r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11339
Expires: Sun, 26 Mar 2023 02:41:15 GMT
Date: Sat, 25 Mar 2023 23:32:16 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 13f90146df1d559743af6df15c29b77b
6dd24f60629c39f857e3c996084f4d515cf3f8d0
ea5975be17b9cd29c8770939eb5d63ce43c1c44ce9a3a4d04e1e79cd69b30d1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA5975BE17B9CD29C8770939EB5D63CE43C1C44CE9A3A4D04E1E79CD69B30D1C"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6204
Expires: Sun, 26 Mar 2023 01:15:40 GMT
Date: Sat, 25 Mar 2023 23:32:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 23:27:46 GMT
content-type: application/json
age: 270
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9bb70197d53617b5e6889b890dd2ae26
f3e9b8a743de494529baf2d078a622539f965307
a094a13905b7f1cd89475f9c83f9245580d4c3c7228d51d5c16622aec3c6aa45
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A094A13905B7F1CD89475F9C83F9245580D4C3C7228D51D5C16622AEC3C6AA45"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4929
Expires: Sun, 26 Mar 2023 00:54:25 GMT
Date: Sat, 25 Mar 2023 23:32:16 GMT
Connection: keep-alive
web.95-214-24-226.cprapid.com/
95.214.24.226200 OK 29 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash f4a0ffe2c94513d929c6b54efcb25dde
db0f73de00bbef3c72016c8e39b1eb9c8a4d7085
a750c9c673c7ce5933030d9a9a8e435c7b1ffa41eed366fc3985bdbec73aad83
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET / HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:16 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5CI5hCv7iLrjRp1joWTkWd716vn5NKDh/CMtSEIlIMds9IIH99c2haNYE831C6HEO9/sHraNSz4=
x-amz-request-id: 5ST9447P26RBG7R9
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 23:00:58 GMT
age: 1878
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 23:32:17 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/owl.carousel.css
95.214.24.226200 OK 4.6 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/owl.carousel.css
IP 95.214.24.226:0
Hash b51416af9e8adbe3d16f5f2526aba221
097c8d67412f44534449ed4cadc6dd22b025801d
dd7b97c7ad9d7b3eb79bdc728bcbc6a7ab8e3d5db0421fb0dd16d34f3dc88277
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/owl.carousel.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:04 GMT
Accept-Ranges: bytes
Content-Length: 4614
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base.css
95.214.24.226200 OK 416 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base.css
IP 95.214.24.226:0
Hash a00dda3f91b12b16ef9736f89c1d5042
0ad4a038ed350f7a4bbb738849f876eeced6c1d3
0da7a1b970b5c8e4c5f781761450c034462288a375d5c189f7e90027207f3524
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/base.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Sun, 18 Jul 2021 13:01:22 GMT
Accept-Ranges: bytes
Content-Length: 416
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/retina.css
95.214.24.226200 OK 115 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/retina.css
IP 95.214.24.226:0
Hash ee5d2b27eb8a486f46909f007cd2c3bc
f1b58d02621607b7cbe1c775a5c04572fd2859ce
63ae9fac5779ea8db4b2bf9adebfb54f5651b105e4a935b3f4c42308e3ab8557
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/retina.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Mon, 18 Oct 2021 23:21:36 GMT
Accept-Ranges: bytes
Content-Length: 115
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
waust.at/d.js
104.26.4.7200 OK 7.6 kB IP 104.26.4.7:0
File type ASCII text, with very long lines (14706), with no line terminators
Hash e23c073a2e43c9ae75c8f1663778db21
c04fe83eb4953920b1fe567f54e44e5ca5a15777
9c896e04f689d594d35c2d0319598ccbf9e618296bdd63e5d4063a7702d0230b
GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 12 Jan 2023 17:19:30 GMT
etag: W/"63c04122-3972"
expires: Sun, 26 Mar 2023 23:10:20 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 1317
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6oSgUDTijQfmQWYQWTGmDh%2F5yjD%2Fjyxl40%2FLhPESxO7j%2F85KdE0ebzVjGqeOhC4hOW4EQVPMMYxVfIMw7sIPytYcfUZRnzXTGhs71gV7YpP8OiRl1YWYx0d1"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7adaf3c77bbd0b06-OSL
alt-svc: h2=":443"; ma=60
web.95-214-24-226.cprapid.com/risorse_dt/bootstrap/css/bootstrap.min.css
95.214.24.226200 OK 122 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/bootstrap/css/bootstrap.min.css
IP 95.214.24.226:0
File type ASCII text, with very long lines (64985)
Size 122 kB (122291 bytes)
Hash 6181a38a601eb664522623bae7db95c9
9671b5fc92e27a915769b59bc60bf26fde343d7e
8b922a249c9f81562d99eee24407bf38c7feac74a10dfe712292c0b032144dfa
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:47:50 GMT
Accept-Ranges: bytes
Content-Length: 122291
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
web.95-214-24-226.cprapid.com/risorse_dt/applicazioni/trasversali/stili/custom-form-element.css
95.214.24.226200 OK 18 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/applicazioni/trasversali/stili/custom-form-element.css
IP 95.214.24.226:0
File type ASCII text, with very long lines (376)
Hash eb65c2ea5d0082591243aee8425d4eff
a5adf6ce96c015f865a93d54b930cdfd5c6c669a
2213c377877c722511173afad5794c4ca2fce629c79d26a4df200fc4ab3f06f3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/applicazioni/trasversali/stili/custom-form-element.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:47:00 GMT
Accept-Ranges: bytes
Content-Length: 18280
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/utilita.js
95.214.24.226200 OK 14 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/utilita.js
IP 95.214.24.226:0
File type ASCII text, with very long lines (534)
Hash 15e270138da3a46ed6a82f192fa0cf5c
86f7a03b47e1d63a8b5aecdb15be546aa7ec057a
ca9c7a3760bf9bf10d8386938fdce15b4327a4158bd836a446c2d4af3aa2d88d
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/utilita.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Sun, 18 Jul 2021 13:26:04 GMT
Accept-Ranges: bytes
Content-Length: 13994
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/megamenu-pi.css
95.214.24.226200 OK 26 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/megamenu-pi.css
IP 95.214.24.226:0
Hash 91a45dd5d6409bb0a5db3104a2f6c543
933b6e5b6acac709ff1e36d52135bf819df48507
89c0e53575ae03072f5b2a9d587c1611bad7a22090382318c391756dcf6e812c
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/megamenu-pi.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:02 GMT
Accept-Ranges: bytes
Content-Length: 26357
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/poste-it.js
95.214.24.226200 OK 5.6 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/poste-it.js
IP 95.214.24.226:0
File type ASCII text, with very long lines (326)
Hash 11ed8d787ab28bb7faad321627cbf050
a82e0d6e34c4c166a1d0eb05907cbca2db830886
ee466faaa33a9e0c8786659f3a54c09fb056815dac6059867937a31797fa7929
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/poste-it.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:40 GMT
Accept-Ranges: bytes
Content-Length: 5588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/megamenu-pi.js
95.214.24.226200 OK 14 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/megamenu-pi.js
IP 95.214.24.226:0
Hash 250bfa1bdb9cc3ed6b8a48a5f2281784
092938daea2f1352513f18a21e27d4a9860bc31f
c5d5b2ba0288caa7178d3999dd5478ab6c9d2f6528ee421fa0af724cb8c94035
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/megamenu-pi.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:38 GMT
Accept-Ranges: bytes
Content-Length: 14476
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/scroll-pi.js
95.214.24.226200 OK 7.5 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/scroll-pi.js
IP 95.214.24.226:0
Hash 1019dc04b5f21a58f899ef6a5c0391d3
b39e7c8581a6b06a46911b64dbd1e81472971b62
e40c7597c5edee3bddede5398bfa7a3a25acd5e081138da68da133eb4ea8b822
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/scroll-pi.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:42 GMT
Accept-Ranges: bytes
Content-Length: 7538
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
assets.adobedtm.com/launch-EN592261e36dc14b10a9936e854a4b30db.min.js
23.38.200.237200 OK 68 kB URL HTTP/2 assets.adobedtm.com/launch-EN592261e36dc14b10a9936e854a4b30db.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32730)
Hash 44f2f3cc55a3fc81f6b9bb28c54887ee
979673eb88b7b9a4837e0e1efe545cd2af60b39a
233f67b1662ae65aea58352c1b792c62e7b9df6a04309ff7536e68fef82c661d
GET /launch-EN592261e36dc14b10a9936e854a4b30db.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "eb06d3cc75cdf46014e2a7f38c8fc943:1679679852.205641"
last-modified: Fri, 24 Mar 2023 17:44:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 68393
cache-control: max-age=3600
expires: Sun, 26 Mar 2023 00:32:17 GMT
date: Sat, 25 Mar 2023 23:32:17 GMT
access-control-allow-origin: http://web.95-214-24-226.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
web.95-214-24-226.cprapid.com/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js
95.214.24.226200 OK 6.8 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js
IP 95.214.24.226:0
File type ASCII text, with very long lines (338)
Hash 0db4764d4e4e66899267d79703fe99ce
816c19ddfe3088858714d0ba55a646f5df09321a
aa3b054914a360287080d0bf7946f5fc59aab7ed99e2299ba2fc94c16f29f075
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/applicazioni/trasversali/javascript/custom-form-element.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:46:48 GMT
Accept-Ranges: bytes
Content-Length: 6831
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js
95.214.24.226200 OK 8.9 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/jquery.hc-sticky.min.js
IP 95.214.24.226:0
File type exported SGML document, ASCII text, with very long lines (8423)
Hash 0cef027039bf8251fa53f22336981780
02f550f2117d54683191a964e0b54f3c253bb1b3
ce237a2bc80dd06901d9d66d3d6fd1a634157389d2daeabb377caab879ce3a02
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/jquery.hc-sticky.min.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:32 GMT
Accept-Ranges: bytes
Content-Length: 8885
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js
95.214.24.226200 OK 7.8 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/jquery.mobile.custom.min.js
IP 95.214.24.226:0
File type ASCII text, with very long lines (7687)
Hash 74ee4c679b03074b55a1da9bbbe29cf5
745701d8ab39733f989313a5747c54cf3248eb5b
5c2f6c5d5cd0fe0ecfa24b844f841c8a73d8baaafb827ec413afa41335aa1c47
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/jquery.mobile.custom.min.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:36 GMT
Accept-Ranges: bytes
Content-Length: 7784
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js
95.214.24.226200 OK 3.0 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/applicazioni/trasversali/javascript/utilita-app.js
IP 95.214.24.226:0
Hash 9aa07ea97efef38c156c5065ec6b040e
3d25ced0d2bbac415a0f583f54bc270b7b051a45
9bdd42402354335825af6f1b45bb83f645c16199d4bc7ee5f428efb3dbfef811
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/applicazioni/trasversali/javascript/utilita-app.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:46:52 GMT
Accept-Ranges: bytes
Content-Length: 2983
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/slick.min.js
95.214.24.226200 OK 42 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/slick.min.js
IP 95.214.24.226:0
File type ASCII text, with very long lines (32076)
Hash 14c2e83236ae603c42164f30103634c6
1b2bad348d7fb92022c2218882242ee6223b46b6
6fa18ab0db86897ea250d65eda6233b1533fdf7f94c9d44a6af2ee16af8242ab
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/slick.min.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:44 GMT
Accept-Ranges: bytes
Content-Length: 41953
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-rsa-2/hashtable.js
95.214.24.226200 OK 14 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-rsa-2/hashtable.js
IP 95.214.24.226:0
File type ASCII text, with CRLF line terminators
Hash f47c9a2aad50eddc384597280522f86a
73500eb3a7b9c96d0b6f075bc7a742dfe014a2a1
138143108101149f64bcda5fe38cdd2f3f2139cc957b45949e71fac33ea94482
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /jod-fcc/resources/portal/js-rsa-2/hashtable.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:44:12 GMT
Accept-Ranges: bytes
Content-Length: 14081
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/jod-fcc/posteID/x-jod-poste-id.js
95.214.24.226200 OK 3.8 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/jod-fcc/posteID/x-jod-poste-id.js
IP 95.214.24.226:0
File type ASCII text, with CRLF line terminators
Hash fec7eb85618cb63c3fb5b3efee61d2b2
9c120ed394fa9ddf75062361fc00c073d3ace5aa
12359170db0ece19b214a4f15092e82199ca7b179bc8ef4ffa722918f4623b46
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /jod-fcc/posteID/x-jod-poste-id.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:43:24 GMT
Accept-Ranges: bytes
Content-Length: 3812
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-rsa-2/rsa.js
95.214.24.226200 OK 39 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-rsa-2/rsa.js
IP 95.214.24.226:0
File type ASCII text, with very long lines (2059), with CRLF line terminators
Hash 5791e2f173300646df45d5698867dc27
b28280fcfccd6891e88d912834062ee18e9f7333
a8e90848cdc80b7134da128a50574ec9f913f947ce72a769d392177eb8647377
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /jod-fcc/resources/portal/js-rsa-2/rsa.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:44:20 GMT
Accept-Ranges: bytes
Content-Length: 39372
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js
95.214.24.226200 OK 2.9 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js
IP 95.214.24.226:0
File type ASCII text, with very long lines (597), with CRLF line terminators
Hash 03aea05809bf32353408cb78cdf40f08
5bfe199b18c64b584d8bc98308c769c8e32b331a
9b8d058f857c6ca7f7d4c0ef2e800c6884d6a89bb52cb294774505d1d3c7283b
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /jod-fcc/resources/portal/js-rsa-2/pbase-css-poste.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:44:16 GMT
Accept-Ranges: bytes
Content-Length: 2915
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-polling/jdpolling.js
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-polling/jdpolling.js
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /jod-fcc/resources/portal/js-polling/jdpolling.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/start-script.js
95.214.24.226200 OK 23 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/start-script.js
IP 95.214.24.226:0
File type Unicode text, UTF-8 text, with very long lines (306)
Hash ed56f6a18269e8a0626db5de25f3f657
c850fa6c06893edb1926db33bf7d13971f6e2ad5
4d43fc9cc16f5907f1a85777ae1e40d4e520a10302c424c505325723b64ea160
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/start-script.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:46 GMT
Accept-Ranges: bytes
Content-Length: 22866
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/bootstrap/js/bootstrap.js
95.214.24.226200 OK 69 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/bootstrap/js/bootstrap.js
IP 95.214.24.226:0
Hash e3676b6eb90f0f6739c89d56a3efa245
83188f24cfbd8e33b69b23139202c0cf2f390063
31d80f65a2c078aa3ca5051504f29d8986df61f04bc998036527374eef1c286b
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/bootstrap/js/bootstrap.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:47:58 GMT
Accept-Ranges: bytes
Content-Length: 69214
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js
95.214.24.226200 OK 694 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js
IP 95.214.24.226:0
Hash b5a0dd7ce1f7c1c6b80b5abe13308dd2
6cc4835430ac4ba8845fd02efdb5688166a5ed8a
ce01c41255d7e61cc44e865184559085737a98cf6911ef67f915692152b88852
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/bootstrap/js/ie10-viewport-bug-workaround.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:48:00 GMT
Accept-Ranges: bytes
Content-Length: 694
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/alignment.css
95.214.24.226200 OK 2.7 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/alignment.css
IP 95.214.24.226:0
File type assembler source, ASCII text
Hash 2b774691bee7183287e841ed3287c1c1
bb03284b1ee77d718adee2286f8ce20e42f0e9c6
8d4821ff1de6348bb012672849a8205eb9833edde9b1e417f2fa5365261c08bf
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/alignment.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:48:50 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/typography.css
95.214.24.226200 OK 5.1 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/typography.css
IP 95.214.24.226:0
File type assembler source, ASCII text
Hash 9bc1f2ccabef97230a29e52bb7d71e2e
c2cc92960a2674ffa0c8d32b2133e596b3613630
2a96cd832563fdde56f4c71a663dd68bd9202eeed6a4c2c525e3275e4e68be06
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/typography.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:10 GMT
Accept-Ranges: bytes
Content-Length: 5123
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/fonts.css
95.214.24.226200 OK 4.5 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/fonts.css
IP 95.214.24.226:0
Hash c26ff7c37210341d690599a8a2310737
3127758f8fcf89472099f6963b90464cbe3b01b9
f4e596fd7ef88f965cc4df8dd6895f65cbdb0d2f49e58bfc5c4832675318ddc0
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/fonts.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Sun, 18 Jul 2021 13:10:22 GMT
Accept-Ranges: bytes
Content-Length: 4511
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/spaces.css
95.214.24.226200 OK 30 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/spaces.css
IP 95.214.24.226:0
Hash a0339ef2039b90034b16e341e508b5e8
dab67a84e5a8228a6f9ed90f05b8a7b983912b3c
9fb634a5bbfbee4fc2503595fa18a98142ca8cf0bb29984d065edfeef0006bdd
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/spaces.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:08 GMT
Accept-Ranges: bytes
Content-Length: 29954
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 30d8c4972c6e27e944288d26302d483b
98dad0c608f5872b84859c70b3b39beecff4e4bf
733a394f2c4230aaa3b96a4e808e589dfd344830bc36bdaf3f563c50eeda96ea
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 21:40:25 GMT
ETag: "98dad0c608f5872b84859c70b3b39beecff4e4bf"
Last-Modified: Sat, 25 Mar 2023 21:40:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7adaf3c8ae5fb503-OSL
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/extra.css
95.214.24.226200 OK 5.0 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/extra.css
IP 95.214.24.226:0
Hash 6845e4602367a2454bf3a8aa15d014a6
841e011124cb8f568f3c2d8bfcb3013ea6f042fd
dc4a581b65b22475fbb99580954525d488986dc35b37b19310d30a0598a32fde
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/extra.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:48:58 GMT
Accept-Ranges: bytes
Content-Length: 4991
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 30d8c4972c6e27e944288d26302d483b
98dad0c608f5872b84859c70b3b39beecff4e4bf
733a394f2c4230aaa3b96a4e808e589dfd344830bc36bdaf3f563c50eeda96ea
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 21:40:25 GMT
ETag: "98dad0c608f5872b84859c70b3b39beecff4e4bf"
Last-Modified: Sat, 25 Mar 2023 21:40:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7adaf3c8bc0ab527-OSL
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base-element.css
95.214.24.226200 OK 214 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base-element.css
IP 95.214.24.226:0
Size 214 kB (213450 bytes)
Hash f938de6880813c3c7b2a30b28a6c0da8
19d93950a34345d83dfc8096214d6082c2d6706a
1f615511776a12840fb4cccea90ef49bc3c6bc0d430932bd6f219e82e13c025b
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/base-element.css HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Sun, 18 Jul 2021 13:01:52 GMT
Accept-Ranges: bytes
Content-Length: 213450
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
www.poste.it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png
13.107.237.61200 OK 5.0 kB URL HTTP/2 www.poste.it/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png
IP 13.107.237.61:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 110 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e9962a2babbe39b3725e2a13d7b233d
e67105271b1076016a630071a3a231e0084e96ed
ccb7ecb1eadb470600c66ed9548f5dd49cfbbbd67eb34f9d4437eeec55c69212
GET /risorse_dt/condivise/immagini/loghi/logo-poste-italiane-small.png HTTP/1.1
Host: www.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600,public
pragma: public
content-length: 4959
content-type: image/png
expires: Sun, 26 Mar 2023 00:32:17 GMT
last-modified: Wed, 21 Dec 2022 14:55:14 GMT
accept-ranges: bytes
etag: "63a31e52-135f"
x-cache: CONFIG_NOCACHE
mylocation: TORINO
x-azure-ref: 0gYQfZAAAAACIQGgbmFQAQ75uG1tOcryEU1ZHMjBFREdFMDYyMgBiZWE0YWQ2MS1kNWI2LTRmYmYtOWYyMC04NzJlNzI1N2U1NmE=
date: Sat, 25 Mar 2023 23:32:17 GMT
X-Firefox-Spdy: h2
www.poste.it/bowser.js
13.107.237.61200 OK 17 kB IP 13.107.237.61:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 971b649748eb819a7f4c8cdc4805376c
f520540daa055e999dd6599e6e7e9f977899a8f6
61e2728bce5b153ccca7fd7ffe0a98a29dbfb0218300a39dd0cf0535635683f2
GET /bowser.js HTTP/1.1
Host: www.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=3600,public
pragma: public
content-length: 16647
content-type: application/javascript
expires: Sun, 26 Mar 2023 00:32:17 GMT
last-modified: Wed, 20 Oct 2021 13:58:32 GMT
accept-ranges: bytes
etag: "61702088-4107"
x-cache: CONFIG_NOCACHE
mylocation: TORINO
x-azure-ref: 0gYQfZAAAAAC6iAoPpan7QIhnrG/7NyM5U1ZHMjBFREdFMDYyMgBiZWE0YWQ2MS1kNWI2LTRmYmYtOWYyMC04NzJlNzI1N2U1NmE=
date: Sat, 25 Mar 2023 23:32:17 GMT
X-Firefox-Spdy: h2
web.95-214-24-226.cprapid.com/.jod-fcc/qrr.png
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/.jod-fcc/qrr.png
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /.jod-fcc/qrr.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.95-214-24-226.cprapid.com/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/ico-pp.png
95.214.24.226200 OK 3.0 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/ico-pp.png
IP 95.214.24.226:0
File type PNG image data, 45 x 44, 8-bit/color RGB, non-interlaced\012- data
Hash b58f05ef3e25628af63aca1f633afef2
ed29c9437597aed2c13291305a262d03684d8910
068347897472440f46e706b2d61c77ec861e2facb34b567e2e2c851ae1bc4dea
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt_ext/icone/ico-pp.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2020 12:31:16 GMT
Accept-Ranges: bytes
Content-Length: 2957
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/ico-bp.png
95.214.24.226200 OK 3.5 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/ico-bp.png
IP 95.214.24.226:0
File type PNG image data, 45 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d96bc9b08477815ed8655ced98af0ac
04b6fa972775456746a7cfeba72f3878cf904183
d7f9c88c4f19de13e5ef1040c08cd72970808301de221e2ea7acfc71bf802cc1
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt_ext/icone/ico-bp.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2020 12:31:12 GMT
Accept-Ranges: bytes
Content-Length: 3511
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 23:14:33 GMT
age: 1064
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/empty-profile.png
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/empty-profile.png
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt_ext/icone/empty-profile.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/small-modal-ico-bp-pp.png
95.214.24.226200 OK 13 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/small-modal-ico-bp-pp.png
IP 95.214.24.226:0
File type PNG image data, 132 x 132, 8-bit/color RGBA, non-interlaced\012- data
Hash 22e37aed1a37a4d10a2c011e969a1337
05d054f563899fffd3ffd4f5cba486c5273d17d9
d4a66d846de1a39c49b3d03f1c4c4d21cd9f5436f362b7a72fd2eb773f6cfaca
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt_ext/icone/small-modal-ico-bp-pp.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2020 12:31:20 GMT
Accept-Ranges: bytes
Content-Length: 12995
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-polling/jdpolling.js
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/jod-fcc/resources/portal/js-polling/jdpolling.js
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /jod-fcc/resources/portal/js-polling/jdpolling.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js
23.38.200.237200 OK 1.6 kB URL HTTP/2 assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (3138)
Hash dbb5211703cf7696d634360cc8874fa7
9231e7ebe8096b629c9ac522e41f8c2a8013db99
535a218392da01549f9fd640908f59c213e809c2db778c36094e3a84959106df
GET /extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "b89fcb8870ac40eecb6d3cc844d35389:1663863409.92483"
last-modified: Thu, 22 Sep 2022 16:16:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1598
expires: Sun, 26 Mar 2023 00:32:17 GMT
date: Sat, 25 Mar 2023 23:32:17 GMT
cache-control: no-cache
access-control-allow-origin: http://web.95-214-24-226.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js
23.38.200.237200 OK 12 kB URL HTTP/2 assets.adobedtm.com/extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32717)
Hash 9edbefe8919a34cc9ec5343e49caf90d
9e8f2b92a35df8e01814e558d10248a928ea2504
c276e66ee697edfb8fbe70a13d6cb8498b21fb998d10d6faaf3999f34f5525cc
GET /extensions/EPbf7b42aa08bc4f10879b1484195e80d1/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "dfdd9e1f988805f0c2fbb10cd6b8f034:1663863409.614694"
last-modified: Thu, 22 Sep 2022 16:16:49 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12384
expires: Sun, 26 Mar 2023 00:32:17 GMT
date: Sat, 25 Mar 2023 23:32:17 GMT
cache-control: no-cache
access-control-allow-origin: http://web.95-214-24-226.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
web.95-214-24-226.cprapid.com/.jod-fcc/qrr.png
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/.jod-fcc/qrr.png
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /.jod-fcc/qrr.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.95-214-24-226.cprapid.com/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/immagini/loghi/logo-poste-italiane-medium.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/empty-profile.png
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/empty-profile.png
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt_ext/icone/empty-profile.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 717ebcc65cb1390c2509851bac7b5878
1e04e3058329f3809bc01022d441172dcacc1aaa
3c8d41efe14dc75e001ce50aae65e133d90bcb2e2f86b2426cefe7abe4c7b588
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C8D41EFE14DC75E001CE50AAE65E133D90BCB2E2F86B2426CEFE7ABE4C7B588"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4498
Expires: Sun, 26 Mar 2023 00:47:15 GMT
Date: Sat, 25 Mar 2023 23:32:17 GMT
Connection: keep-alive
web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/stili/trasversali/risorse_dt/condivise/immagini/icone/icone-default-on/ico-torna-indietro.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/base-element.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web.95-214-24-226.cprapid.com/risorse_dt/applicazioni/trasversali/immagini/eye.png
95.214.24.226200 OK 645 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/applicazioni/trasversali/immagini/eye.png
IP 95.214.24.226:0
File type PNG image data, 24 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 5dfd11f759177ca66df6bfb649fa131c
8151b051d99d5988a9761adcc40089bfb20f5576
5931ba755c44c364f074f95a904536fb4076da4e44c811a1934c5fff735c39c4
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/applicazioni/trasversali/immagini/eye.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:46:32 GMT
Accept-Ranges: bytes
Content-Length: 645
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/bg-qrcode.png
95.214.24.226200 OK 5.3 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt_ext/icone/bg-qrcode.png
IP 95.214.24.226:0
File type PNG image data, 624 x 210, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ed242012ee510aca41b30408eb02cc7
957fd32bcb5bc79b1f6e7795e2c6a6444dc462f0
bf6bcbcf84ff0f18c4110fa868c29ff14aef2458be49afd0ffe37e5f9cd74950
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt_ext/icone/bg-qrcode.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Tue, 21 Jul 2020 12:31:04 GMT
Accept-Ranges: bytes
Content-Length: 5348
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
web.95-214-24-226.cprapid.com/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff
95.214.24.226200 OK 32 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff
IP 95.214.24.226:0
File type Web Open Font Format, TrueType, length 32412, version 1.0\012- data
Hash e49b4a99e99a162382c9135468cdff61
6fe7b52d7195d20e9d8ad05d4068dd87ddaeff76
0fa4aee030662ed700dc5cb2e13e52b85fb1254a195d9ab0a1a10d79e645c8f8
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/fonts/texta/Texta-Book/Texta-Book.woff HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:53:54 GMT
Accept-Ranges: bytes
Content-Length: 32412
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff
web.95-214-24-226.cprapid.com/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff
95.214.24.226200 OK 32 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff
IP 95.214.24.226:0
File type Web Open Font Format, TrueType, length 31976, version 1.0\012- data
Hash dcdd69e7910e57b0adc381e0fcf93e3e
21fd668706b3cd97f1b5df0c61ac4b05ab0bdf29
e3e914fafd966522cc6e0db2355a72202ece3052e768b0e34d05bdc4d26bf489
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/fonts/texta/Texta-Light/Texta-Light.woff HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:54:02 GMT
Accept-Ranges: bytes
Content-Length: 31976
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff
web.95-214-24-226.cprapid.com/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff
95.214.24.226200 OK 33 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff
IP 95.214.24.226:0
File type Web Open Font Format, TrueType, length 32756, version 1.0\012- data
Hash ddcb123ab58089ce07fa2d0e767decc4
b6bdcb18d6e6c3a28a40a041324001c794375c85
98a9f23066501d2b1676f72a2feb355caa114d4dffce7bae927083af92ccd6c9
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/fonts/texta/Texta-Medium/Texta-Medium.woff HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:54:10 GMT
Accept-Ranges: bytes
Content-Length: 32756
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff
web.95-214-24-226.cprapid.com/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff
95.214.24.226200 OK 32 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff
IP 95.214.24.226:0
File type Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Hash 8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/fonts/texta/Texta-Regular/Texta-Regular.woff HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/risorse_dt/condivise/stili/trasversali/fonts.css
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:54:16 GMT
Accept-Ranges: bytes
Content-Length: 32376
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/460b5e998a69/RCce78d2ba79364101b982bf481cca240c-source.min.js
23.38.200.237200 OK 1.1 kB URL HTTP/2 assets.adobedtm.com/4d622ce80bd2/66013fe91d66/460b5e998a69/RCce78d2ba79364101b982bf481cca240c-source.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (3366)
Hash 82ae770e0098fb68cade9247a50d2147
a302e725b615d7870e4138c1cdfe00336b3383ec
8355556c62c0e5ea2e381b0d660af68899f85a7611717c7a3e8cc974b5f0c171
GET /4d622ce80bd2/66013fe91d66/460b5e998a69/RCce78d2ba79364101b982bf481cca240c-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "0b8391f1b2d1368eac5d4cab5b8fb91d:1679679852.889337"
last-modified: Fri, 24 Mar 2023 17:44:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1104
cache-control: max-age=3600
expires: Sun, 26 Mar 2023 00:32:18 GMT
date: Sat, 25 Mar 2023 23:32:18 GMT
access-control-allow-origin: http://web.95-214-24-226.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/460b5e998a69/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js
23.38.200.237200 OK 1.2 kB URL HTTP/2 assets.adobedtm.com/4d622ce80bd2/66013fe91d66/460b5e998a69/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (2795)
Hash 8751220fddc987c2cf96d3360a321811
4fb4d4d66aea265c4b63eae3ef6fb49732d6bf1a
309838270dc7636a89830fe6ef70daee497d1bf2f938dc1d4e9573722d4a8a8e
GET /4d622ce80bd2/66013fe91d66/460b5e998a69/RC0571d095fad64781ad9ad87fc8a7eda3-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "0b8391f1b2d1368eac5d4cab5b8fb91d:1679679852.889337"
last-modified: Fri, 24 Mar 2023 17:44:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1210
cache-control: max-age=3600
expires: Sun, 26 Mar 2023 00:32:18 GMT
date: Sat, 25 Mar 2023 23:32:18 GMT
access-control-allow-origin: http://web.95-214-24-226.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/4d622ce80bd2/66013fe91d66/460b5e998a69/RCace12870bc974581b26b193857913875-source.min.js
23.38.200.237200 OK 1.1 kB URL HTTP/2 assets.adobedtm.com/4d622ce80bd2/66013fe91d66/460b5e998a69/RCace12870bc974581b26b193857913875-source.min.js
IP 23.38.200.237:0
File type HTML document, ASCII text, with very long lines (3225)
Hash a325a25ef01c3f7b4ab14b11575a0e0a
fa8c7b973601eedc022397b752531608694cf39b
53f21a611406bccd2a5f9431079db254ab11b14cb2a3d9cb32400a55afcbe610
GET /4d622ce80bd2/66013fe91d66/460b5e998a69/RCace12870bc974581b26b193857913875-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "0b8391f1b2d1368eac5d4cab5b8fb91d:1679679852.889337"
last-modified: Fri, 24 Mar 2023 17:44:12 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1072
cache-control: max-age=3600
expires: Sun, 26 Mar 2023 00:32:18 GMT
date: Sat, 25 Mar 2023 23:32:18 GMT
access-control-allow-origin: http://web.95-214-24-226.cprapid.com
timing-allow-origin: *
X-Firefox-Spdy: h2
web.95-214-24-226.cprapid.com/risorse_dt/condivise/immagini/generiche/spinner_giallo.gif
95.214.24.226200 OK 34 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/immagini/generiche/spinner_giallo.gif
IP 95.214.24.226:0
File type GIF image data, version 89a, 150 x 150\012- data
Hash 442d51dab3205cf4c81de67e4bafdbda
52726f8f87116bd1fd03e9d99c0bb22afd168937
ea638c8244c7a5cc50e617807b1fc35637430f976e8210ef3d560a5eb059e5f5
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/immagini/generiche/spinner_giallo.gif HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:18 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:50:40 GMT
Accept-Ranges: bytes
Content-Length: 33869
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/gif
web.95-214-24-226.cprapid.com/risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png
95.214.24.226200 OK 7.3 kB URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png
IP 95.214.24.226:0
File type PNG image data, 388 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f334889f79c8a60aca123b6f0e77cd6
b24faf71ad0f3fdb6228e8c101190aafa12b9216
f73f55b1729c6267bf5137b3de7a4e3a842780a87d7a918e878ff63437bb6a87
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/immagini/loghi/logo-poste-italiane.png HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b; s_fid=7D07BB64313B15E5-123777FFE51C7778
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:18 GMT
Server: Apache
Last-Modified: Fri, 11 Dec 2020 02:33:04 GMT
Accept-Ranges: bytes
Content-Length: 7296
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
push.services.mozilla.com/
35.162.92.33101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.92.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JBA+Yn1402JwAQUimKXiPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: u7mhnb0/8SXs/h16/iqWhDy1TLE=
web.95-214-24-226.cprapid.com/favicon.ico
95.214.24.226404 Not Found 315 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/favicon.ico
IP 95.214.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 23:32:18 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 68736fda6b6db2ff5936dce4cd81b393
1f134669bba8737d7cde3a6a3a2c5d35ce8b89f0
cd19792f271d7262b1bf163d0a378a4b535a25d0142c40b4e23cb46d5e85c5f2
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 22:51:49 GMT
ETag: "1f134669bba8737d7cde3a6a3a2c5d35ce8b89f0"
Last-Modified: Sat, 25 Mar 2023 22:51:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7adaf3ce3b22b503-OSL
posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s51488732773127?AQB=1&ndh=1&pf=1&t=25%2F2%2F2023%2023%3A32%3A32%206%200&fid=7D07BB64313B15E5-123777FFE51C7778&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.95-214-24-226.cprapid.com%2F&c2=web.95-214-24-226.cprapid.com%2F&v2=web.95-214-24-226.cprapid.com%2F&v32=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&v46=DEFAULT&v198=2023-03-24T17%3A42%3A37Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.125.10302 Found 0 B URL HTTP/1.1 posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s51488732773127?AQB=1&ndh=1&pf=1&t=25%2F2%2F2023%2023%3A32%3A32%206%200&fid=7D07BB64313B15E5-123777FFE51C7778&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.95-214-24-226.cprapid.com%2F&c2=web.95-214-24-226.cprapid.com%2F&v2=web.95-214-24-226.cprapid.com%2F&v32=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&v46=DEFAULT&v198=2023-03-24T17%3A42%3A37Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.125.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s51488732773127?AQB=1&ndh=1&pf=1&t=25%2F2%2F2023%2023%3A32%3A32%206%200&fid=7D07BB64313B15E5-123777FFE51C7778&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.95-214-24-226.cprapid.com%2F&c2=web.95-214-24-226.cprapid.com%2F&v2=web.95-214-24-226.cprapid.com%2F&v32=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&v46=DEFAULT&v198=2023-03-24T17%3A42%3A37Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: posteitalianespa.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
HTTP/1.1 302 Found
access-control-allow-origin: *
vary: Origin
date: Sat, 25 Mar 2023 23:32:18 GMT
content-type: text/plain;charset=utf-8
expires: Fri, 24 Mar 2023 23:32:18 GMT
last-modified: Sun, 26 Mar 2023 23:32:18 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_oplkzx7Eoo1pizmx7Ess1oplkz1vkx7Esvx7Eqz=[CS]v4|0-0|641F8482[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Mon, 24 Mar 2025 23:32:32 GMT; SameSite=None;
location: http://posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s51488732773127?AQB=1&pccr=true&ndh=1&pf=1&t=25%2F2%2F2023%2023%3A32%3A32%206%200&fid=7D07BB64313B15E5-123777FFE51C7778&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.95-214-24-226.cprapid.com%2F&c2=web.95-214-24-226.cprapid.com%2F&v2=web.95-214-24-226.cprapid.com%2F&v32=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&v46=DEFAULT&v198=2023-03-24T17%3A42%3A37Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
content-length: 0
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s51488732773127?AQB=1&pccr=true&ndh=1&pf=1&t=25%2F2%2F2023%2023%3A32%3A32%206%200&fid=7D07BB64313B15E5-123777FFE51C7778&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.95-214-24-226.cprapid.com%2F&c2=web.95-214-24-226.cprapid.com%2F&v2=web.95-214-24-226.cprapid.com%2F&v32=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&v46=DEFAULT&v198=2023-03-24T17%3A42%3A37Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
15.236.125.10200 OK 43 B URL HTTP/1.1 posteitalianespa.sc.omtrdc.net/b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s51488732773127?AQB=1&pccr=true&ndh=1&pf=1&t=25%2F2%2F2023%2023%3A32%3A32%206%200&fid=7D07BB64313B15E5-123777FFE51C7778&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.95-214-24-226.cprapid.com%2F&c2=web.95-214-24-226.cprapid.com%2F&v2=web.95-214-24-226.cprapid.com%2F&v32=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&v46=DEFAULT&v198=2023-03-24T17%3A42%3A37Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1
IP 15.236.125.10:0
File type GIF image data, version 89a, 2 x 2\012- data
Hash ad480fd0732d0f6f1a8b06359e3a42bb
a544538683a2dfe574eeb2e358ac8fcc78289d50
a1ecbaed793a1f564c49c671f2dd0ce36f858534ef6d26b55783a06b884cc506
GET /b/ss/posteapp.overall.poste.italiane/1/JS-2.23.0-LDQM/s51488732773127?AQB=1&pccr=true&ndh=1&pf=1&t=25%2F2%2F2023%2023%3A32%3A32%206%200&fid=7D07BB64313B15E5-123777FFE51C7778&ce=UTF-8&pageName=Accedi%20o%20Registrati&g=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&c.&getPreviousValue=3.0.1&p_fo=3.0&.c&cc=EUR&c1=web.95-214-24-226.cprapid.com%2F&c2=web.95-214-24-226.cprapid.com%2F&v2=web.95-214-24-226.cprapid.com%2F&v32=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&v46=DEFAULT&v198=2023-03-24T17%3A42%3A37Z&v200=WEB&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&AQE=1 HTTP/1.1
Host: posteitalianespa.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://web.95-214-24-226.cprapid.com/
Connection: keep-alive
HTTP/1.1 200 OK
access-control-allow-origin: *
date: Sat, 25 Mar 2023 23:32:18 GMT
expires: Fri, 24 Mar 2023 23:32:18 GMT
last-modified: Sun, 26 Mar 2023 23:32:18 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_vi_oplkzx7Eoo1pizmx7Ess1oplkz1vkx7Esvx7Eqz=[CS]v4|7D07BB64313B15E5-123777FFE51C7778|0[CE]; Path=/; Domain=omtrdc.net; Max-Age=63072000; Expires=Mon, 24 Mar 2025 23:32:32 GMT; SameSite=None;
etag: 3607315412834549760-4619832665506725559
vary: *
content-type: image/gif;charset=utf-8
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
whos.amung.us/pingjs/?k=it51m5pael&t=Accedi%20o%20Registrati&c=d&x=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&y=&a=0&v=27&r=4313
104.22.74.171200 OK 48 B URL HTTP/1.1 whos.amung.us/pingjs/?k=it51m5pael&t=Accedi%20o%20Registrati&c=d&x=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&y=&a=0&v=27&r=4313
IP 104.22.74.171:0
File type ASCII text, with no line terminators
Hash 26f3be1775bee122af528b8c21c0e09a
7257b4c154a5d3a5ef34015cbf7c7301cef7c49f
88adac2b3eeccf9fd0ea8839bd75e2c1bae3a0adec4423de0dd2ff63019110e8
GET /pingjs/?k=it51m5pael&t=Accedi%20o%20Registrati&c=d&x=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&y=&a=0&v=27&r=4313 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:18 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7adaf3cf4f7595de-ARN
widget.poste.it/js/custom.js
62.241.5.94200 OK 32 kB URL HTTP/1.1 widget.poste.it/js/custom.js
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type HTML document, Unicode text, UTF-8 text, with very long lines (306)
Hash dc35b5976f8b2106a89786489b8a87e1
ae5cabe43e1f9570846e0637a588ec98f0f85474
16edb4295206702d8074c76a6193a7fbff0e51ee0d335442734e0c2b5bff7edd
GET /js/custom.js HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:18 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:50 GMT
ETag: "7b5d-5f5ffbffc4580"
Accept-Ranges: bytes
Content-Length: 31581
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=22
Connection: Keep-Alive
Content-Type: application/javascript
widget.poste.it/json/widgetLabels.json
62.241.5.94200 OK 7.1 kB URL HTTP/1.1 widget.poste.it/json/widgetLabels.json
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type JSON data\012- , Unicode text, UTF-8 text, with CRLF line terminators
Hash f6bcc872c62240d4339b14acdb952341
2a14c8c5c5513ba23351a67ae1a6f23f95626a23
5dee78278049e1a73e771b2ea7b4d3cbf89f71a2e6c535e07e45ff392cb89fa4
POST /json/widgetLabels.json HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://web.95-214-24-226.cprapid.com
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:18 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "1bd5-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 7125
Access-Control-Allow-Origin: http://web.95-214-24-226.cprapid.com
Keep-Alive: timeout=278, max=72
Connection: Keep-Alive
Content-Type: application/json
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 0cea3c3dad3bba68db9008c62c2ee3bd
f6615d44d4f296710da017df311f82218e0d174a
deb8af38c206cbff4f022e010a2fe4a3e742e7e0fb8ad456696bb63ee0337686
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 11:45:30 GMT
Expires: Wed, 29 Mar 2023 11:45:29 GMT
Etag: "f6615d44d4f296710da017df311f82218e0d174a"
Cache-Control: max-age=302589,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7adaf3d4881eb518-OSL
ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&t=Accedi%20o%20Registrati
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&t=Accedi%20o%20Registrati
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&t=Accedi%20o%20Registrati HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 23:32:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
api.ipify.org/
64.185.227.155200 OK 12 B IP 64.185.227.155:0
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET / HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://web.95-214-24-226.cprapid.com
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://web.95-214-24-226.cprapid.com
content-type: text/plain
date: Sat, 25 Mar 2023 23:32:19 GMT
vary: Origin
content-length: 12
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8415
Expires: Sun, 26 Mar 2023 01:52:34 GMT
Date: Sat, 25 Mar 2023 23:32:19 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8415
Expires: Sun, 26 Mar 2023 01:52:34 GMT
Date: Sat, 25 Mar 2023 23:32:19 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8415
Expires: Sun, 26 Mar 2023 01:52:34 GMT
Date: Sat, 25 Mar 2023 23:32:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9fb4561-4e9a-4728-817a-dc7935921c78.gif
34.120.237.76200 OK 31 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9fb4561-4e9a-4728-817a-dc7935921c78.gif
IP 34.120.237.76:0
File type GIF image data, version 89a, 296 x 148\012- data
Hash cb02719790621d275340a9f1302ad716
49d537f5017c791f5cf1757a99dffad2aedfb111
4d7be52572d52cd74432b3e32fd1b6e2975a0f7b7090d7f26f46c724647bf099
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9fb4561-4e9a-4728-817a-dc7935921c78.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 30715
x-amzn-requestid: 0c3fb7fe-a3a6-4cff-9bdf-e3d45a9d5ff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi6YHaOoAMF8zQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b75-15abd6411d64661b3e73de78;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:21 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 25CsOOg-_AbYfjvxIQYCY6MKopENFhVy14qhLfUHmnE0oes8yFroXA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 07:19:33 GMT
age: 58366
etag: "49d537f5017c791f5cf1757a99dffad2aedfb111"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&j=
141.101.120.10200 OK 4.7 kB URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&j=
IP 141.101.120.10:0
File type ASCII text, with very long lines (2077)
Hash cab8c2ee7733dbd29404d5752c3d141f
0aac668c5d06f0f958f3f3ae95524aa89e4d8e83
78ae264c98e42b73933050039623ede40aaad2f8a24f86296d57bfe3dc08f1ff
GET /i/?l=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:32:18 GMT
content-type: application/javascript
x-s: ger1
set-cookie: m=1; Domain=dtscout.com; Expires=Sun, 26-Mar-2023 00:55:38 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sun, 26-Mar-2023 03:32:18 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1679787138; Domain=dtscout.com; Expires=Mon, 03-Jul-2023 23:32:18 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.529
expires: Sat, 25 Mar 2023 23:32:17 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JBr2xk%2FCVnvVULjvfQa78zN0sZxDMSjAnIMjNwsoA0tq7EKSZWx7F9E91BXCLaFiBjlNUvAwwGWTs8NQ9fjsAEcecS%2BaMr8pj%2FNvkHQr5ahwXU%2BWjn9yduvmQyV%2B02w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7adaf3cd5a1e2d62-ARN
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8a2437b3c9ab01cd0e2327d4be5c61a
33573e5a6b6c1912702040c6d880c362baf0c3db
2556646c122f89bfce8467d13bf05e68f735373c8c18a33f7258f37f602673cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a195fab-643a-48cc-8f4e-51e27511b474.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5424
x-amzn-requestid: b03169ca-0cc0-49f5-b785-5e29d70048cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1kWGCnIAMFf7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f694e-679415d416cf3b666ec128be;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:36:14 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: HJYBgmjUNbjdPrncK3FAPRUykhg3R25vwcbN6jA4K23HPwRUVDCdpA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:51:29 GMT
age: 6050
etag: "33573e5a6b6c1912702040c6d880c362baf0c3db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 08:51:06 GMT
age: 52873
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9b21b2c60279839939b60afd83d047fa
544c243fe2d69156f50eec156a62de127128a028
091a59214cfc0af90b4cb820bb521577ae63e862ec10160b8f64c9a9e593630d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbfc8880-7788-4d8c-a59c-c048b787b772.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7823
x-amzn-requestid: c528eae7-69b4-4669-8c15-2b306586b84b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1kWHx5IAMFlEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f694e-340c77491ea4440b340e3822;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:36:14 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: L_VF003IBR5rwk7Dkcc5BLDFTR4sUCzXvgD3mcLML1bzNatBZjW-Cg==
via: 1.1 e39f48cc8f516dc1072afdb086c71f32.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:49:34 GMT
age: 6165
etag: "544c243fe2d69156f50eec156a62de127128a028"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde451a1a-fcba-44c0-b885-cf9daa6d2ff8.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde451a1a-fcba-44c0-b885-cf9daa6d2ff8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d54efd2b1b21530d0da6f7a622ea898e
656849322a4885c98f1f06600f3c4680522d78d0
88d941b88e10152a49bd5e07bb6d7f31a1e3b2841562985d1869f5eea6aacf7b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde451a1a-fcba-44c0-b885-cf9daa6d2ff8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9290
x-amzn-requestid: ea6a8cc6-98ee-4d42-9cb7-73087027dde2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1soGZRIAMF0-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-32b521b073af557b282cb6b4;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: amzRKsV1FYQWrlBPncqtBdU6rnpKISHPETSvZQSE6VPULbYEmGW_CQ==
via: 1.1 f3802d173009698413044360f84de06c.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:51:27 GMT
age: 6052
etag: "656849322a4885c98f1f06600f3c4680522d78d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&t=Accedi%20o%20Registrati
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&t=Accedi%20o%20Registrati
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F&t=Accedi%20o%20Registrati HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 23:32:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
widget.poste.it/fonts/Texta-Black.woff
62.241.5.94200 OK 33 kB URL HTTP/1.1 widget.poste.it/fonts/Texta-Black.woff
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type Web Open Font Format, TrueType, length 33140, version 1.0\012- data
Hash bb38c2004fb8284b41ab208428f57e57
eede479ce3535e6dd33934e677de0b7224ce31c4
3d4a9402bef6028217f3f4279e7f6c4bb9af9bfce7786eac52d3a5d0065a27af
POST /fonts/Texta-Black.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://web.95-214-24-226.cprapid.com
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:19 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "8174-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 33140
Access-Control-Allow-Origin: http://web.95-214-24-226.cprapid.com
Keep-Alive: timeout=278, max=47
Connection: Keep-Alive
Content-Type: application/font-woff
de.tynt.com/deb/v2?id=w!it51m5pael&dn=TC&cc=1&r=&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F
67.202.105.31200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!it51m5pael&dn=TC&cc=1&r=&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F
IP 67.202.105.31:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!it51m5pael&dn=TC&cc=1&r=&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sun, 26 Mar 2023 23:32:19 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA, Sec-CH-UA-Mobile
content-type: application/javascript
content-length: 4
date: Sat, 25 Mar 2023 23:32:19 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 23:32:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
widget.poste.it/fonts/Texta-LightItalic.woff
62.241.5.94200 OK 32 kB URL HTTP/1.1 widget.poste.it/fonts/Texta-LightItalic.woff
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type Web Open Font Format, TrueType, length 32084, version 1.0\012- data
Hash 50ff911beaeaea06a186cbe72898ea42
610aa069b2987d6fbbf46c456f177ced1aa49a57
91509bd0e2ed20655b4cbbf585f5587a1a1cc282291dd56d7821881699757971
POST /fonts/Texta-LightItalic.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://web.95-214-24-226.cprapid.com
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:19 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7d54-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32084
Access-Control-Allow-Origin: http://web.95-214-24-226.cprapid.com
Keep-Alive: timeout=278, max=46
Connection: Keep-Alive
Content-Type: application/font-woff
ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 23:32:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
widget.poste.it/fonts/Texta-Regular.woff
62.241.5.94200 OK 32 kB URL HTTP/1.1 widget.poste.it/fonts/Texta-Regular.woff
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Hash 8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2
POST /fonts/Texta-Regular.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://web.95-214-24-226.cprapid.com
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:19 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7e78-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32376
Access-Control-Allow-Origin: http://web.95-214-24-226.cprapid.com
Keep-Alive: timeout=278, max=45
Connection: Keep-Alive
Content-Type: application/font-woff
ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!it51m5pael&lm=0&ts=1679787152991&dn=TC&iso=0&pu=http%3A%2F%2Fweb.95-214-24-226.cprapid.com%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 23:32:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
widget.poste.it/css/chat_custom.css
62.241.5.94200 OK 1.8 kB URL HTTP/1.1 widget.poste.it/css/chat_custom.css
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type ASCII text, with CRLF line terminators
Hash b5630f2b6ef609755051582891d6f95f
ff9df70fc8ca0653c0fade1e7e062813785d5cec
0c4b8459c2b949886ae64971a9d3f2555b680dd1c1fa36a0b42dbca2a21bd053
GET /css/chat_custom.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:20 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "715-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 1813
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=84
Connection: Keep-Alive
Content-Type: text/css
widget.poste.it/css/chat_common.css
62.241.5.94200 OK 12 kB URL HTTP/1.1 widget.poste.it/css/chat_common.css
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type ASCII text, with CRLF line terminators
Hash 76f9060cb105221022b473277418b467
e2bfcc835a6c8bcf4ceb9e1da7b731591cf6b723
b6343a0f5e0b6b1955a69ca6fb1ef749bbeb18c633e08cff39689d773a0fa53f
GET /css/chat_common.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:20 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "2cfc-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 11516
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=83
Connection: Keep-Alive
Content-Type: text/css
widget.poste.it/css/widgets.min.css
62.241.5.94200 OK 118 kB URL HTTP/1.1 widget.poste.it/css/widgets.min.css
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type ASCII text, with very long lines (64898), with CRLF line terminators
Size 118 kB (118490 bytes)
Hash 8a02a55585ef2630988a32645ce68be2
00d11de0e5150cf3d35629f2bc52af00bfce4ee0
f0cf34169482d5d1aa31c2910fea9ad33979b7bf52a1202ab83d3de29843d8a3
GET /css/widgets.min.css HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:20 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "1ceda-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 118490
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=67
Connection: Keep-Alive
Content-Type: text/css
widget.poste.it/js/lib/widgets.min.js
62.241.5.94200 OK 839 kB URL HTTP/1.1 widget.poste.it/js/lib/widgets.min.js
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type ASCII text, with very long lines (64898), with CRLF line terminators
Size 839 kB (839332 bytes)
Hash 82374b6c20855319bda55472e83e82b4
9067439be48ff638c5ff5ef790ce12bc08b21414
18fc4c844d845b1c289d1d1d324ff6e7abf51785619c9a60d9e245b2100c256a
GET /js/lib/widgets.min.js HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:20 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "ccea4-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 839332
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=9
Connection: Keep-Alive
Content-Type: application/javascript
widget.poste.it/img/button_openChat.png
62.241.5.94200 OK 20 kB URL HTTP/1.1 widget.poste.it/img/button_openChat.png
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 7305cd2f12691ddda291fb1b21bd4347
5b3f944fc435c3ad74f138942aaf50ff159cbee0
25fbb9e5014408868cbd5d87ac48192ddddcb3b32ca3cdfb8e3efa0ebba2e251
GET /img/button_openChat.png HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.poste.it/css/chat_custom.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:20 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "4e8b-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 20107
Access-Control-Allow-Origin:
Keep-Alive: timeout=278, max=72
Connection: Keep-Alive
Content-Type: image/png
widget.poste.it/fonts/Texta-Regular.woff
62.241.5.94200 OK 32 kB URL HTTP/1.1 widget.poste.it/fonts/Texta-Regular.woff
IP 62.241.5.94:0
ASN #15720 Poste Italiane S.p.A.
File type Web Open Font Format, TrueType, length 32376, version 1.0\012- data
Hash 8d611853ca1853f21ea4d768306f965e
b189a033f6a69180f2f705557021861ee89af975
4563e60af72ef8d0cc8b7c64716d81610d2f6595c7f76c8069b2015a89d623e2
GET /fonts/Texta-Regular.woff HTTP/1.1
Host: widget.poste.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://web.95-214-24-226.cprapid.com
Connection: keep-alive
Referer: https://widget.poste.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:20 GMT
Server: Apache
Access-Control-Allow-Headers: Cache-Control,Pragma, Access-Control-Allow-Headers, Origin,Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers, If-Modified-Since, X-WRKEY, apikey
Last-Modified: Fri, 03 Mar 2023 14:27:48 GMT
ETag: "7e78-5f5ffbfddc100"
Accept-Ranges: bytes
Content-Length: 32376
Access-Control-Allow-Origin: http://web.95-214-24-226.cprapid.com
Keep-Alive: timeout=278, max=44
Connection: Keep-Alive
Content-Type: application/font-woff
web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/jquery.min.js
95.214.24.226200 OK 0 B URL HTTP/1.1 web.95-214-24-226.cprapid.com/risorse_dt/condivise/javascript/jquery.min.js
IP 95.214.24.226:0
Analyzer Verdict Alert phishtank Other
quad9 Sinkholed
GET /risorse_dt/condivise/javascript/jquery.min.js HTTP/1.1
Host: web.95-214-24-226.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: PHPSESSID=2f12be0e429d7a87835b039ce0d5194b
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:32:17 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 06:49:34 GMT
Accept-Ranges: bytes
Content-Length: 97163
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
t.dtscout.com/pv/
141.101.120.10200 OK 0 B IP 141.101.120.10:0
POST /pv/ HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------193023871622218749943168623791
Content-Length: 1209
Origin: http://web.95-214-24-226.cprapid.com
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: m=1; oa=1; df=1679787138
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:32:25 GMT
content-type: application/javascript
x-t: 0.112
x-c: 0
expires: Sat, 25 Mar 2023 23:32:24 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cqM%2BImsFeruBwQJEnZ7ffsBtiuwA7c9waIa4wRrSfJu69MFQnN8mwdV3NDEEmsQLIaHKcgGxU2qSWz6z8gGbuaUI3onxAMybxqN5xFimosElV1jlxErbENJ33P3J7QU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7adaf3fbef0f2d62-ARN
content-encoding: br
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=web.95-214-24-226.cprapid.com&_ss=4fremu9vge&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=20bx&_cb=_dtspv.c
141.101.120.10200 OK 0 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=web.95-214-24-226.cprapid.com&_ss=4fremu9vge&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=20bx&_cb=_dtspv.c
IP 141.101.120.10:0
GET /pv/?_a=v&_h=web.95-214-24-226.cprapid.com&_ss=4fremu9vge&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=20bx&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Cookie: m=1; oa=1; df=1679787138
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:32:18 GMT
content-type: application/javascript
x-t: 0.136
x-c: 0
expires: Sat, 25 Mar 2023 23:32:17 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oTeL%2B55GxduSgYC0hhtaz9Ix9Pgu7X14o%2BzSzu9wSGZM8SQgInhSLZ%2B2ToLpQIVpx6rart1mSAaPPSVfxoNKbhMzm2j6%2B520zsxx2F0saRM33PZ%2FgCFkuneUH%2Bk3EZQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7adaf3cdfab02d62-ARN
content-encoding: br
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
104.18.36.173200 OK 0 B IP 104.18.36.173:0
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://web.95-214-24-226.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:32:18 GMT
content-type: application/javascript
last-modified: Tue, 14 Mar 2023 15:48:17 GMT
vary: Accept-Encoding
etag: W/"64109741-4750"
content-encoding: gzip
cf-cache-status: HIT
age: 200618
expires: Tue, 28 Mar 2023 23:32:18 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7adaf3d1ae0b0b59-OSL
X-Firefox-Spdy: h2