342bc91141ab79480a73320; Path=/
TS013e2413=01d37309fc26080ea0711874aa9029358b5b7b0f68ae141b3dd18a41181f672c6dfbe721b257cc9ade0342bc91141ab79480a73320; path=/CHP/api/services/login/auth/prelogin; domain=privati.nexi.it
TS01db9159=01d37309fc26080ea0711874aa9029358b5b7b0f68ae141b3dd18a41181f672c6dfbe721b257cc9ade0342bc91141ab79480a73320; path=/; domain=.nexi.it
TS01be1f7b=01d37309fc26080ea0711874aa9029358b5b7b0f68ae141b3dd18a41181f672c6dfbe721b257cc9ade0342bc91141ab79480a73320; path=/; domain=nexi.it
uniqueid: cf8d63363ec76729c75b70435b7420e8
Strict-Transport-Security: max-age=16070400; includeSubDomains; preload
Vary: Accept-Encoding
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-3681719-1&cid=252689493.1662085355&jid=676267378&_u=YADAAEAAAAAAAC~&z=1448689884
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-3681719-1&cid=252689493.1662085355&jid=676267378&_u=YADAAEAAAAAAAC~&z=1448689884
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-3681719-1&cid=252689493.1662085355&jid=676267378&_u=YADAAEAAAAAAAC~&z=1448689884 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Sep 2022 02:22:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 77dcbad667fa753223ab404f9e5efc2e
8aa7da6ed9b77d478e9205e41c8b6fe0a973ae70
0a59d091c042b60cb2193e33754db4e8c2fd7c8e4abd5150a72db06cdc661a94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 02:22:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d848f7606889b048b6334e70d8a5e0
85239ef4f2fee8d3345e599bc942cab63ff3aaf6
da6cf33b440b51f72a70f309d62fd581aed246b6a78b8f329fa3899db15ff86d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5889
x-amzn-requestid: 42237574-f86e-4ece-b986-6d0c5910fcc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMVgHajoAMFmXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112756-48ff9d98464cf3c9680d97b4;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:42:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _7BBSlQQucoO5poncTYuX4fcmS4WFg3UcVFXalckGCCNFKJ0h5UpsQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:06:51 GMT
etag: "85239ef4f2fee8d3345e599bc942cab63ff3aaf6"
content-type: image/jpeg
age: 15352
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-653229.js?sv=7
54.230.111.66200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-653229.js?sv=7
IP 54.230.111.66:0
GET /c/hotjar-653229.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=86400; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 02 Sep 2022 02:21:43 GMT
cache-control: max-age=60
etag: W/32026d27dd501628851fc0b1d26abf3f
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VxTvdVVbGxpa_7-DXAZV0db6sFVp2tZlkP0Dr986CwM4cq9mC0IMxQ==
age: 53
X-Firefox-Spdy: h2
www.cloudflare.com/cdn-cgi/trace
104.16.123.96200 OK 0 B URL HTTP/2 www.cloudflare.com/cdn-cgi/trace
IP 104.16.123.96:0
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 02:22:37 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 7442c769df21b50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/653229/visit-data?sv=7
34.251.112.219200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/653229/visit-data?sv=7
IP 34.251.112.219:0
POST /api/v2/client/sites/653229/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://www.nexi.it
Connection: keep-alive
Referer: https://www.nexi.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 02:22:37 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2