tracking.selfserviceib.com/tracking/1/click/ejoRCcw7cfKwhilpbcPgu9mi8HNrL2n4_2_idMevmNktJwRqX2gZbLIDH7y-IPF_U-XQiDedws_4Z24LnG24cVuwF6MFcMweR8x8gE3gw2jQIa1zQpbQg_yLzTNh1XQji-QBJWq2fYG1U3qemLKCoN0Csyy0NG9CXrgLG3rsW1RiZNTA-AEARN_oa0-2sRV5plnSy_eipExxY_EQtTLOeLc8ycj1f0EXj3stwGrct6aD_rcscWFUwYcj43lB7I3ELLCmDI7APKECpAITLvSGqY2N6rC4XNQfoUb1vuDYolLTqvxVSdG2TySIKS9boxEiYWNSFocoeIOVIXJxJS-Q-LSu4n4uWBrKv0NyiLrNTtgBCrUEKjRDcGWp0RuFhajor3WnanvbSsfb2faEFsIc_hHuLnN3Z_oW5F973Muy54pezVtWphlUOYE_xl87y3Do7C-L0_2C_JCk1bX_hC7wCFPSog62a9lEi9qnmVIVCRJF7E7scsfg-QRr4OnGRk-9VaDzD8LhxnO-u3DP-aRyF64v3I_m3aYZain1SkRKndcbtFdoL0K2GOgnq3hIfBY9_5F7AJrxfXipwNWeX2sXogQ8OD2htFVHWCz7JOgaE33dkuUqbk_iXDKZYvCDlTldb9nKQMwpqqp9te0xs6SfxQAx_o0fwgN61kBPRKuUYmc7l22dGr-E_Mb2QyEUG-fDHXiiiJ06cElErqOeIurdVwwZg1xw_wpwat7oFFsJVI0=
302 Found 0 B URL HTTP/1.1 tracking.selfserviceib.com/tracking/1/click/ejoRCcw7cfKwhilpbcPgu9mi8HNrL2n4_2_idMevmNktJwRqX2gZbLIDH7y-IPF_U-XQiDedws_4Z24LnG24cVuwF6MFcMweR8x8gE3gw2jQIa1zQpbQg_yLzTNh1XQji-QBJWq2fYG1U3qemLKCoN0Csyy0NG9CXrgLG3rsW1RiZNTA-AEARN_oa0-2sRV5plnSy_eipExxY_EQtTLOeLc8ycj1f0EXj3stwGrct6aD_rcscWFUwYcj43lB7I3ELLCmDI7APKECpAITLvSGqY2N6rC4XNQfoUb1vuDYolLTqvxVSdG2TySIKS9boxEiYWNSFocoeIOVIXJxJS-Q-LSu4n4uWBrKv0NyiLrNTtgBCrUEKjRDcGWp0RuFhajor3WnanvbSsfb2faEFsIc_hHuLnN3Z_oW5F973Muy54pezVtWphlUOYE_xl87y3Do7C-L0_2C_JCk1bX_hC7wCFPSog62a9lEi9qnmVIVCRJF7E7scsfg-QRr4OnGRk-9VaDzD8LhxnO-u3DP-aRyF64v3I_m3aYZain1SkRKndcbtFdoL0K2GOgnq3hIfBY9_5F7AJrxfXipwNWeX2sXogQ8OD2htFVHWCz7JOgaE33dkuUqbk_iXDKZYvCDlTldb9nKQMwpqqp9te0xs6SfxQAx_o0fwgN61kBPRKuUYmc7l22dGr-E_Mb2QyEUG-fDHXiiiJ06cElErqOeIurdVwwZg1xw_wpwat7oFFsJVI0=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /tracking/1/click/ejoRCcw7cfKwhilpbcPgu9mi8HNrL2n4_2_idMevmNktJwRqX2gZbLIDH7y-IPF_U-XQiDedws_4Z24LnG24cVuwF6MFcMweR8x8gE3gw2jQIa1zQpbQg_yLzTNh1XQji-QBJWq2fYG1U3qemLKCoN0Csyy0NG9CXrgLG3rsW1RiZNTA-AEARN_oa0-2sRV5plnSy_eipExxY_EQtTLOeLc8ycj1f0EXj3stwGrct6aD_rcscWFUwYcj43lB7I3ELLCmDI7APKECpAITLvSGqY2N6rC4XNQfoUb1vuDYolLTqvxVSdG2TySIKS9boxEiYWNSFocoeIOVIXJxJS-Q-LSu4n4uWBrKv0NyiLrNTtgBCrUEKjRDcGWp0RuFhajor3WnanvbSsfb2faEFsIc_hHuLnN3Z_oW5F973Muy54pezVtWphlUOYE_xl87y3Do7C-L0_2C_JCk1bX_hC7wCFPSog62a9lEi9qnmVIVCRJF7E7scsfg-QRr4OnGRk-9VaDzD8LhxnO-u3DP-aRyF64v3I_m3aYZain1SkRKndcbtFdoL0K2GOgnq3hIfBY9_5F7AJrxfXipwNWeX2sXogQ8OD2htFVHWCz7JOgaE33dkuUqbk_iXDKZYvCDlTldb9nKQMwpqqp9te0xs6SfxQAx_o0fwgN61kBPRKuUYmc7l22dGr-E_Mb2QyEUG-fDHXiiiJ06cElErqOeIurdVwwZg1xw_wpwat7oFFsJVI0= HTTP/1.1
Host: tracking.selfserviceib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Date: Tue, 29 Nov 2022 07:40:22 GMT, Tue, 29 Nov 2022 07:40:22 GMT
Location: https://rb.gy/dqnlkx
content-length: 0
Server: SMS API
X-Request-Id: 1669707622565286255
X-XSS-Protection: 1
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11148
Expires: Tue, 29 Nov 2022 10:46:10 GMT
Date: Tue, 29 Nov 2022 07:40:22 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2780
Cache-Control: max-age=99439
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 07:40:22 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:17:41 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6997
Expires: Tue, 29 Nov 2022 09:36:59 GMT
Date: Tue, 29 Nov 2022 07:40:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 07:19:36 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1246
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rk8420aHGTvyen5i9aIqlNFDbqqaa2BxzCGl1YGE+MVBHuhRKkbJ0bnyfrxYVCPcDKFmk9PDnts=
x-amz-request-id: M8ATQWX3M0TK4KK4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 06:42:24 GMT
age: 3478
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 07:40:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 442120c894a70edbdace7045e0330aaa
59e688e9e4325af1ae5acf08c1f0bcfe1aa01132
abdc15374fe2da99e7bf7caea930b2ec548bf2106cfa8b9a7ae807a90ff834c0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 29 Nov 2022 07:40:22 GMT
Last-Modified: Tue, 29 Nov 2022 06:42:42 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: M6hXZNtBaxs7fttKwIRUBpuXPD7MDs4KS5vF-emJ7Ri__7CAsqw2Jw==
Age: 3460
rb.gy/dqnlkx
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dqnlkx HTTP/1.1
Host: rb.gy
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 07:40:22 GMT
Content-Length: 0
Cache-Control: no-cache, no-store
Expires: -1
Location: https://pagamenti.assistenzaclientisd.com/ar/
Engine: Rebrandly.redirect, version 2.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 07:11:13 GMT
cache-control: public,max-age=3600
age: 1750
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/KTz-ovkhcNo
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/KTz-ovkhcNo
IP
Hash 682097504be10784d3d3f5501ed8ceed
5d9262852638d78cb6432c41c5d6cf398afc64b2
1ccd024e5fdae465eaa70f78188fd9b2b251e68a29a6a868ae7b025bee6d79cf
POST /s/gts1p5/KTz-ovkhcNo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 07:40:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6572
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 07:40:23 GMT
Last-Modified: Tue, 29 Nov 2022 05:50:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp09.actalis.it/VA/AUTHOV-G3
200 2.0 kB URL HTTP/1.1 ocsp09.actalis.it/VA/AUTHOV-G3
IP
Hash c4547beea894899fec45b14eab8516e0
76aa7bb8617c995c0e997532f842a79ed37313a0
9588c48f11b4dce81780807b66448b257806c9ae260ae805f4dbb1acc55854eb
POST /VA/AUTHOV-G3 HTTP/1.1
Host: ocsp09.actalis.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200
Server: nginx
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Type: application/ocsp-response
Content-Length: 2033
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 07:09:53 GMT
Expires: Wed, 30 Nov 2022 07:09:52 GMT
ETag: "76aa7bb8617c995c0e997532f842a79ed37313a0"
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gj3qE+7nMNWEO1hlbLso5g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l91W+LeIZVcoLUD3ubHCwZlQMnQ=
pagamenti.assistenzaclientisd.com/ar/
301 Moved Permanently 48 kB URL HTTP/2 pagamenti.assistenzaclientisd.com/ar/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (19680), with CRLF line terminators
Hash e4a7a2831dfb9e5aa071c7185b5206f4
be7f5e587fc0911dfbdd752e5580f342b5a1fcf9
adf92111a6f933e82f19e45eb643c6e09a57047cbe847d9f01391dbfc4e74b99
GET /ar/ HTTP/1.1
Host: pagamenti.assistenzaclientisd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Tue, 29 Nov 2022 07:40:23 GMT
location: https://admin.aruba.it/PannelloAdmin/login.aspx
cache-control: max-age=3600
expires: Tue, 29 Nov 2022 08:40:23 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2BY3pnckj%2Fcg9IBktKGYGodcWFjOJ3vwUSffDh%2BIugA6JlLKnfb17W5%2FdrEZ%2F4OVL8z8aqnQOlBhq0HxSddjcRMn1isaBsnT%2FPlFWBJpFPEbh26HRlNTmgJgx8DoiByZiBOQOLqf5GNo91rMhwvXqAe47Uc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7719b1e589ceb4fa-OSL
X-Firefox-Spdy: h2
admin.aruba.it/PannelloAdmin/javascript_cookies.js?v=1.0.209.1
200 OK 1.9 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/javascript_cookies.js?v=1.0.209.1
IP
File type ASCII text, with CRLF line terminators
Hash 8954bd6615c51c218696f4cf860d2c7f
2e5d42512cd720e388c8ee9a74fbfc5ccb11ed7b
87de8401a3a5db02c8df9346fe330e9a725dbd987c60ae8a1935f07cc1a9acc0
GET /PannelloAdmin/javascript_cookies.js?v=1.0.209.1 HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 22 Nov 2022 16:33:24 GMT
Accept-Ranges: bytes
ETag: "0a2fd2390fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 1922
admin.aruba.it/PannelloAdmin/Login.css?v=1.0.209.1
200 OK 17 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/Login.css?v=1.0.209.1
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (336), with CRLF line terminators
Hash e63a3bea3a2ec693569ac1b2b8e1fa6e
3b809364c6a4e8aa6a2b7355c27a52fbb0cfbe40
f8b91f58d7ad71df18e4ce020eb61ef53f38fb407fa23610c544c91a994726cb
GET /PannelloAdmin/Login.css?v=1.0.209.1 HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Tue, 22 Nov 2022 16:33:10 GMT
Accept-Ranges: bytes
ETag: "067a51b90fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 17132
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 07:40:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-M79QRMB
200 OK 55 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M79QRMB
IP
File type ASCII text, with very long lines (2966)
Hash 6cb99df3aeb4fbace9d43c006bf29528
94daddde663b9d7e71181415386a163a2fc57387
387860532c39551f4c9d9726381cebdc72a50b368a8ffd3a5c53b22efac9bb0a
GET /gtm.js?id=GTM-M79QRMB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 07:40:23 GMT
expires: Tue, 29 Nov 2022 07:40:23 GMT
cache-control: private, max-age=900
last-modified: Tue, 29 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 55386
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
admin.aruba.it/PannelloAdmin/Scripts/Shared/Utility.js?v=1.0.209.1
200 OK 120 B URL HTTP/1.1 admin.aruba.it/PannelloAdmin/Scripts/Shared/Utility.js?v=1.0.209.1
IP
File type ASCII text, with CRLF line terminators
Hash 800985db3fcb8ef6d556c10af02a2961
6c0357cdd91e1f373ff617db5970ac0c20e79594
c823890d0a948f199a9465695bac5f670595431c424d3a1a39e06be0a4599361
GET /PannelloAdmin/Scripts/Shared/Utility.js?v=1.0.209.1 HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 22 Nov 2022 16:33:10 GMT
Accept-Ranges: bytes
ETag: "067a51b90fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 120
admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=layoutStyleSheet
200 OK 1.7 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=layoutStyleSheet
IP
File type ASCII text, with CRLF line terminators
Hash 2b24d8fce517b71667929e854e5e9a63
b1e29a63d1cc10a1f633049175e3c01be1c54ce6
ef163b59f9df67dbfbdb1e46cd32fd7762b051d9888d4e1cae4511fd29cf7a7c
GET /PannelloAdmin/BotDetectCaptcha.ashx?get=layoutStyleSheet HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/css
Expires: Tue, 29 Nov 2022 08:40:23 GMT
Last-Modified: Tue, 22 Nov 2022 16:33:26 GMT
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 1699
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 07:40:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=clientScriptInclude
200 OK 14 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=clientScriptInclude
IP
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 (with BOM) text, with very long lines (491), with CRLF line terminators
Hash 5ce7bbc37c08c7fc7f54881e83c9a4f4
d9dcf795c759eb55b94ed1009713b282acf42921
a53c61ed34cfe98039f17ebac8780c1ecd8745d915c2328fcf4fadeecfc43044
GET /PannelloAdmin/BotDetectCaptcha.ashx?get=clientScriptInclude HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript
Expires: Tue, 29 Nov 2022 08:40:23 GMT
Last-Modified: Tue, 22 Nov 2022 16:33:26 GMT
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 13600
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 2ff1ba63cb5784d7d584fa3a6328ac7b
0558132a845eaa101391f6d374917147e4420710
098d384760ecd089b6214f1059a053bd74a718892149f392820c6ff3537b09d0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88701
Date: Tue, 29 Nov 2022 07:40:23 GMT
Etag: "6384585e-1d7"
Expires: Wed, 30 Nov 2022 08:18:44 GMT
Last-Modified: Mon, 28 Nov 2022 06:42:38 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jfAchtr6NkSy84ZJea3WdJuYWOqNeAOoflds-vWhJHVbanGBxFdLBQ==
Age: 5767
admin.aruba.it/PannelloAdmin/Scripts/jquery-3.6.0.min.js
200 OK 45 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/Scripts/jquery-3.6.0.min.js
IP
File type ASCII text, with very long lines (65447)
Hash d51370eb154b80bf567c07e5285f3939
02ca3a47df600d33c9fa5a78b785572466337e2b
23f1611cbb7ec04db8587728dbcb1193599716da005a0c2a05ca78a1583caca6
GET /PannelloAdmin/Scripts/jquery-3.6.0.min.js HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 22 Nov 2022 16:33:10 GMT
Accept-Ranges: bytes
ETag: "067a51b90fed81:0"
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 44577
bs.serving-sys.com/Serving/adServer.bs?c=28&cn=display&pli=1077455655&w=542&h=90&ord=[timestamp]&z=10000
200 OK 3.8 kB URL HTTP/2 bs.serving-sys.com/Serving/adServer.bs?c=28&cn=display&pli=1077455655&w=542&h=90&ord=[timestamp]&z=10000
IP
File type ASCII text, with very long lines (10054), with no line terminators
Hash 7d97658de80f2392ca91f32a4ad2af04
524c88a70e4dc56e9c1d48c71e1fa52cf52f0565
02a6d38b3677e5542988546eceae0dbb7373200f42445a1cc0bd330073ed704a
GET /Serving/adServer.bs?c=28&cn=display&pli=1077455655&w=542&h=90&ord=[timestamp]&z=10000 HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 07:40:24 GMT
content-type: text/html; charset=UTF-8
content-length: 3814
cache-control: no-cache, no-store
pragma: no-cache
content-encoding: gzip
expires: Sun, 05-Jun-2005 22:00:00 GMT
server: Microsoft-IIS/10.0
set-cookie: u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a5224JZ060; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
access-control-allow-origin: *
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
consent.cookiebot.com/uc.js?cbid=834827f4-da0e-4a10-ae49-68948ce81a7a&culture=it
200 OK 32 kB URL HTTP/2 consent.cookiebot.com/uc.js?cbid=834827f4-da0e-4a10-ae49-68948ce81a7a&culture=it
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Hash 696e11ea704a1a9043864196e1dd41ee
a322a1d9858541cb17a662d8267c1a86b91fc6c3
33a05733a663a3d87ea1275899038ec82a2824de58b8fd07f02c9852dbc56c43
GET /uc.js?cbid=834827f4-da0e-4a10-ae49-68948ce81a7a&culture=it HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 22 Nov 2022 07:34:39 GMT
accept-ranges: bytes
etag: "db2e3fe144fed81:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 31705
cache-control: public, max-age=1018
expires: Tue, 29 Nov 2022 07:57:22 GMT
date: Tue, 29 Nov 2022 07:40:24 GMT
X-Firefox-Spdy: h2
admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=smallReloadIcon
200 OK 210 B URL HTTP/1.1 admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=smallReloadIcon
IP
File type GIF image data, version 89a, 17 x 17\012- data
Hash 4a4b63897c45aeb04ad568b4f9c79e96
a427ae02bb4ac2077291b6be88511c7518211bf0
66886575fb5a7afcda1a4a8d921422ab7d9faf24039e9461f7497eff729d2508
GET /PannelloAdmin/BotDetectCaptcha.ashx?get=smallReloadIcon HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: image/gif
Expires: Tue, 29 Nov 2022 08:40:23 GMT
Last-Modified: Tue, 22 Nov 2022 16:33:26 GMT
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 210
admin.aruba.it/PannelloAdmin/UI/Images/eye-show.svg
200 OK 2.0 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/UI/Images/eye-show.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1717), with CRLF line terminators
Hash 549c9c3370ccd127db959e0afe296697
d6dd5fe853bfe70b1456f8d66e4526dfd4376f92
6676b05ef9626756989d9dbc09608830af666a330ad1bfa12438b9775330c474
GET /PannelloAdmin/UI/Images/eye-show.svg HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Tue, 22 Nov 2022 16:33:18 GMT
Accept-Ranges: bytes
ETag: "01b6a2090fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 1958
admin.aruba.it/PannelloAdmin/UI/Images/info-information-circle.svg
200 OK 822 B URL HTTP/1.1 admin.aruba.it/PannelloAdmin/UI/Images/info-information-circle.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (822), with no line terminators
Hash de6f9bb9f89689d268ff3bb9bdfed24c
da340ab7b7384c68b9fb0deb072c911238941479
27a9a24907f8907c98afcf081684fe8fe95f3381ef49ff0d56c9e8e1eb525b6f
GET /PannelloAdmin/UI/Images/info-information-circle.svg HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Tue, 22 Nov 2022 16:33:18 GMT
Accept-Ranges: bytes
ETag: "01b6a2090fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 822
admin.aruba.it/PannelloAdmin/image_pannello_controllo/imgHaiPersoDati.png
200 OK 775 B URL HTTP/1.1 admin.aruba.it/PannelloAdmin/image_pannello_controllo/imgHaiPersoDati.png
IP
File type PNG image data, 28 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash 7f90fe7fc1f83e228ef93139de982bb9
f0dda8e5d43f8d510ba4cdec8ec93c41074758e2
8ab2d4dd46d9a7d2997be422628f891222a304e1b0c9bed486129ae6f0f9eb96
GET /PannelloAdmin/image_pannello_controllo/imgHaiPersoDati.png HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 22 Nov 2022 16:33:24 GMT
Accept-Ranges: bytes
ETag: "0a2fd2390fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 775
admin.aruba.it/PannelloAdmin/image_pannello_controllo/imgCaratteristicheAccesso.png
200 OK 508 B URL HTTP/1.1 admin.aruba.it/PannelloAdmin/image_pannello_controllo/imgCaratteristicheAccesso.png
IP
File type PNG image data, 15 x 16, 8-bit/color RGB, non-interlaced\012- data
Hash 501464def9b43193ddea8a21014e9f69
9e0853851361cafb75f72193a33ac53b27a29ddd
b1adb27a5e38c7bbbfd8712b4103eb8e405d2bca562e600c7787a214be6c99e9
GET /PannelloAdmin/image_pannello_controllo/imgCaratteristicheAccesso.png HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 22 Nov 2022 16:33:24 GMT
Accept-Ranges: bytes
ETag: "0a2fd2390fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 508
admin.aruba.it/PannelloAdmin/UI/Images/eye-hide.svg
200 OK 2.3 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/UI/Images/eye-hide.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2105), with CRLF line terminators
Hash 2280199dcaecd21f0e7399a68563efb8
754041887e22f6abe406313cae22115e8b4ac9a7
6c46bf722fb11c3066171661ece073b58b6ea6c16b00a9d3cc162a6f215b57f1
GET /PannelloAdmin/UI/Images/eye-hide.svg HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Tue, 22 Nov 2022 16:33:18 GMT
Accept-Ranges: bytes
ETag: "01b6a2090fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 2346
admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=smallSoundIcon
200 OK 209 B URL HTTP/1.1 admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=smallSoundIcon
IP
File type GIF image data, version 89a, 17 x 17\012- data
Hash f4b128e37e472c28170439627469a2c2
6290fc1040504967dfdea14ab44bec485f61836b
d27af4c75c18e52bfcbd8baee3f4829222c072a03be2af2314f5b7e59890e303
GET /PannelloAdmin/BotDetectCaptcha.ashx?get=smallSoundIcon HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: image/gif
Expires: Tue, 29 Nov 2022 08:40:23 GMT
Last-Modified: Tue, 22 Nov 2022 16:33:26 GMT
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 209
consentcdn.cookiebot.com/sdk/bc-v4.min.html
200 OK 392 B URL HTTP/2 consentcdn.cookiebot.com/sdk/bc-v4.min.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627), with no line terminators
Hash e7268eccad39bd651697fa793a52cc5c
47299cefa2397b0c1d0c5bf232390a5cf1bcc4d3
907e16c84d35556e4ed841a3511915e6d4bb4e9d68cfca178a740e90b4d80e35
GET /sdk/bc-v4.min.html HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "3d08665fa4c7bcf9fa2dcbbc7efe1d0f:1649057029.895163"
last-modified: Mon, 04 Apr 2022 07:23:49 GMT
server: AkamaiNetStorage
x-akamai-transformed: 9 - 0 pmb=mRUM,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=29771517
expires: Wed, 08 Nov 2023 21:32:21 GMT
date: Tue, 29 Nov 2022 07:40:24 GMT
content-length: 392
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=image&c=login_captchaadmin&t=5f1b113154cd4043a419ae81dccd3467&s=%2f6j9WlaAerNgnPDOL2Uuzh22iENh0QANpgRO5wFgJAd3JNoPTItdXpTpwl5TMjbJU%2fdg%2b%2b722yB2YB3s3colwQ%3d%3d
200 OK 3.1 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/BotDetectCaptcha.ashx?get=image&c=login_captchaadmin&t=5f1b113154cd4043a419ae81dccd3467&s=%2f6j9WlaAerNgnPDOL2Uuzh22iENh0QANpgRO5wFgJAd3JNoPTItdXpTpwl5TMjbJU%2fdg%2b%2b722yB2YB3s3colwQ%3d%3d
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 138x42, components 3\012- data
Hash 5d69d3044d7ddf6af7dbf67faa86c96d
b0dc7a73c37e99c141b607cf728fb154638fdc14
9d93a56012b9d189e39057e4db9500775edb858483411f8aee489747433b7b76
GET /PannelloAdmin/BotDetectCaptcha.ashx?get=image&c=login_captchaadmin&t=5f1b113154cd4043a419ae81dccd3467&s=%2f6j9WlaAerNgnPDOL2Uuzh22iENh0QANpgRO5wFgJAd3JNoPTItdXpTpwl5TMjbJU%2fdg%2b%2b722yB2YB3s3colwQ%3d%3d HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/login.aspx
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: image/jpeg
Expires: Mon, 01 Jan 0001 00:00:00 GMT
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 3107
admin.aruba.it/PannelloAdmin/image_pannello_controllo/icon-user.png
200 OK 17 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/image_pannello_controllo/icon-user.png
IP
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 16dd3b0879da68623d1ba4df22df6373
6c4178ec861865e43450c7a37715aace1160967c
a525f163e73542be1b82c5ae4e4beed74d137d56161ac5b02833a279ef6d9b61
GET /PannelloAdmin/image_pannello_controllo/icon-user.png HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/Login.css?v=1.0.209.1
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 22 Nov 2022 16:33:24 GMT
Accept-Ranges: bytes
ETag: "0a2fd2390fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 17393
admin.aruba.it/PannelloAdmin/image_pannello_controllo/icon-headset.png
200 OK 15 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/image_pannello_controllo/icon-headset.png
IP
File type PNG image data, 18 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash aa430c070840a66c4664fa2f582d7c94
2622948f3506c9ae8f2197344265de3f35f0e570
bcedcafd81248b08cb428b22618a38866d0cee85b4e9ecd27ef734d0533e2792
GET /PannelloAdmin/image_pannello_controllo/icon-headset.png HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/Login.css?v=1.0.209.1
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 22 Nov 2022 16:33:24 GMT
Accept-Ranges: bytes
ETag: "0a2fd2390fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 15413
consent.cookiebot.com/834827f4-da0e-4a10-ae49-68948ce81a7a/cc.js?renew=false&referer=admin.aruba.it&dnt=false&init=false&culture=it
200 OK 70 kB URL HTTP/2 consent.cookiebot.com/834827f4-da0e-4a10-ae49-68948ce81a7a/cc.js?renew=false&referer=admin.aruba.it&dnt=false&init=false&culture=it
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65499)
Hash 57ffcd48cad76d3a237ac8a496b10986
cb3de6df51a012d80e837e60e50c33f6cedae3d6
fb5b4e7cbdd8cab78a313632e4617bc0f71ad4b0f2117affc9b8ff203d3c13fd
GET /834827f4-da0e-4a10-ae49-68948ce81a7a/cc.js?renew=false&referer=admin.aruba.it&dnt=false&init=false&culture=it HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=1200
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
last-modified: Tue, 29 Nov 2022 07:40:24 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 69827
date: Tue, 29 Nov 2022 07:40:24 GMT
X-Firefox-Spdy: h2
secure-ds.serving-sys.com/BurstingCachedScripts//Ad_2_227_3_0/ebStdBannerEx.js
200 OK 82 kB URL HTTP/2 secure-ds.serving-sys.com/BurstingCachedScripts//Ad_2_227_3_0/ebStdBannerEx.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (705)
Hash 75315e4835a5de63b132f9e249455a3b
1987b2cd19e809b1bb0203122667ee29ce22844f
b2da486c2a5ecc0cdf159295597b71af086dbc85deafb5243f051bdcfcc852f6
GET /BurstingCachedScripts//Ad_2_227_3_0/ebStdBannerEx.js HTTP/1.1
Host: secure-ds.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 12:41:48 GMT
etag: W/"428e66803fe16a0e3f17532034723094"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: Jk4K6n1lew_yoQNc2a3jpDo0kPvoTSL2gQ2_0PG3q1FBJCB9R06blA==
content-length: 82390
cache-control: max-age=1919965
date: Tue, 29 Nov 2022 07:40:24 GMT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
admin.aruba.it/PannelloAdmin/image_pannello_controllo/PannelloControlloBottomBkg.png
200 OK 1.2 kB URL HTTP/1.1 admin.aruba.it/PannelloAdmin/image_pannello_controllo/PannelloControlloBottomBkg.png
IP
File type PNG image data, 438 x 68, 8-bit/color RGB, non-interlaced\012- data
Hash 494aa2b61093369c30d6ac03cea3f519
9efeb8ce79d4fc73db34e334fb6c271b9312837f
c4e9fc3c56827392e25d502ee282657f129075986d43f887a780d55f54a40383
GET /PannelloAdmin/image_pannello_controllo/PannelloControlloBottomBkg.png HTTP/1.1
Host: admin.aruba.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/PannelloAdmin/Login.css?v=1.0.209.1
Cookie: ASP.NET_SessionId=vztompq1we4ovcpkeo12clux; KEYCLOAK_LOCALE=IT; Lang=IT; cookiesession1=678B28C1QRSTUV01235678989012EABA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 22 Nov 2022 16:33:24 GMT
Accept-Ranges: bytes
ETag: "0a2fd2390fed81:0"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Strict-Transport-Security: max-age: 31536000
Server:
Date: Tue, 29 Nov 2022 07:40:23 GMT
Content-Length: 1201
secure-ds.serving-sys.com/BurstingCachedScripts/Modules_1_94_0_0/URLUtil.js
200 OK 1.9 kB URL HTTP/2 secure-ds.serving-sys.com/BurstingCachedScripts/Modules_1_94_0_0/URLUtil.js
IP
ASN #20940 Akamai International B.V.
Hash 9b2695d81b5519d8494a90588b513d5e
34c8e5a1ab3d9e98c09d855738b9f5d3bd4c863e
15e0d1bceafaa2444fc34e9b8ae580d8e81163c55a1cfdc4bf2f4b8328470cdd
GET /BurstingCachedScripts/Modules_1_94_0_0/URLUtil.js HTTP/1.1
Host: secure-ds.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 12:41:48 GMT
etag: W/"5ac70b83663a79f3a383c3a53f62eafd"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: ese1lB8OzyNQCdxhe-dd-RncpiRE-Z-Uu2A6QojUoJRZp0qsoPfonw==
content-length: 1947
cache-control: max-age=1920009
date: Tue, 29 Nov 2022 07:40:24 GMT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
secure-ds.serving-sys.com/resources/PROD/asset/1073743419/IMAGE/20220811/542x90-login_72932428167012514.jpg
200 OK 56 kB URL HTTP/2 secure-ds.serving-sys.com/resources/PROD/asset/1073743419/IMAGE/20220811/542x90-login_72932428167012514.jpg
IP
ASN #20940 Akamai International B.V.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 542x90, components 3\012- data
Hash 9a26975ea4577e1c7e741b8870d87751
f94195cadf2a7dcae15f895f37ba6e22c979e473
5a2e2042daaf63da5ee514091bc444f97be89c0936c54e5c70c883a74e12706c
GET /resources/PROD/asset/1073743419/IMAGE/20220811/542x90-login_72932428167012514.jpg HTTP/1.1
Host: secure-ds.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "9a26975ea4577e1c7e741b8870d87751"
last-modified: Thu, 11 Aug 2022 14:41:08 GMT
server: ATS/7.1.0
x-amz-id-2: xwF/Ibfi8GBmUoOrHfdU+HtYWHa+DcndgU6bmEP4VeQdpGIaU7mBUUIX1idCdaDCpoNTdUfSdH4=
x-amz-request-id: Z1YKSBE7EV095DED
x-amz-version-id: a7U2okqZjL8tSskeW0.byWAjIvzr2l7m
content-length: 55993
expires: Mon, 31 Dec 2035 00:00:00 GMT
date: Tue, 29 Nov 2022 07:40:24 GMT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
bs.serving-sys.com/Serving?cn=display&c=40&sessionid=8613674833165268550&ai=1087986763&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&oo=0&clsrc=2&clbv=_2_227_3_0&gdprpurposes=1023&dg=1076655718&sdg=1078163961&ctick=159&ord=0.03501683126439892
200 OK 24 B URL HTTP/2 bs.serving-sys.com/Serving?cn=display&c=40&sessionid=8613674833165268550&ai=1087986763&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&oo=0&clsrc=2&clbv=_2_227_3_0&gdprpurposes=1023&dg=1076655718&sdg=1078163961&ctick=159&ord=0.03501683126439892
IP
File type ASCII text, with no line terminators
Hash 3ea56fbebcd47a85837183f437940b7c
3c997c797acf1e9a5213ccff8fda600526592941
2e7778c6ed3c31a131da378d6e573a1b3b6723037cdeea4c4832da83e60c9399
GET /Serving?cn=display&c=40&sessionid=8613674833165268550&ai=1087986763&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&oo=0&clsrc=2&clbv=_2_227_3_0&gdprpurposes=1023&dg=1076655718&sdg=1078163961&ctick=159&ord=0.03501683126439892 HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://admin.aruba.it
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 07:40:24 GMT
content-type: text/html; charset=UTF-8
content-length: 24
cache-control: private
pragma: no-cache
expires: Sun, 05-Jun-2005 22:00:00 GMT
server: Microsoft-IIS/10.0
set-cookie: A6=10SlNbxXnc1003ul000010000; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
eyeblaster=; expires=Mon, 01-Jan-2000 00:00:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a5224JZ060; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: https://admin.aruba.it
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
bs.serving-sys.com/Serving/adServer.bs?cn=int&iv=2&interactionsStr=$$1087986763~~0~~1076655718~~8613674833165268550%5EActualSize~542x90x0x1x0000x0x0x542x90~0~01020~167$$&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.6745886111288719&flv=-1&res=16
200 OK 0 B URL HTTP/2 bs.serving-sys.com/Serving/adServer.bs?cn=int&iv=2&interactionsStr=$$1087986763~~0~~1076655718~~8613674833165268550%5EActualSize~542x90x0x1x0000x0x0x542x90~0~01020~167$$&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.6745886111288719&flv=-1&res=16
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Serving/adServer.bs?cn=int&iv=2&interactionsStr=$$1087986763~~0~~1076655718~~8613674833165268550%5EActualSize~542x90x0x1x0000x0x0x542x90~0~01020~167$$&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.6745886111288719&flv=-1&res=16 HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://admin.aruba.it
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 07:40:24 GMT
content-type: text/html; charset=UTF-8
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: Sun, 05-Jun-2005 22:00:00 GMT
server: Microsoft-IIS/10.0
set-cookie: eyeblaster=FLV=-1&RES=16; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a5224JZ060; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: https://admin.aruba.it
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
bs.serving-sys.com/Serving/adServer.bs?cn=int&iv=2&interactionsStr=$$1087986763~~0~~1076655718~~8613674833165268550%5EAdParams~ifr%3D0%26loc%3D363x768%26size%3D542x90%26cb%3D0%26env%3D0%26vsbp%3D1%26bi%3D-1%26idx%3D1~0~01020~169$$&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.15747526119530453&flv=-1&res=16
200 OK 0 B URL HTTP/2 bs.serving-sys.com/Serving/adServer.bs?cn=int&iv=2&interactionsStr=$$1087986763~~0~~1076655718~~8613674833165268550%5EAdParams~ifr%3D0%26loc%3D363x768%26size%3D542x90%26cb%3D0%26env%3D0%26vsbp%3D1%26bi%3D-1%26idx%3D1~0~01020~169$$&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.15747526119530453&flv=-1&res=16
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Serving/adServer.bs?cn=int&iv=2&interactionsStr=$$1087986763~~0~~1076655718~~8613674833165268550%5EAdParams~ifr%3D0%26loc%3D363x768%26size%3D542x90%26cb%3D0%26env%3D0%26vsbp%3D1%26bi%3D-1%26idx%3D1~0~01020~169$$&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.15747526119530453&flv=-1&res=16 HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://admin.aruba.it
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 07:40:24 GMT
content-type: text/html; charset=UTF-8
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: Sun, 05-Jun-2005 22:00:00 GMT
server: Microsoft-IIS/10.0
set-cookie: eyeblaster=FLV=-1&RES=16; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a5224JZ060; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: https://admin.aruba.it
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 147563a03b182bc304b406b1da8b392d
cded092528d0f476e337b734b187a5f0cec60435
8ef6415de250fd4ee338e66a24d8ffae29e2a18cf2f59ab88bde4f68ef04e200
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92843
Date: Tue, 29 Nov 2022 07:40:24 GMT
Etag: "63846952-1d7"
Expires: Wed, 30 Nov 2022 09:27:47 GMT
Last-Modified: Mon, 28 Nov 2022 07:54:58 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SHyVcna1yFlmr7gnjLNg-HaiXROVMOL9WjpugjY7w_PlPEENm48gRw==
Age: 5569
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 147563a03b182bc304b406b1da8b392d
cded092528d0f476e337b734b187a5f0cec60435
8ef6415de250fd4ee338e66a24d8ffae29e2a18cf2f59ab88bde4f68ef04e200
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90716
Date: Tue, 29 Nov 2022 07:40:24 GMT
Etag: "63846952-1d7"
Expires: Wed, 30 Nov 2022 08:52:20 GMT
Last-Modified: Mon, 28 Nov 2022 07:54:58 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Os15Y8wlB9OlShs6gugYe9cDus1fdhGkDUCXvbWmppSmfsc0OxAaeA==
Age: 3442
lm.serving-sys.com/lm/evt
200 OK 0 B URL HTTP/1.1 lm.serving-sys.com/lm/evt
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /lm/evt HTTP/1.1
Host: lm.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 341
Origin: https://admin.aruba.it
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: LogModule 0.4
Content-Type: text/plain
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://admin.aruba.it
Content-Length: 0
lm.serving-sys.com/lm/evt
200 OK 0 B URL HTTP/1.1 lm.serving-sys.com/lm/evt
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /lm/evt HTTP/1.1
Host: lm.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 1262
Origin: https://admin.aruba.it
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: LogModule 0.4
Content-Type: text/plain
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://admin.aruba.it
Content-Length: 0
region1.google-analytics.com/g/collect?v=2&tid=G-589175CLZP>m=2oeb90&_p=125750255&gcs=G100&cid=661415862.1669707623&ul=en-us&sr=1280x1024&_s=1&sid=1669707623&sct=1&seg=0&dl=https%3A%2F%2Fadmin.aruba.it%2FPannelloAdmin%2Flogin.aspx&dt=Aruba.it%20-%20Control%20Panel%20Login&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-589175CLZP>m=2oeb90&_p=125750255&gcs=G100&cid=661415862.1669707623&ul=en-us&sr=1280x1024&_s=1&sid=1669707623&sct=1&seg=0&dl=https%3A%2F%2Fadmin.aruba.it%2FPannelloAdmin%2Flogin.aspx&dt=Aruba.it%20-%20Control%20Panel%20Login&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-589175CLZP>m=2oeb90&_p=125750255&gcs=G100&cid=661415862.1669707623&ul=en-us&sr=1280x1024&_s=1&sid=1669707623&sct=1&seg=0&dl=https%3A%2F%2Fadmin.aruba.it%2FPannelloAdmin%2Flogin.aspx&dt=Aruba.it%20-%20Control%20Panel%20Login&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://admin.aruba.it
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://admin.aruba.it
date: Tue, 29 Nov 2022 07:40:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5528
Expires: Tue, 29 Nov 2022 09:12:32 GMT
Date: Tue, 29 Nov 2022 07:40:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9fRfgj9_S00P8fI_T-tVt7khJ1kYZux_55K_yLYUsiyVEoiWRM9QAw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:07:26 GMT
age: 34378
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wqEe45jzMOryT-E-vThc39-cLiZudKF4gn6cS3LBmeaJ2amJF5GPIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:54 GMT
age: 35610
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:49:50 GMT
age: 10234
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 823e92f62ff7b3c2093828817d7f2866
c501de9eaa581a10b0b5fce40b54bb10f57f7c29
7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ivu6pzZ6dbt3I4tuFMg4oHcuPVdyNS-F3k_lQdmKoXFkdCfSseAEwQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 35609
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5e2bc1651b37b8e0467c2a6cb860fb3
3348f081a3357490a704592d105d02e81886df89
751c601e075c9338335c05b0f430ba8065b4e97440e6630993afd943f302b253
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6037
x-amzn-requestid: eb17903e-1fd3-4a41-a6d1-8b671d890400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPAJjFa3oAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382ad70-3db95fcd1aeb9c411c55d173;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 00:21:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NqtaziEIRl6auIGehos7TAJfBAY3CtGJX0vC-pWhjs377L_rEyM6hg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:14:18 GMT
age: 77166
etag: "3348f081a3357490a704592d105d02e81886df89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash faf3524970b0c3256eb5708f4ccf11ce
47295f2cf1b039c4b85cbe463d7893671a563989
ba0c2ce23eae865936caa7fb47dd1ef6346b8a7bc8340db700df6e2f5e27ec27
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9868f6d6-e29b-42b5-89c4-eec4771663b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8402
x-amzn-requestid: d2d62f85-b6be-4394-9668-1d913e4120d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYeaGbgoAMFdCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d45c-2b6bfdcc72011cf01ddbd66b;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:07:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1il1ILDPBUseZWYjae_R0BQhpdyPTqqI0GycCljovgxjqhYezCwxCA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:17:21 GMT
age: 12183
etag: "47295f2cf1b039c4b85cbe463d7893671a563989"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bs.serving-sys.com/Serving/adServer.bs?cn=int&iv=2&int=1087986763~~0~~1076655718~~8613674833165268550^VsR~0~0~01020~160^VsRAg~0~0~01020~160^VsRAd~0~0~01020~161^AdStart~0~0~01020~161&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.05303771519264078&flv=-1&res=16
200 OK 0 B URL HTTP/2 bs.serving-sys.com/Serving/adServer.bs?cn=int&iv=2&int=1087986763~~0~~1076655718~~8613674833165268550^VsR~0~0~01020~160^VsRAg~0~0~01020~160^VsRAd~0~0~01020~161^AdStart~0~0~01020~161&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.05303771519264078&flv=-1&res=16
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /Serving/adServer.bs?cn=int&iv=2&int=1087986763~~0~~1076655718~~8613674833165268550^VsR~0~0~01020~160^VsRAg~0~0~01020~160^VsRAd~0~0~01020~161^AdStart~0~0~01020~161&usercookie=u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a522&rnd=0.05303771519264078&flv=-1&res=16 HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://admin.aruba.it
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 07:40:25 GMT
content-type: text/html; charset=UTF-8
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: Sun, 05-Jun-2005 22:00:00 GMT
server: Microsoft-IIS/10.0
set-cookie: eyeblaster=FLV=-1&RES=16; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
u2=827f6a32-6b3b-4006-9f0b-9d62a1b0a5224JZ060; expires=Mon, 27-Feb-2023 07:40:00 GMT; domain=.serving-sys.com; path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: https://admin.aruba.it
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
lm.serving-sys.com/lm/int
200 OK 0 B URL HTTP/1.1 lm.serving-sys.com/lm/int
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /lm/int HTTP/1.1
Host: lm.serving-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 1507
Origin: https://admin.aruba.it
Connection: keep-alive
Referer: https://admin.aruba.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: LogModule 0.4
Content-Type: text/plain
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://admin.aruba.it
Content-Length: 0
18.198.218.66
104.21.35.225
23.72.139.51
216.239.34.36
23.36.77.40
93.184.220.29
62.149.186.150