aza.scia-a-roma.it/conferma/web/login.php
35.240.47.27200 OK 8.2 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/login.php
IP 35.240.47.27:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13690), with CRLF line terminators
Hash 2173371fe457fad028ac81b231315104
66072a44c290f0f6f4502f80ef8c7fbc13d1930a
b8503fa963aa3f99bcc510649ec95b5ca3450960d581ad4c2bfe4828825e952a
GET /conferma/web/login.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:51 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Set-Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8193
Connection: close
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11095
Expires: Mon, 06 Feb 2023 15:39:46 GMT
Date: Mon, 06 Feb 2023 12:34:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19449
Expires: Mon, 06 Feb 2023 17:59:00 GMT
Date: Mon, 06 Feb 2023 12:34:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 06 Feb 2023 12:34:04 GMT
content-type: application/json
age: 47
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7651
Expires: Mon, 06 Feb 2023 14:42:22 GMT
Date: Mon, 06 Feb 2023 12:34:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7llKDhigpTh6IUTiWG28uIW/TvR16JJi4CXCr6K8/+fk61cPDhZOE2j9r92DlwXmCPdDkbkOmJM=
x-amz-request-id: MKYM1EY6GB6JX5HG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 06 Feb 2023 11:53:41 GMT
age: 2470
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 06 Feb 2023 12:34:51 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
aza.scia-a-roma.it/PasswordScaduta_Include.css
35.240.47.27404 Not Found 1.5 kB URL HTTP/1.1 aza.scia-a-roma.it/PasswordScaduta_Include.css
IP 35.240.47.27:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 434dc1caeecfb543efdee3bd58dfeddc
7e76b6d9bcc59d9c786bcf1596077ca7e8c90930
5e8a91801dba6e4bac5d3e298302c21a99383fa67f7e94ea006acd7d04a58d23
GET /PasswordScaduta_Include.css HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 404 Not Found
Date: Mon, 06 Feb 2023 12:34:51 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Fri, 03 Feb 2023 15:29:20 GMT
ETag: "5aa-5f3cd5869806b"
Accept-Ranges: bytes
Content-Length: 1450
Connection: close
Content-Type: text/html
aza.scia-a-roma.it/conferma/panel/res/jq.js
35.240.47.27200 OK 31 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/res/jq.js
IP 35.240.47.27:0
File type ASCII text, with very long lines (65446), with CRLF line terminators
Hash 5c9be68fc77842021ef0cc49b85bf798
cda55672211fa73c458014c61598aa97c52eb430
2664c2cafdeba32970a06ad15374ee1cf022e87bd5737c2328dc5600958317b7
GET /conferma/panel/res/jq.js HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:51 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Sat, 04 Feb 2023 19:39:30 GMT
ETag: "15d9d-5f3e4f4eec274-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30905
Connection: close
Content-Type: application/javascript
aza.scia-a-roma.it/conferma/web/res/info-information-circle.svg
35.240.47.27200 OK 822 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/info-information-circle.svg
IP 35.240.47.27:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (822), with no line terminators
Hash de6f9bb9f89689d268ff3bb9bdfed24c
da340ab7b7384c68b9fb0deb072c911238941479
27a9a24907f8907c98afcf081684fe8fe95f3381ef49ff0d56c9e8e1eb525b6f
GET /conferma/web/res/info-information-circle.svg HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:51 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Sat, 04 Feb 2023 19:39:33 GMT
ETag: "336-5f3e4f51a6746"
Accept-Ranges: bytes
Content-Length: 822
Connection: close
Content-Type: image/svg+xml
aza.scia-a-roma.it/conferma/web/res/eye-hide.svg
35.240.47.27200 OK 2.3 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/eye-hide.svg
IP 35.240.47.27:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2105), with CRLF line terminators
Hash 2280199dcaecd21f0e7399a68563efb8
754041887e22f6abe406313cae22115e8b4ac9a7
6c46bf722fb11c3066171661ece073b58b6ea6c16b00a9d3cc162a6f215b57f1
GET /conferma/web/res/eye-hide.svg HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:51 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Sat, 04 Feb 2023 19:39:32 GMT
ETag: "92a-5f3e4f50dc4a0"
Accept-Ranges: bytes
Content-Length: 2346
Connection: close
Content-Type: image/svg+xml
aza.scia-a-roma.it/conferma/web/res/main_separatore_5_5.gif
35.240.47.27404 Not Found 1.5 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/main_separatore_5_5.gif
IP 35.240.47.27:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 434dc1caeecfb543efdee3bd58dfeddc
7e76b6d9bcc59d9c786bcf1596077ca7e8c90930
5e8a91801dba6e4bac5d3e298302c21a99383fa67f7e94ea006acd7d04a58d23
GET /conferma/web/res/main_separatore_5_5.gif HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 404 Not Found
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Fri, 03 Feb 2023 15:29:20 GMT
ETag: "5aa-5f3cd5869806b"
Accept-Ranges: bytes
Content-Length: 1450
Connection: close
Content-Type: text/html
aza.scia-a-roma.it/conferma/web/res/eye-show.svg
35.240.47.27200 OK 2.0 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/eye-show.svg
IP 35.240.47.27:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1717), with CRLF line terminators
Hash 549c9c3370ccd127db959e0afe296697
d6dd5fe853bfe70b1456f8d66e4526dfd4376f92
6676b05ef9626756989d9dbc09608830af666a330ad1bfa12438b9775330c474
GET /conferma/web/res/eye-show.svg HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Sat, 04 Feb 2023 19:39:32 GMT
ETag: "7a6-5f3e4f50e0321"
Accept-Ranges: bytes
Content-Length: 1958
Connection: close
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:34:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aza.scia-a-roma.it/conferma/web/res/back.jpg
35.240.47.27200 OK 54 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/back.jpg
IP 35.240.47.27:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x455, components 3\012- data
Hash 6cd269c304dd1eea2b53202ffc12d747
801127f7fafcbffaffc6c072491f8406bb7bd6a2
bcedd8f5b1acb515cecfe911027e6a0dfeb447b4e9c8613f5e4fab67930b7d54
GET /conferma/web/res/back.jpg HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:51 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Sat, 04 Feb 2023 19:39:32 GMT
ETag: "d32a-5f3e4f5095f87"
Accept-Ranges: bytes
Content-Length: 54058
Connection: close
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:34:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aza.scia-a-roma.it/conferma/web/res/main_separatore_5_5.gif
35.240.47.27404 Not Found 1.5 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/main_separatore_5_5.gif
IP 35.240.47.27:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 434dc1caeecfb543efdee3bd58dfeddc
7e76b6d9bcc59d9c786bcf1596077ca7e8c90930
5e8a91801dba6e4bac5d3e298302c21a99383fa67f7e94ea006acd7d04a58d23
GET /conferma/web/res/main_separatore_5_5.gif HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 404 Not Found
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Fri, 03 Feb 2023 15:29:20 GMT
ETag: "5aa-5f3cd5869806b"
Accept-Ranges: bytes
Content-Length: 1450
Connection: close
Content-Type: text/html
aza.scia-a-roma.it/conferma/web/res/icon-user.png
35.240.47.27200 OK 17 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/icon-user.png
IP 35.240.47.27:0
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 16dd3b0879da68623d1ba4df22df6373
6c4178ec861865e43450c7a37715aace1160967c
a525f163e73542be1b82c5ae4e4beed74d137d56161ac5b02833a279ef6d9b61
GET /conferma/web/res/icon-user.png HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/res/source.css?v=55
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Sat, 04 Feb 2023 19:39:33 GMT
ETag: "43f1-5f3e4f5169e71"
Accept-Ranges: bytes
Content-Length: 17393
Connection: close
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:34:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aza.scia-a-roma.it/conferma/web/res/icon-headset.png
35.240.47.27200 OK 15 kB URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/icon-headset.png
IP 35.240.47.27:0
File type PNG image data, 18 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash aa430c070840a66c4664fa2f582d7c94
2622948f3506c9ae8f2197344265de3f35f0e570
bcedcafd81248b08cb428b22618a38866d0cee85b4e9ecd27ef734d0533e2792
GET /conferma/web/res/icon-headset.png HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/res/source.css?v=55
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Sat, 04 Feb 2023 19:39:33 GMT
ETag: "3c35-5f3e4f516022e"
Accept-Ranges: bytes
Content-Length: 15413
Connection: close
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:34:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Feb 2023 09:40:57 GMT
expires: Sun, 04 Feb 2024 09:40:57 GMT
cache-control: public, max-age=31536000
age: 183235
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,400,700,900
142.250.74.106200 OK 23 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,700,900
IP 142.250.74.106:0
Hash ef811c58de73f92b6702b6a9d499bc44
7e929c0d3abeca378b3cb8caee695001be865266
87db7af9908da7aeb274740ab9d4bfed790ca53b13b131c4e9d671db477054ce
GET /css?family=Lato:300,400,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 06 Feb 2023 12:34:52 GMT
date: Mon, 06 Feb 2023 12:34:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/web/spy.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/spy.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /conferma/web/spy.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 11
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 06 Feb 2023 12:34:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aza.scia-a-roma.it/favicon.ico
35.240.47.27404 Not Found 1.5 kB URL HTTP/1.1 aza.scia-a-roma.it/favicon.ico
IP 35.240.47.27:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 434dc1caeecfb543efdee3bd58dfeddc
7e76b6d9bcc59d9c786bcf1596077ca7e8c90930
5e8a91801dba6e4bac5d3e298302c21a99383fa67f7e94ea006acd7d04a58d23
GET /favicon.ico HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 404 Not Found
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Fri, 03 Feb 2023 15:29:20 GMT
ETag: "5aa-5f3cd5869806b"
Accept-Ranges: bytes
Content-Length: 1450
Connection: close
Content-Type: text/html
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, Pragma, Alert, Cache-Control, Content-Length, Expires, Retry-After, Backoff, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 06 Feb 2023 12:07:20 GMT
age: 1652
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10237
Expires: Mon, 06 Feb 2023 15:25:29 GMT
Date: Mon, 06 Feb 2023 12:34:52 GMT
Connection: keep-alive
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:52 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
44.227.71.100101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.227.71.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: On9lPhVcD0iChu/xfpo32g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 17VRHfz6IG15itF7w2O0cm9Ydxs=
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:53 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:53 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:53 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:53 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10987
Expires: Mon, 06 Feb 2023 15:38:01 GMT
Date: Mon, 06 Feb 2023 12:34:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10987
Expires: Mon, 06 Feb 2023 15:38:01 GMT
Date: Mon, 06 Feb 2023 12:34:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10987
Expires: Mon, 06 Feb 2023 15:38:01 GMT
Date: Mon, 06 Feb 2023 12:34:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dbe304b5138a360ff07a9842bcf6a7f
00572f7667e322c9ef34bc35b7998c1c172dd34c
d63c58d6c96e23c61b92272de8c2aab01f4cf85f3420cc434c05447d355b1c77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F085f1306-f595-4e1a-8162-7d3d1f959ac3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9108
x-amzn-requestid: 47a7d6da-229b-4fcc-a2c0-823f9c5e4224
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f0QLAGXgoAMFv6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de60ac-5b8ee53114e58a056306067f;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 13:42:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6oyg-X-GTV3HeKzW4a6Sa99JNjWcZFnE8okoqeAtp6ZgkTKCDtSoAw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:46:53 GMT
age: 53281
etag: "00572f7667e322c9ef34bc35b7998c1c172dd34c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccc8078cc937b7de0b299bcee1496f1b
395f04af71767acc9516387c8b07bde08968fdfe
cf959fc4a72d80dcab20c235bec6d21eadaab87efa7a8969744cd228628ba050
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3694634-2f5a-47ff-b75c-9cb394881acc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9808
x-amzn-requestid: 75cc8041-19f5-4994-96b6-b14d3c90ec6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiSFZAIAMF65g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-355d272c345c8c37595b4bb2;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T7YlRZ936VEDkBvo2YKrS3GbyEh1xzC8W-50KiODzFjTnQb-hvkKpw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 53091
etag: "395f04af71767acc9516387c8b07bde08968fdfe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714723c38877e0d1655c7118a88ec064
809a42ce7c76cea0ce16af8172d852723c3a5f02
6bad7253694d155de31a8f5a3c635545a39aac340ca49d1bc10efb6739d4a356
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f49c6ce-40f8-40bf-9423-2de34118bace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8981
x-amzn-requestid: 0054e925-c381-4737-bd92-32b2af3a604e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQHRFoAMFw6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-45ea5ee33d07326c593d21d3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ixAMZh_xOYWVESJ0jOEPOXZ4GQBDUZZsh26yEDYfl8APcBF2x2sZYg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 53091
etag: "809a42ce7c76cea0ce16af8172d852723c3a5f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13572f84ad268caedcc897f2ad7b9baf
afb91ab43953e8915a2169618d2ab5e330cde0a1
0fb8b09608dc293b2084953b948cc7d8a7aa7bcb525090a7e44d5cb2a725fab3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7851
x-amzn-requestid: 11d3fe95-844b-4e5d-b31c-f99e96e2b608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHeEIAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-602b91422dff88a750b8e3e9;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7LXNdWi5iKCUI61c2z3spsg5_DGu1jnZ4cIACc3MCmqWP57RveBMGw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 53091
etag: "afb91ab43953e8915a2169618d2ab5e330cde0a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb0dab387816c4b691190ec83c2f0f06
9c56d516ae0178b5b0d8bbf2b16e2e7fbe25e358
6655307747227d7905f0eca1aaefda6147e4ae443fb9fb20cdb6a336aaab5b67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7158f70-9e7b-4725-8249-e7061700f1ee.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8528
x-amzn-requestid: b799da5b-d52a-4d83-bdd4-9582d39d6c5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwCmAFYgIAMFjvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb159-77235f642e8a0bdb07414dcb;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:01:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EN4Mi_2U_eISge5bd6JQgkg6rGJcB2cQAyhKHOZO-g_Arj6kofRo6g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 07:27:28 GMT
age: 18446
etag: "9c56d516ae0178b5b0d8bbf2b16e2e7fbe25e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9046d887fd45a0940e31a74173d17798
1ff698b9cf660165e846dfc4770f29852aedce45
0c7b0e1250aa7718b7b35b80a1442f62e94ace1fb578fb781ec8204ee96386d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F731dc7de-ce12-4639-9ceb-3218584c3d56.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10514
x-amzn-requestid: ac2a383b-833d-4dae-9bd9-43dc3d9e373d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPEIyoAMFqUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-436bb6816b269ce45b9f8600;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RYNzle5-l5dOMPWb2Bmu_T5aIJw9NX2FKuJsej8hzpYZcgD6coH9SA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:09 GMT
age: 53085
etag: "1ff698b9cf660165e846dfc4770f29852aedce45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:54 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:54 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:54 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:54 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:55 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:55 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:55 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:55 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:56 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:56 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:56 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:56 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:57 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:57 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:57 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:57 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:58 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:58 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:58 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:58 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:59 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:59 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:59 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:59 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:35:00 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/panel/classes/processor.php
35.240.47.27200 OK 1 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/panel/classes/processor.php
IP 35.240.47.27:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
NIDS Severity Alert suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
suricata medium ETPRO HUNTING Observed HTTP POST with panel in URI
POST /conferma/panel/classes/processor.php HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 21
Origin: http://aza.scia-a-roma.it
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:35:00 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 1
Connection: close
Content-Type: text/html; charset=UTF-8
aza.scia-a-roma.it/conferma/web/res/source.css?v=55
35.240.47.27200 OK 0 B URL HTTP/1.1 aza.scia-a-roma.it/conferma/web/res/source.css?v=55
IP 35.240.47.27:0
GET /conferma/web/res/source.css?v=55 HTTP/1.1
Host: aza.scia-a-roma.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aza.scia-a-roma.it/conferma/web/login.php
Cookie: PHPSESSID=2lp5hs269q1hduqp320u8eatro
HTTP/1.1 200 OK
Date: Mon, 06 Feb 2023 12:34:51 GMT
Server: Apache/2.4.29 (Ubuntu) mod_fcgid/2.3.9 OpenSSL/1.1.1
Last-Modified: Sat, 04 Feb 2023 19:39:34 GMT
ETag: "24eea-5f3e4f52c2a89-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 26589
Connection: close
Content-Type: text/css