Report - webmail.macelleriadelcorso.biz/

Report Overview

Submitted URL
webmail.macelleriadelcorso.biz/
IP
146.59.214.72
ASN
#16276 OVH SAS
Submitted
2023-03-29 20:10:23
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	3.0 kB	8.0 kB	23.33.119.27
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	238 B	34.117.65.55
webmail.sistemitre.it	unknown	2016-08-08T22:04:52Z	2023-03-27T23:10:16Z	9.3 kB	452 kB	146.59.214.74
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	53 kB	34.120.237.76
webmail.macelleriadelcorso.biz	unknown	2016-08-08T12:30:41Z	2023-03-29T05:10:06Z	362 B	405 B	146.59.214.72

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-29 20:10:36	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-29 20:10:36	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	webmail.sistemitre.it/webmail/login/	59 B	2023-03-07	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:35 Last Seen2023-04-01 10:25:03 Times Seen14 Hash c06e362c392ab5d5db6d9e27c65fe816 158fc8685d56ee1b017b025e64940c7ea05c1b4c 0ab5a1d0cec819164f34f18ab45abbd0db59ad5d0e1af2652d2422b2aba959ff Loading...

	webmail.sistemitre.it/webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb	2.7 kB	2023-03-13	2023-12-01
Pretty URL webmail.sistemitre.it/webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash 4d64b47bf922fc4c87710bb69bc54d64 63f262de01e3dfc894fb88b8eb754da13f97b97d a55db4d7df0c120c7002c5c605caa5aa33360177beb889a0cbc9ed80836bc102 Loading...

	webmail.sistemitre.it/webmail/login/	955 B	2023-03-13	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:45:24 Last Seen2023-04-01 10:25:03 Times Seen12 Hash fe2c617fd6e22ee53460731cbb3707b2 09b517399d92967c33a29eaec86c1a7dd181d4e3 1d35712cff162317870693c7b002a97cf930342ec33b6780612386b1fde1ceb1 Loading...

	webmail.sistemitre.it/weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb	5.4 kB	2023-03-13	2023-12-01
Pretty URL webmail.sistemitre.it/weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash a178528ebfec063d3dcd61962b6af86c 99aea1bab460b7365ddc3289e221772ad68a452c bb5e9926f96157657cbd26558c26f2aa0f906c650bdc64321fe96e3c324c1f91 Loading...

	webmail.sistemitre.it/webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb	54 B	2023-03-08	2024-05-01
Pretty URL webmail.sistemitre.it/webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:21:06 Last Seen2024-05-01 19:06:14 Times Seen36 Hash 567cafe78a87b0aee28c50993b92daab e493300134759a69eaa60128dc07133738d6ac97 68ec0a063e394fab883e5f22623125d38cedafaeabd7aca07e6c408358ebb1d3 Loading...

	webmail.sistemitre.it/webmail/login/	94 B	2023-03-07	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:35 Last Seen2023-04-01 10:25:03 Times Seen14 Hash 37f167f22ea42843e1acfd39b5c91dae 82dd2a78c07c40e96a1de4aa725f13d3522f77a0 f4d4b82919fd8afdf98e564ba21f3c3a99edb0f9fdaba4cb949eded221ef7a61 Loading...

	webmail.sistemitre.it/webmail/generatedDefaults.js	1.1 kB	2023-03-13	2023-11-02
Pretty URL webmail.sistemitre.it/webmail/generatedDefaults.js IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:45:24 Last Seen2023-11-02 07:10:35 Times Seen24 Hash 9e9095716ce593afe8724f5b5babc7df 95debf0c6faa185a4d151c83f8d49aff7e04ba45 6014ed7acd31bfd7ab16a02ef95ba30f363112fa42418b6b46c711ceff022fe1 Loading...

	webmail.sistemitre.it/weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb	25 kB	2023-03-08	2024-05-01
Pretty URL webmail.sistemitre.it/weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:21:06 Last Seen2024-05-01 19:06:14 Times Seen36 Hash 95c0baeb9329e3566fc25975f5f68f14 c1dbff1971be3d19acdf49f16e5237b10bd55d31 3e35cfb3ff01c0c51c11a124acd7cf8a88622068291eb7275404b6457a460383 Loading...

	webmail.sistemitre.it/weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb	28 kB	2023-03-08	2024-05-01
Pretty URL webmail.sistemitre.it/weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:21:06 Last Seen2024-05-01 19:06:14 Times Seen42 Hash ccf5e8687b20b29a55b320a458de7e84 b5d996714a2972938a1de0398d02acf3f54810e7 4e3470ec56712664defb271ebd315467e001270f78bcfadf9ce794e400649588 Loading...

	webmail.sistemitre.it/webmail/login/	540 B	2023-03-07	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:35 Last Seen2023-04-01 10:25:03 Times Seen14 Hash 787c86c9b20745959f839121fd180f6d 6ba24581d778396677cd1e7ca2350c188f0334af a8c34b888a530253bb3e651d2d3742e37fe8776bec861ab43dea3b8c9d983cc9 Loading...

	webmail.sistemitre.it/webmail/login/	856 B	2023-03-07	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:35 Last Seen2023-04-01 10:25:03 Times Seen14 Hash c0d4266d3a965f351b7eafae3bf6e895 0c4ab022e00405ccf83f254a3b6ce85569d8458e 507a212f165f63def7fb98f4249343234cd0d5f2f2fa7cad4be231c1cb179a50 Loading...

		Size	First Seen	Last Seen
	#1 Write - 7c50e274ad0c9a05a20f1d79959c1e07	109 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:54 Times Seen27 Hash 7c50e274ad0c9a05a20f1d79959c1e07 eab85da0fff24ff75ce7d5e1355354577438ab60 e8aa833e4d8c09d9f0179459cbf0de28727514676a9caa8182cc8f0930f9211d Loading...

	#2 Write - 8d6b8bbc9c8244a626dc7f49a46e2efb	120 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash 8d6b8bbc9c8244a626dc7f49a46e2efb cdd95c8f05c1d9348eec3d657ffd27ad4ffc9bf2 83760e2d6b0f4f1ba70e4c77340b5f2365531557144a5004268f84c6e653f1a4 Loading...

	#3 Write - 7d6d28d8e229b1f69e3b732e1ac9b8b6	106 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash 7d6d28d8e229b1f69e3b732e1ac9b8b6 bb9a9d3114e477cbb7244e433431e1c42ff895a8 e1d0447715e4a96d5cef857206681579ff195e04f23ee943e0efffe28e349571 Loading...

	#4 Write - d00a4e2c044fc97dcb9518a61b5fde66	109 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash d00a4e2c044fc97dcb9518a61b5fde66 66878e5b2f2581ef6ee23c1e603f57e272599ad7 7522966cd1416a9ea3a7e2a778663e8143a852168a100d0929fe4ce18730102a Loading...

	#5 Write - f04619debfdbdd7f798c4a910c7c4147	109 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:54 Times Seen27 Hash f04619debfdbdd7f798c4a910c7c4147 f7b78fec7461f157275afd048d05910041d737f7 7bec794d7697d571d4fecb11bb6134e00d68fdb5055e933f2a13c94db814b308 Loading...

	#6 Write - 65b76616706037d3d70663ba0ed5b93a	108 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:54 Times Seen27 Hash 65b76616706037d3d70663ba0ed5b93a 7b67252adb0ce9cd0791046b326314ebfc0e310e d5cb441769e7194e2b3c37a54591e548ff538e04cc58ac121c5044bb9138b60c Loading...

	#7 Write - 0293054decd28fc4789e4aceae3102ce	113 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:54 Times Seen27 Hash 0293054decd28fc4789e4aceae3102ce 275305127c70cab7a090c294180ac72032f3c87d 30378a918eb96f4f8ced59be64ffd2db22021cd5c08d0c9179a6537722cd0f8f Loading...

HTTP Transactions (41)

	URL	IP	Response	Size
	webmail.macelleriadelcorso.biz/	146.59.214.72	301 Moved Permanently	153 B
URL HTTP/1.1 webmail.macelleriadelcorso.biz/ IP 146.59.214.72:0 ASN #16276 OVH SAS File type HTML document text\012- HTML document text\012- HTML document, ASCII text Size 153 B (153 bytes) Hash ee654b93f7bcdf2035c5c85fb5c3f6f7 507e39b12cdd77fcbf3e2062cd11246a1ebab246 d9f1a99835e1f3b8ee9f801b10facd49d96c20fad076ee8ef775d75a78e2b3ae HTTP Headers `GET / HTTP/1.1 Host: webmail.macelleriadelcorso.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=UTF-8 Location: https://webmail.sistemitre.it/ Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET X-Powered-By-Plesk: PleskWin Date: Wed, 29 Mar 2023 20:10:19 GMT Content-Length: 153`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8" Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10237 Expires: Wed, 29 Mar 2023 23:00:49 GMT Date: Wed, 29 Mar 2023 20:10:12 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c83d39f350161ed2f5d20dcd68e47c92 2695a888e652cb314f8094cc6073c3364336d272 62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC" Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3323 Expires: Wed, 29 Mar 2023 21:05:35 GMT Date: Wed, 29 Mar 2023 20:10:12 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 4ad6984a756720fbfff47b37a75513a2 355e35258114452af8b9638985ed9d8ef3bf0aca 43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Content-Length, Retry-After, Alert, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 29 Mar 2023 19:28:11 GMT content-type: application/json age: 2521 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c0d9353dc46e88bf564ed464b0b073c7 0b5ce170e7db24267a3ba5b79a48548b1acd2e5b 7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B" Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10139 Expires: Wed, 29 Mar 2023 22:59:11 GMT Date: Wed, 29 Mar 2023 20:10:12 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: wQ620qdPX0+8zu15DnXejjeuux95lG47XecHbTO9/HlE33G1QCGwkfLe8hZWV/jerhvE4ZmtkCU= x-amz-request-id: 68Z9544CSYS0FYMX x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 29 Mar 2023 20:02:38 GMT age: 454 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 29 Mar 2023 20:10:12 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a740252e7b24892a3e34f6dfed6e3bde d44d21abb95edd1ccc775632254f11ee94fb585e e289995a2b4b340364dd7dfa32c79c7722ece6cc4b893b38fc68bbce680d2f94 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E289995A2B4B340364DD7DFA32C79C7722ECE6CC4B893B38FC68BBCE680D2F94" Last-Modified: Mon, 27 Mar 2023 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3020 Expires: Wed, 29 Mar 2023 21:00:33 GMT Date: Wed, 29 Mar 2023 20:10:13 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, ETag, Alert, Last-Modified, Retry-After, Content-Length, Pragma, Backoff, Cache-Control, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 29 Mar 2023 19:17:26 GMT age: 3167 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	push.services.mozilla.com/	34.117.65.55	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 34.117.65.55:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: EIu0VMPoKnsPLrHU4NtCmQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: gsoo1x5NVigQSWMzbBB4+EE3DBs= Date: Wed, 29 Mar 2023 20:10:13 GMT Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	webmail.sistemitre.it/	146.59.214.74	301 Moved permanently	0 B
URL HTTP/1.1 webmail.sistemitre.it/ IP 146.59.214.74:0 ASN #16276 OVH SAS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 301 Moved permanently Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: application/octet-stream Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=99 Location: /webmail/ Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/	146.59.214.74	301 Moved permanently	0 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/ IP 146.59.214.74:0 ASN #16276 OVH SAS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /webmail/ HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 301 Moved permanently Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: application/octet-stream Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=98 Location: /webmail/login Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/login	146.59.214.74	301 Moved permanently	0 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/login IP 146.59.214.74:0 ASN #16276 OVH SAS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /webmail/login HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 301 Moved permanently Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: application/octet-stream Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=97 Location: https://webmail.sistemitre.it/webmail/login/ Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	997 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type OpenPGP Secret Key\012- data Size 997 B (997 bytes) Hash 859280db7ae02c7fb5d1863ece11db08 d654fc2a28be481719a84121d15ea41885888ade fd3b101245bd0d25b4697d4ad103fea9293124c06041a47569c5710d3388a9a2 HTTP Headers `GET /webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=99 Last-Modified: Sun, 26 Jun 2022 07:40:26 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/generatedDefaults.js	146.59.214.74	200 OK	617 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/generatedDefaults.js IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 617 B (617 bytes) Hash 6543b6f410d2a00b6d21d380ec04bdb4 7b6f0d0a040f60359a1eea6a15cb8326468b1e19 b64f9aade140a157c9724eb1da705ec85fe39994d9466262f73ea2bf3c5a7ed1 HTTP Headers `GET /webmail/generatedDefaults.js HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Wed, 29 Mar 2023 20:10:14 GMT Expires: Wed, 4 Jun 1980 06:02:09 GMT Keep-Alive: timeout=15, max=99 Pragma: no-cache Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block

	webmail.sistemitre.it/weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	2.0 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 2.0 kB (1981 bytes) Hash 811afcd33b7e7f30f44a7d6d3f5868f1 3be2f399121d73ec2c86a47c5807c5749425e957 5409d20d1dcbde04aea8bff584bbf51c6882dfa8a214251b513b8fac190d08f7 HTTP Headers `GET /weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=98 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	1.3 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 1.3 kB (1341 bytes) Hash 92c6b7414356e6ed490caf503fcdcbc6 6d33b4804efb4c1bcedb512dd520574f344e0157 c7b26a9598d70d786534002074f3ec34b14f1cd8961f2dfcc6e259af60b96c04 HTTP Headers `GET /weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/css Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=97 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/connect/webmail2.css?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	255 B
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/connect/webmail2.css?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type OpenPGP Secret Key\012- data Size 255 B (255 bytes) Hash 8102d853579361ba45858a141aa89de8 be84fd697e959476982f841b8bad72719c6e050c dc48e085c5234f53f07730dc60cbc353ff1bc9b52318db9dc6319b80c9c3c8b6 HTTP Headers `GET /weblib/int/login/connect/webmail2.css?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/css Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=98 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	7.1 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 7.1 kB (7104 bytes) Hash 62463c88a541280f7381c720c9b6a75a 407f5eb455e53520a7a02ecae0cedf61e90f5ad4 a2095ff94890758ee54422822958343edbd009164609016df5d6cf3b56e80648 HTTP Headers `GET /weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=96 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	7.5 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 7.5 kB (7482 bytes) Hash 767a48818e5d9b3a33368a48269db555 f84b9fff11563727d29a4bf841ff02199856e4a8 e8548538f5278713d2a1be2afc3fad0649efc786936e504658f88f0e26f4f029 HTTP Headers `GET /weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=99 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	58 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 58 B (58 bytes) Hash 16887ef4c7b7c7c232e2d69c036d6f20 df82f25005a607f8060ccaad4450a8c7cb6e913e a9031e9b5b2f9a967e7c817d44923e134243acc5014b4aa4cc750b82cb19988d HTTP Headers `GET /webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Wed, 29 Mar 2023 20:10:14 GMT Keep-Alive: timeout=15, max=98 Last-Modified: Sun, 26 Jun 2022 07:40:00 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/img/background.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	13 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/img/background.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 89 x 89, 8-bit/color RGBA, non-interlaced\012- data Size 13 kB (13253 bytes) Hash 14642e1e36792878b78f0506c1f38420 3efa60d284c34afafd401f81a0e49597429353dc 441591df4085a5b82c77cf0fb4c10b009461d608bbc27dae2e4ed871c8ab630e HTTP Headers GET /weblib/int/login/img/background.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Wed, 29 Mar 2023 20:10:15 GMT Keep-Alive: timeout=15, max=97 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/connect/logo.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	3.6 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/connect/logo.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 209 x 45, 8-bit/color RGBA, non-interlaced\012- data Size 3.6 kB (3597 bytes) Hash 6847721072d8b62cd8ac823bf896a95f 49ad83ef34c1195face43d95d709c047a81c31f1 b8a745d37e3fc1cb6fac54694e50a8caf7f4ac4d938eec049857b6384e0f1fe4 HTTP Headers GET /weblib/int/login/connect/logo.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/connect/webmail2.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Wed, 29 Mar 2023 20:10:15 GMT Keep-Alive: timeout=15, max=95 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/img/top.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	1.3 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/img/top.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 325 x 15, 8-bit/color RGBA, non-interlaced\012- data Size 1.3 kB (1280 bytes) Hash fad83a948802b4e3fd07f5c6db1a2586 9cfb859e335e6688935608e620a9ee41b35fe47e 2236abfb0d888ece71c46f5aa65ee3e334dda7031b220779ecfac4ea2be7e489 HTTP Headers `GET /weblib/int/login/img/top.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Wed, 29 Mar 2023 20:10:15 GMT Keep-Alive: timeout=15, max=97 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/img/middle.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	1.0 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/img/middle.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 325 x 3, 8-bit/color RGBA, non-interlaced\012- data Size 1.0 kB (1009 bytes) Hash e91b57aee3f49204f440b4e5d840d042 041fe6a7e4012fd81dd631fce22e1f9f42cd26c9 eed3769d85f5e4d3f1a5809cb683dc73e31fd97ce125a934b274e8883b8d03f7 HTTP Headers `GET /weblib/int/login/img/middle.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Wed, 29 Mar 2023 20:10:15 GMT Keep-Alive: timeout=15, max=99 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/img/bottom.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	1.3 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/img/bottom.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 325 x 15, 8-bit/color RGBA, non-interlaced\012- data Size 1.3 kB (1258 bytes) Hash 354a3c5977033d14f4fc89e16241d438 35478b37a70a93fea4bce3939b269051ff3a0f1c 8490c4be2797355bdcf968e41ace78026692d684f700bc75634df16898d56753 HTTP Headers `GET /weblib/int/login/img/bottom.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Wed, 29 Mar 2023 20:10:15 GMT Keep-Alive: timeout=15, max=96 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/favicon.ico?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	5.4 kB
URL HTTP/1.1 webmail.sistemitre.it/favicon.ico?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel\012- data Size 5.4 kB (5430 bytes) Hash 94348007b80d9a8f1a4ed5d8ccea0700 c49b2009700b8bd6efcf30080e7f9d15d056b2b2 59f2b70d58187d2dca8bb533fadf563a0077d2273755149a416d493b233a0f13 HTTP Headers `GET /favicon.ico?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/x-icon Date: Wed, 29 Mar 2023 20:10:15 GMT Keep-Alive: timeout=15, max=95 Last-Modified: Sun, 26 Jun 2022 07:39:50 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B" Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9548 Expires: Wed, 29 Mar 2023 22:49:22 GMT Date: Wed, 29 Mar 2023 20:10:14 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B" Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9548 Expires: Wed, 29 Mar 2023 22:49:22 GMT Date: Wed, 29 Mar 2023 20:10:14 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B" Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9548 Expires: Wed, 29 Mar 2023 22:49:22 GMT Date: Wed, 29 Mar 2023 20:10:14 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B" Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9548 Expires: Wed, 29 Mar 2023 22:49:22 GMT Date: Wed, 29 Mar 2023 20:10:14 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B" Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9548 Expires: Wed, 29 Mar 2023 22:49:22 GMT Date: Wed, 29 Mar 2023 20:10:14 GMT Connection: keep-alive`

	webmail.sistemitre.it/custom/webmail/img/loginlogo_13726.png	146.59.214.74	200 OK	5.3 kB
URL HTTP/1.1 webmail.sistemitre.it/custom/webmail/img/loginlogo_13726.png IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 227 x 34, 8-bit/color RGBA, non-interlaced\012- data Size 5.3 kB (5316 bytes) Hash a2a7e0a1ab927ca9ed55170878fdeb68 6e034d485052af64c28138f60a54d56ae97e7923 21429799c2fef9a564e765a3768621a52fce92b5a6f22ce649ae986f1e4461e9 HTTP Headers `GET /custom/webmail/img/loginlogo_13726.png HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Wed, 29 Mar 2023 20:10:15 GMT Keep-Alive: timeout=15, max=94 Last-Modified: Wed, 11 Oct 2017 09:56:13 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg	34.120.237.76	200 OK	8.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.7 kB (8745 bytes) Hash ef54a1ed997cc09495edb102ccdf6803 f5637efb37b5eecff77e60e6bcf5f599991f334f fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8745 x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CguJ5Hy5oAMFyAg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0 x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: FHONNj6M7I5oVTKAKYspq0ZAJMYohURXs5ufSL-r--zCSdjuSvrpSA== via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google date: Tue, 28 Mar 2023 21:51:37 GMT age: 80317 etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg	34.120.237.76	200 OK	7.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.6 kB (7630 bytes) Hash 096bf7a8a2bfe48c19e6bf6887145e64 6193039864cae4ab0163f3a7d45613fb86e6be14 51625131b04aa5294e90062807ca728b7a41db79ea069cd238711f8ead5ecd8a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7630 x-amzn-requestid: 5f162d03-0d82-4cd6-8812-4dac159bc2b2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CguY9HwhIAMFeOQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64235dd2-670279397929c69c0ee58b35;Sampled=0 x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: LBOtzCZ-Ef7MsXDj9uh8QSi4jdLTSR3lEtZqRrU6ldmCZVqvpoAQmw== via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google date: Tue, 28 Mar 2023 21:43:57 GMT age: 80777 etag: "6193039864cae4ab0163f3a7d45613fb86e6be14" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg	34.120.237.76	200 OK	7.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.6 kB (7605 bytes) Hash fd1bc71c7e9eed7c086d752ea8b4b992 02a74cf88501d65b3dfcceb5adc79fd93ce785ed a9a423d347533322d4d3ba90ee5fca5ca32f8d540f744ea2621deeda46df89f3 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7605 x-amzn-requestid: b7628073-4eb3-4ef6-b7d0-0224e0a75601 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CguY8GFPoAMFebQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64235dd2-445041c74356c54053f772a1;Sampled=0 x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 2LLHDcPZsSP1XPxH7agC7FhVwQQXfrWq3CEOSz0mBTjGykXxNQIq9Q== via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google date: Tue, 28 Mar 2023 21:56:00 GMT age: 80054 etag: "02a74cf88501d65b3dfcceb5adc79fd93ce785ed" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp	34.120.237.76	200 OK	6.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.7 kB (6722 bytes) Hash d0a85ec27ed4f7910e26b4ff023ab1fb f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0 fc31409ba6db565d4861a35ee6f74b7436eea5e5169bc1283f63cf6dfdb03764 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6722 x-amzn-requestid: a6de82bd-5b03-4ffd-90dd-9bd03331d123 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CguY8GG2IAMFuzQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64235dd2-7cb1c8187fe3d2b0283fb3a0;Sampled=0 x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: y5vKgCZTlgD6ji-loyjRA9cPpJWpdR7yDH60LL0bRa1b8DtG4WsX9g== via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google date: Tue, 28 Mar 2023 21:51:37 GMT age: 80317 etag: "f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg	34.120.237.76	200 OK	6.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.0 kB (6049 bytes) Hash 253f48aa7cbf667d52cb37fda10cdb1f e29478b866f90402b48d2b516d01d60a863c9cf9 b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6049 x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CgvBFFMGIAMFhCg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0 x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: -XwoHom5AT8j5yHNvfnYQ-9xIqVpsyDffwFM0d_ESJicJvL8pTcABg== via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google date: Tue, 28 Mar 2023 21:50:28 GMT age: 80386 etag: "e29478b866f90402b48d2b516d01d60a863c9cf9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg	34.120.237.76	200 OK	9.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.5 kB (9501 bytes) Hash 5d389dd69e54e5d7b547a425f9b22ebf 604a65cfc5572c5da9d3fdea795be3942b8d14cb 5beda50c5f20633003e1f939673a6005eca314372e7f8fe0a1d4bb5702ae1712 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9501 x-amzn-requestid: f073f55c-fd49-4b8b-8b9c-026f6a546378 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbunG2VIAMFnQg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220cc3-32af7701763d0f734f09a05d;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:38:11 GMT x-amz-cf-pop: SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: wyrl1rguCM5LrsEN49aH42bNWc7ht0Je1UeO-dAx6Ujj1kjQgdfGEQ== via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Mar 2023 11:55:27 GMT age: 29687 etag: "604a65cfc5572c5da9d3fdea795be3942b8d14cb" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	webmail.sistemitre.it/webmail/lib/ext4/ext.min.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	391 kB
URL HTTP/1.1 webmail.sistemitre.it/webmail/lib/ext4/ext.min.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 391 kB (390872 bytes) Hash 1da985f0df8f4fe85f7edac1be38e5f6 a6d82d178da69ad7e047e5c47263b16f376c17ef 47b877ffb88bc3610ac2bb2084d61ac349e912fe1caca960696e188349bc95b6 HTTP Headers `GET /webmail/lib/ext4/ext.min.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Wed, 29 Mar 2023 20:10:16 GMT Keep-Alive: timeout=15, max=94 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/login/	146.59.214.74	200 OK	0 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/login/ IP 146.59.214.74:0 ASN #16276 OVH SAS File type Size 0 B (0 bytes) Hash HTTP Headers `GET /webmail/login/ HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: Close Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/html; charset=utf-8 Date: Wed, 29 Mar 2023 20:10:14 GMT Expires: Wed, 4 Jun 1980 06:02:09 GMT Pragma: no-cache Server: WebServer X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML