r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7576
Expires: Mon, 28 Nov 2022 20:52:27 GMT
Date: Mon, 28 Nov 2022 18:46:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2578
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:46:11 GMT
Last-Modified: Mon, 28 Nov 2022 18:03:13 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3275
Expires: Mon, 28 Nov 2022 19:40:46 GMT
Date: Mon, 28 Nov 2022 18:46:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 18:17:48 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1703
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 96g0/kfzGuB3wlSewNCB5qAPYGtgL0/ZlEQ6tSKP4jgpwleatBWFzCdCDtSDZDBzb3TrZSDSezU=
x-amz-request-id: X2S2K8NQNRXW7T7K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 18:45:08 GMT
age: 63
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 18:46:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 18:08:55 GMT
cache-control: public,max-age=3600
age: 2236
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3093
Cache-Control: max-age=141137
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:46:11 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:58:28 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
lookinqatar.com/
66.235.200.147200 OK 18 kB IP 66.235.200.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (447), with CRLF line terminators
Hash b7e2bb7f25299552fc54f5118822511b
8fbaf5f5244a18e1783ebdd3191f6a772878f213
b3dce0c0e5bbc3eacc4fbb5a2f7d00b4e3bf72a0b52515bb241d76950323f975
Analyzer Verdict Alert openphish Monte dei Paschi Di Siena
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: lookinqatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 23 Jun 2022 12:37:27 GMT
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: REVALIDATED
Server: cloudflare
CF-RAY: 771543cf9f0e0afe-OSL
Content-Encoding: gzip
code.jquery.com/jquery-latest.min.js
69.16.175.10200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-latest.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32086)
Hash a39e9fcc2a78d5b1ed25b5f853c17a22
f1d1d30d35146a7adee855becba02b776366f169
a0581d3f2c05cfb302f81d2894c114da758e14a290bd4f240c7b63628469ee8d
GET /jquery-latest.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:12 GMT
content-encoding: gzip
content-length: 33202
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1762a"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669661172.dop069.sk1.t,1669661172.cds242.sk1.hn,1669661172.cds256.sk1.c
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: t1ohvQE2hsEfEwTnO79Dog==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aGlf/uwn9zIRtSD4Ovt8Pyc2F7I=
ocsp.usertrust.com/
104.18.32.68200 OK 2.2 kB IP 104.18.32.68:0
Hash 9528a39b26cafcf8779822971b40b755
2c855f5c168265f7bf98378cf2e82f28a9d5e4c5
5389e2832f7479cdf129d5b675ab33feae4edc285d2da3f5dd6007d84b99bbe2
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:13 GMT
Content-Type: application/ocsp-response
Content-Length: 2236
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 22:12:16 GMT
Expires: Sat, 03 Dec 2022 22:12:15 GMT
Etag: "2c855f5c168265f7bf98378cf2e82f28a9d5e4c5"
Cache-Control: max-age=602814,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 700
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771543dcbf36b527-OSL
ocsp.usertrust.com/
104.18.32.68200 OK 2.2 kB IP 104.18.32.68:0
Hash 9528a39b26cafcf8779822971b40b755
2c855f5c168265f7bf98378cf2e82f28a9d5e4c5
5389e2832f7479cdf129d5b675ab33feae4edc285d2da3f5dd6007d84b99bbe2
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:13 GMT
Content-Type: application/ocsp-response
Content-Length: 2236
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 22:12:16 GMT
Expires: Sat, 03 Dec 2022 22:12:15 GMT
Etag: "2c855f5c168265f7bf98378cf2e82f28a9d5e4c5"
Cache-Control: max-age=602814,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 700
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771543dcbd360b65-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6490
Expires: Mon, 28 Nov 2022 20:34:23 GMT
Date: Mon, 28 Nov 2022 18:46:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6490
Expires: Mon, 28 Nov 2022 20:34:23 GMT
Date: Mon, 28 Nov 2022 18:46:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6490
Expires: Mon, 28 Nov 2022 20:34:23 GMT
Date: Mon, 28 Nov 2022 18:46:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 74667
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 74667
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e5051d8c06f69e1842a9295ce256a36
1a542a53ba0b1cd0fb23257ebed8166555f16dfb
a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 70UuQl2XCoplrZYENrKleE2mcvB-xP9zZGs8Tuh21NidSiHvA97sXw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 75304
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:13:33 GMT
age: 30760
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:42:14 GMT
age: 75839
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:46:18 GMT
age: 75595
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 56d023c70d092d23b9881878f084c965
1805094ffbabf4cc9bb224fbe55b6938fced5209
fad90d6f3341953b7e65f71bcda5e26abf174e8b5a360ec121a59b26e58ef0ed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 07:11:32 GMT
Expires: Sun, 04 Dec 2022 07:11:31 GMT
Etag: "1805094ffbabf4cc9bb224fbe55b6938fced5209"
Cache-Control: max-age=476117,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771543dccc30fabc-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 56d023c70d092d23b9881878f084c965
1805094ffbabf4cc9bb224fbe55b6938fced5209
fad90d6f3341953b7e65f71bcda5e26abf174e8b5a360ec121a59b26e58ef0ed
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 07:11:32 GMT
Expires: Sun, 04 Dec 2022 07:11:31 GMT
Etag: "1805094ffbabf4cc9bb224fbe55b6938fced5209"
Cache-Control: max-age=476117,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771543dcccc7fab8-OSL
digital.mps.it/cmn/assets/js/jquery-ext.js?vers=1131606
81.26.193.203200 OK 11 kB URL HTTP/1.1 digital.mps.it/cmn/assets/js/jquery-ext.js?vers=1131606
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type ASCII text, with very long lines (25288), with no line terminators
Hash e2d5f519dd40e9810a29a66491cadf74
ffd8a2874172accd96d6b6439f696d7f37517cab
a0b72acb9248731929ff167146fce054eec1085fc11905a565c780cc1e770038
GET /cmn/assets/js/jquery-ext.js?vers=1131606 HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:13 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Tue, 22 Nov 2022 14:48:16 GMT
Accept-Ranges: bytes
Content-Length: 11361
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Wed, 28 Dec 2022 18:46:13 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/javascript
Set-Cookie: dtCookie=v_4_srv_3_sn_1DC8A8D2C44D959A4A34956879A656D5_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad2389c958a39eadf30a64121c81a7e7c90c5d0091015f0065e38e3061fca49f588b0472e0d51c9d6caceb74decd6281936887; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad23890edd959d9eee90047df904905e5dbd430091015f0065e38e3061fca49f588b043b1fe79a17bbf81959e67653516c66ba592fb01ea5d6faf58e0e4db8f6564245; path=/; domain=.mps.it; HTTPonly; Secure
Content-Encoding: gzip
digital.mps.it/cmn/assets/css/catalogo/w.login.digitalBanking.min.css?vers=1131606
81.26.193.203200 OK 11 kB URL HTTP/1.1 digital.mps.it/cmn/assets/css/catalogo/w.login.digitalBanking.min.css?vers=1131606
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type ASCII text, with very long lines (47635)
Hash ef1675b320b987135de036859cc0351a
ce48a3b5427a63ae16c0384525d1ca2483a5a8dc
48dfbcef93cc3ab6309e135e8f290815ce31bfd0069b0280b84da659635846a7
GET /cmn/assets/css/catalogo/w.login.digitalBanking.min.css?vers=1131606 HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Tue, 22 Nov 2022 14:47:18 GMT
Accept-Ranges: bytes
Content-Length: 10619
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Wed, 28 Dec 2022 18:46:14 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/css
Set-Cookie: dtCookie=v_4_srv_1_sn_6F3E13279E7C5502131A26A259A32989_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad238920961cb424fab03a830435003c403cfcba45c5b81618a2185a5914861a5722cade11980dfed9945d6b202ee76bb28d43; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad238912aeabab684cc537ecd730ec18b05468ba45c5b81618a2185a5914861a5722ca5afa44842992ebbf9422bcb3beee9f1f242147e320e40526879d99a549f46761; path=/; domain=.mps.it; HTTPonly; Secure
Content-Encoding: gzip
digital.mps.it/libs/img/loginBI/iconaSpeechAssistantred.png
81.26.193.203200 OK 2.4 kB URL HTTP/1.1 digital.mps.it/libs/img/loginBI/iconaSpeechAssistantred.png
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type PNG image data, 224 x 224, 8-bit colormap, non-interlaced\012- data
Hash ca6d989b4aed15bc09f589876a4697b6
c1b3afd98683383d7dacf66164d0e875f752bc3f
d46dda2fab1d8fe763cec3ef41291116c4df2667bdb89448b37fbc342249924a
GET /libs/img/loginBI/iconaSpeechAssistantred.png HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Content-Length: 2394
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Accept-Ranges: bytes
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="1"
Etag: W/"PSA-aj-ym2Ym0rtFb"
Expires: Wed, 28 Dec 2022 18:33:30 GMT
Cache-Control: max-age=2591235
X-Content-Type-Options: nosniff, nosniff
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: image/png
Set-Cookie: dtCookie=v_4_srv_1_sn_A5D6C44C9D6735C40207DCA356B6CC60_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad2389750aeb27ca0639894083a0bfe9243a9a1c0bfb7fcb8a6daf50e2ffcf54eac665d12a12ff9b2ef6e673bd57bd80ca9ee1; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad2389405c3f86b3a6d8a6ac6c294304a1f8461c0bfb7fcb8a6daf50e2ffcf54eac6659425154d38bb6fdb704d7de90f62dfc6e0abe66ec0d7250ca7e3e5c9748fdf2c; path=/; domain=.mps.it; HTTPonly; Secure
digital.mps.it/login.html
81.26.193.203200 OK 13 B URL HTTP/1.1 digital.mps.it/login.html
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type HTML document, ASCII text, with no line terminators
Hash c83301425b2ad1d496473a5ff3d9ecca
941efb7368e46b27b937d34b07fc4d41da01b002
b633a587c652d02386c4f16f8c6f6aab7352d97f16367c3c40576214372dd628
GET /login.html HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Accept-Ranges: bytes
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Cache-Control: max-age=0, no-cache
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="0", dtRpid;desc="1330378386"
Content-Length: 13
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Set-Cookie: dtCookie=v_4_srv_1_sn_5B615D42C9ADB9B88E9A22B39DEF7DF4_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad23896fbb53070c1d4dbe2ce8b8cc240fdcfa48b9add6c700a4aa8d02170047e343c4a0dbd443dda1404a116d4885dd45a4fc; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad2389d11a2837b9aeff86e192a045a424780948b9add6c700a4aa8d02170047e343c47a08a892e4ecf3fd3fb007f80c9bb6569e97e9c28c9b552b9368815d8aa0db3b; path=/; domain=.mps.it; HTTPonly; Secure
Vary: Accept-Encoding
digital.mps.it/cmn/assets/icons/catalogo/info%20tooltip_UI.svg
81.26.193.203200 OK 999 B URL HTTP/1.1 digital.mps.it/cmn/assets/icons/catalogo/info%20tooltip_UI.svg
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 12c7d3bc84dcbc9bf6f4f8c0bc62a03c
9fa0f5c8c6b269a02baf4615895766e024de984c
9c9b26055379437522e81d6ad02ec43de51199f7ee3ad2fb8a7f6ab3a44efccf
GET /cmn/assets/icons/catalogo/info%20tooltip_UI.svg HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Tue, 22 Nov 2022 14:47:04 GMT
Accept-Ranges: bytes
Content-Length: 999
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Wed, 28 Dec 2022 18:46:14 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
Set-Cookie: dtCookie=v_4_srv_1_sn_96F749BCF197E84BD6B071BB144AABA9_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad238919647bd7a4e489bce8a9628d1a6959c6b1795b01f255298abe06c91bfb282861f0f5ca484bf87fa961f3b4e2568a6699; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad23898f4cdf393045a917f0661a48a0388542b1795b01f255298abe06c91bfb2828619f4399c2b637be016587442edee84448983d98abeb70435132e550c43da877fb; path=/; domain=.mps.it; HTTPonly; Secure
digital.mps.it/libs/img/loginBI/ico_informazioni.svg
81.26.193.203200 OK 2.4 kB URL HTTP/1.1 digital.mps.it/libs/img/loginBI/ico_informazioni.svg
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 671e7303796ce8cccd6f8f98f192fb1c
6680a2f5f75ddd3fbfa15f36445759ebef52b48e
0723be3bac2e41d6d7aa267af24f45a7240d74ead82a130765f83fc6fbf19723
GET /libs/img/loginBI/ico_informazioni.svg HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Tue, 22 Nov 2022 14:46:12 GMT
Accept-Ranges: bytes
Content-Length: 2448
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Wed, 28 Dec 2022 18:46:14 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
Set-Cookie: dtCookie=v_4_srv_2_sn_11DB21D30F17B562FBC7407AD30EEB45_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad2389754e582dcffc5c660b42d588b06f3a722e0fd41db2bd4dc877317cc6b73c7a1a081101eab8d2e4d6122f4c269e6ba0a6; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad2389fd386652160cf68afa70b1f6d87360c12e0fd41db2bd4dc877317cc6b73c7a1a445d972a44febfa5d0d233d473fec336adb4cef8742f12b909c55dce7008ff6c; path=/; domain=.mps.it; HTTPonly; Secure
digital.mps.it/libs/img/loginBI/ico_carte.svg
81.26.193.203200 OK 1.3 kB URL HTTP/1.1 digital.mps.it/libs/img/loginBI/ico_carte.svg
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6a713d495a6a62bc4cecb91676fe25f2
54818deb2f386ad9f7f8aa831391b6fc2c59464a
b989e87444353500fa31829b5814b69d053f5e5553bfff4fcb26a38f76e0f08e
GET /libs/img/loginBI/ico_carte.svg HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Tue, 22 Nov 2022 14:46:12 GMT
Accept-Ranges: bytes
Content-Length: 1330
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Wed, 28 Dec 2022 18:46:14 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="1"
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
Set-Cookie: dtCookie=v_4_srv_1_sn_51A33A2F06EEFF4011E68D202EB1AFBF_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad23893ad0ad2d2e68169673938aad844577010eed7f19f1c9ef0d6375b5dad67f9e65c0c034c1bde047b11181c49f761c5f71; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad238964bc305d1eac5d81393bb37a68b3b1280eed7f19f1c9ef0d6375b5dad67f9e650f39f1dd3a54b61fd694a0d1b6110c848e8409bdb45d787ca954ad723d58a0b5; path=/; domain=.mps.it; HTTPonly; Secure
digital.mps.it/cmn/font/text-security-disc.woff2
81.26.193.203200 OK 2.3 kB URL HTTP/1.1 digital.mps.it/cmn/font/text-security-disc.woff2
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type Web Open Font Format (Version 2), TrueType, length 2280, version 1.0\012- data
Hash db2e9ff14caa4e15f4e39ef4e10d34b8
16a11d60fd4b69f3fe7bf7bfb09475a5967124d9
9dd630e7cbf1a068b89a5a134e248ff63f2d452081bf86684aeb4b7f73712b76
GET /cmn/font/text-security-disc.woff2 HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://lookinqatar.com
Connection: keep-alive
Referer: https://digital.mps.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Tue, 22 Nov 2022 14:46:59 GMT
Accept-Ranges: bytes
Content-Length: 2280
Cache-Control: max-age=2592000
Expires: Wed, 28 Dec 2022 18:46:14 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="1", dtTao;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_3_sn_45D85B1754D9B8F0E31C70745AF12776_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad2389c83d5aef3f50aeaa03375b4bed015812ed0bfde678057e21ec325f4d83ccb9f4b66e839a38b4052a1f2e6d47fc908372; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad2389d064b897b68af799a4ddabeb01de1900ed0bfde678057e21ec325f4d83ccb9f478663b3a0f41952f4660cc66bb1c19fe35584d4798dc07a53b89aaa34d746dd0; path=/; domain=.mps.it; HTTPonly; Secure
Vary: Accept-Encoding
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 8ab9b6f0f5efe543c3a8e2c21ae56fd7
41df91e58c407eee48c42227b11f80730cb78edc
bdc9da58ced9fd64c55a8d6bbf20d4bdcb458e06065df45f0a8379437f73895e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=144162
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 18:46:14 GMT
Etag: "63849218-118"
Expires: Wed, 30 Nov 2022 10:48:56 GMT
Last-Modified: Mon, 28 Nov 2022 10:48:56 GMT
Server: nginx
Content-Length: 280
digital.mps.it/cmn/font/text-security-disc.woff
81.26.193.203200 OK 3.0 kB URL HTTP/1.1 digital.mps.it/cmn/font/text-security-disc.woff
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type Web Open Font Format, TrueType, length 2988, version 1.0\012- data
Hash 4fa38d775a1f6b9179bc7c425ecaf7f4
999363e7db078097dd06c303a4fd09839da7cc6e
6252319c96777a4ce3952f63ec70735230c1c5c9392e81a9b3f9a8b2bc06c164
GET /cmn/font/text-security-disc.woff HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://lookinqatar.com
Connection: keep-alive
Referer: https://digital.mps.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Tue, 22 Nov 2022 14:46:59 GMT
Accept-Ranges: bytes
Content-Length: 2988
Cache-Control: max-age=2592000
Expires: Wed, 28 Dec 2022 18:46:14 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-1047319315", dtTao;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/font-woff
Set-Cookie: dtCookie=v_4_srv_2_sn_8B6C30604062EA7BA038D2010D04A962_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad238953472c1a8ec4bc544b211c0a2b90f659f41d345e414395b80a3f8443ff30be3e5aeaacce45ea3cb1a35793affe49ff4e; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad2389e8c9a6663677e09f557ad2cbd7d81245f41d345e414395b80a3f8443ff30be3e17772d8dcc21e3a076a8e87ea4b0c8b9e258a53d5991609cb872420bf32c36f6; path=/; domain=.mps.it; HTTPonly; Secure
digital.mps.it/cmn/font/text-security-disc.ttf
81.26.193.203200 OK 12 kB URL HTTP/1.1 digital.mps.it/cmn/font/text-security-disc.ttf
IP 81.26.193.203:0
ASN #13018 Banca Monte Dei Paschi Di Siena S.P.A.
File type TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, text-security-discRegulartext-security-disctext-security-discVersion 1.0text-security-discGenera\012- data
Hash 7c83ea2ac4879abaee1d9e85d996b00c
f2edb568b2b37d9fa0d694ba2776e88441c2aac2
45db43564f0403a0df50caa810df6e9ee61dca5127cb3682f27d37b4f595f25a
GET /cmn/font/text-security-disc.ttf HTTP/1.1
Host: digital.mps.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://lookinqatar.com
Connection: keep-alive
Referer: https://digital.mps.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 18:46:14 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Tue, 22 Nov 2022 14:46:59 GMT
Accept-Ranges: bytes
Content-Length: 12392
Cache-Control: max-age=2592000
Expires: Wed, 28 Dec 2022 18:46:14 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="1", dtTao;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/font-sfnt
Set-Cookie: dtCookie=v_4_srv_3_sn_FAA0F985E9DB0DA4C4326F9DCD9DD96E_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it
TS01d2b0ab=01eaad2389503468bd046e711bf2d6563e778a218ea48fcd742a7b6270daf69c21f705c85374fd4f4431aa9e1dc80ae4ade7f71bce; Path=/; Secure; HTTPOnly
TS01802bdf=01eaad2389032eb633ccd6e666fc48660397dd136fa48fcd742a7b6270daf69c21f705c853ea9e5f1958e2320625a8462315e7cd306433eb19875829740d76c0e0d7fa71fd; path=/; domain=.mps.it; HTTPonly; Secure
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 4fdea2ed85812c56e9928ea5d3ec2a8d
5ad7d04cf67b852de0913868bb72a84ac24b4cca
006f4c5581f6cf9b6e6a0ba8ce9404863ef5fd3ab4bc89f4990a2720ce421de2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89454
Date: Mon, 28 Nov 2022 18:46:14 GMT
Etag: "6383a317-1d7"
Expires: Tue, 29 Nov 2022 19:37:08 GMT
Last-Modified: Sun, 27 Nov 2022 17:49:11 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fgtE7-wcYRqjjrxNIU1tV9BB9O4PYUHyAZlQpp7NRWp8xQ8emKZTeQ==
Age: 6477
www.alternergy.co.uk/media/Blogs/Picturegraphic.png
104.26.2.97200 OK 166 kB URL HTTP/2 www.alternergy.co.uk/media/Blogs/Picturegraphic.png
IP 104.26.2.97:0
File type PNG image data, 499 x 565, 8-bit/color RGBA, non-interlaced\012- data
Size 166 kB (165577 bytes)
Hash 5616ea4d3e841d0d8ea2df2b3e3e0502
2b46ce0287f09c695369915fb73e2495b1997241
8b2571aff1aca19e262155248b4faa14c333f150069a87413cede23cfae9e422
GET /media/Blogs/Picturegraphic.png HTTP/1.1
Host: www.alternergy.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:14 GMT
content-type: image/png
content-length: 165577
last-modified: Thu, 10 Dec 2020 10:51:42 GMT
expires: Fri, 24 Nov 2023 00:13:59 GMT
cache-control: public, max-age=31536000
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y7O6gVUV1TP0STZSrH2xYV3ajW3dLUqS%2BfgT8z%2F9ZKxoUwDoyQGU7GP8LSuSGpEN9PyvE6PAlRo8hLmX74Rl8%2B9iTlkp9GfBy4JbaNyLtsjYOLsO6we1mZXgT%2F72WewLii6uYXtR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771543e47929b527-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 38e97ef3e78ab4323e1b6bb93fca3b8a
d7e2e956e869ca7d2fafa85822e8ebf4d8b7736f
d0c0b893f8f98d1b2b9e09f056d064ee271ab371b1b816bd36a847c7ec081184
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=152981
Date: Mon, 28 Nov 2022 18:46:15 GMT
Etag: "6384a020-1d7"
Expires: Wed, 30 Nov 2022 13:15:56 GMT
Last-Modified: Mon, 28 Nov 2022 11:48:48 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _BfDuhPPCxYqf0Ampb0Gy4v3ZCR_7NTQup5qCFUV1OFy44tywf0-cQ==
Age: 5229
widget-v2.smartsuppcdn.com/asset-manifest.json
185.76.9.15200 OK 460 B URL HTTP/2 widget-v2.smartsuppcdn.com/asset-manifest.json
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
File type JSON data\012- , ASCII text
Hash 987d18fef0172177575de95848cb0741
98d862f62dd2024a9c692a8a3e838ec726bcabdf
3acbcfcdbe5b23298cb6f1042944cf1371a0c60babb8ce8e5fb3c41e3c104bbd
GET /asset-manifest.json HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: http://lookinqatar.com
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:14 GMT
content-type: application/json
last-modified: Thu, 24 Nov 2022 07:44:38 GMT
etag: W/"637f20e6-6ce"
expires: Thu, 24 Nov 2022 08:24:46 GMT
cache-control: max-age=300, public, s-maxage=60
access-control-allow-origin: *
x-accel-expires: @1669661207
server: CDN77-Turbo
x-77-nzt: AblMCQ1AxRP/GwAAAA
x-77-nzt-ray: c0a4cc284fcf6e42f601856390492a31
x-cache: HIT
x-age: 27
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket
3.127.45.81101 Switching Protocols 0 B URL HTTP/1.1 websocket-visitors.smartsupp.com/socket/?EIO=3&transport=websocket
IP 3.127.45.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket/?EIO=3&transport=websocket HTTP/1.1
Host: websocket-visitors.smartsupp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://lookinqatar.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pgyn/C/N94lEONxEUAzSpA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 28 Nov 2022 18:46:15 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GN+JAqlmblQX3j7w9hLHZcrpdcQ=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
translations.smartsuppcdn.com/api/v1/widget/translations/lang/it/defaults
185.76.9.15200 OK 0 B URL HTTP/2 translations.smartsuppcdn.com/api/v1/widget/translations/lang/it/defaults
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
GET /api/v1/widget/translations/lang/it/defaults HTTP/1.1
Host: translations.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://lookinqatar.com/
Origin: http://lookinqatar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:15 GMT
content-type: application/json; charset=utf-8
x-version: d49c3086c398affe04caacd5da4888899f8f9e5f
vary: Origin
access-control-allow-origin: *
cache-control: max-age=600
x-response-time: 0ms
x-accel-expires: @1669661648
server: CDN77-Turbo
x-77-nzt: AblMCQ01nQj/fwAAAA
x-77-nzt-ray: c0a4cc284fcf6e42f7018563833ec209
x-cache: HIT
x-age: 127
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.smartsuppchat.com/loader.js?
185.76.9.21200 OK 0 B URL HTTP/2 www.smartsuppchat.com/loader.js?
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /loader.js? HTTP/1.1
Host: www.smartsuppchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:14 GMT
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 10:30:42 GMT
etag: W/"63590c52-4ae1"
expires: Wed, 26 Oct 2022 10:36:31 GMT
cache-control: max-age=300, public, s-maxage=60
x-accel-expires: @1669661199
server: CDN77-Turbo
x-77-nzt: AblMCRQJZhr/IwAAAA
x-77-nzt-ray: af5856309ca09c3bf6018563f23b8e0f
x-cache: HIT
x-age: 35
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
bootstrap.smartsuppchat.com/widget/76c55fb536a8a3965c8cd8c28546bd2c38f6704f.json
18.157.147.17200 OK 0 B URL HTTP/2 bootstrap.smartsuppchat.com/widget/76c55fb536a8a3965c8cd8c28546bd2c38f6704f.json
IP 18.157.147.17:0
GET /widget/76c55fb536a8a3965c8cd8c28546bd2c38f6704f.json HTTP/1.1
Host: bootstrap.smartsuppchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: http://lookinqatar.com
Connection: keep-alive
Referer: http://lookinqatar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:14 GMT
content-type: application/json; charset=utf-8
x-version: c491ba6892f84a27ce7c7dc4487ce4efea7dc5a5
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private, max-age=0, must-revalidate
x-hit: redis
etag: "483-ssa2tOamPh0rVtXsaUJ2RJEk0BU"
content-encoding: br
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/main.9714ee62.chunk.js
185.76.9.15200 OK 0 B URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/main.9714ee62.chunk.js
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
GET /static/js/main.9714ee62.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:14 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 07:44:38 GMT
etag: W/"637f20e6-1c7fd"
expires: Fri, 24 Nov 2023 08:19:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1700813986
server: CDN77-Turbo
x-77-nzt: AblMCQ1Hqo7/1NgFAA
x-77-nzt-ray: c0a4cc2817d79143f6018563acb57535
x-cache: HIT
x-age: 383188
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/6.12acd1fb.chunk.js
185.76.9.15200 OK 0 B URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/6.12acd1fb.chunk.js
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
GET /static/js/6.12acd1fb.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:14 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 07:44:38 GMT
etag: W/"637f20e6-8312c"
expires: Fri, 24 Nov 2023 08:19:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1700813986
server: CDN77-Turbo
x-77-nzt: AblMCQ0Biy//1NgFAA
x-77-nzt-ray: c0a4cc2817d79143f6018563ba9cfe35
x-cache: HIT
x-age: 383188
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/runtime-main.ae11910a.js
185.76.9.15200 OK 0 B URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/runtime-main.ae11910a.js
IP 185.76.9.15:0
ASN #60068 Datacamp Limited
GET /static/js/runtime-main.ae11910a.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 18:46:14 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 07:44:38 GMT
etag: W/"637f20e6-9bd"
expires: Fri, 24 Nov 2023 08:19:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1700813986
server: CDN77-Turbo
x-77-nzt: AblMCQ1l8Vj/1NgFAA
x-77-nzt-ray: c0a4cc2817d79143f60185633aa2b438
x-cache: HIT
x-age: 383188
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2