Overview

URL www.awesome-leaders.com/index.html
IP184.154.61.171
ASNSINGLEHOP-LLC
Location United States
Report completed2022-09-29 21:59:08 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-29 2 www.awesome-leaders.com/index.html Monte dei Paschi Di Siena
2022-09-15 2 www.awesome-leaders.com/ Monte dei Paschi Di Siena
PhishTank
Scan Date Severity Indicator Comment
2022-08-04 2 www.awesome-leaders.com/index.html Other
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-29 2 www.awesome-leaders.com/index.html Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-29 2 awesome-leaders.com Sinkholed
2022-09-29 2 awesome-leaders.com Sinkholed


Files

No files detected



Passive DNS (16)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-29 04:57:37 UTC 23.36.76.226
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-29 05:06:32 UTC 52.41.246.187
mnemonic passive DNS code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2022-09-29 04:59:15 UTC 69.16.175.10
mnemonic passive DNS ocsp.usertrust.com (1) 899 2012-05-21 15:43:18 UTC 2022-09-29 05:03:14 UTC 104.18.32.68
mnemonic passive DNS digital.mps.it (11) 0 2017-01-31 09:13:31 UTC 2022-09-29 16:31:17 UTC 81.26.193.203 Domain (mps.it) ranked at: 437376
mnemonic passive DNS www.smartsuppchat.com (1) 46890 2017-01-30 05:24:57 UTC 2022-09-29 12:06:02 UTC 185.76.9.22
mnemonic passive DNS bootstrap.smartsuppchat.com (1) 43006 2018-01-29 06:10:36 UTC 2022-09-29 08:20:39 UTC 3.65.143.70
mnemonic passive DNS ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-09-29 18:19:35 UTC 172.64.155.188
mnemonic passive DNS www.awesome-leaders.com (2) 0 2014-12-18 14:59:26 UTC 2022-09-29 11:32:17 UTC 184.154.61.171 Unknown ranking
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.39
mnemonic passive DNS widget-v2.smartsuppcdn.com (4) 49903 2020-05-20 00:56:02 UTC 2022-09-29 10:03:31 UTC 185.76.9.14
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-29 16:06:01 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-29 05:03:41 UTC 143.204.55.110
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-29 04:56:09 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-29 15:12:13 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-29 14:36:13 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 184.154.61.171

Date UQ / IDS / BL URL IP
2022-12-03 04:52:21 +0000
6 - 0 - 7 www.net-flix-payment.thecornercoffeeshop.com/ (...) 184.154.61.171
2022-12-03 02:47:21 +0000
6 - 0 - 11 net-flix-payment.thecornercoffeeshop.com/en/l (...) 184.154.61.171
2022-12-03 02:27:33 +0000
3 - 0 - 11 net-flix-payment.thecornercoffeeshop.com/ch/l (...) 184.154.61.171
2022-12-02 22:37:30 +0000
6 - 0 - 5 www.net-flix-payment.thecornercoffeeshop.com/ (...) 184.154.61.171
2022-11-21 07:30:04 +0000
7 - 0 - 5 net-flix-payment.thecornercoffeeshop.com/en/l (...) 184.154.61.171

Last 5 reports on ASN: SINGLEHOP-LLC

Date UQ / IDS / BL URL IP
2022-12-06 21:55:18 +0000
0 - 0 - 7 savinglyze.com/oiti/index.php?QBOT.zip 65.60.20.182
2022-12-06 21:49:58 +0000
0 - 0 - 8 binlp.pe/sml/index.php?QBOT.zip 108.163.203.154
2022-12-06 18:27:46 +0000
0 - 0 - 1 prismlabs.in/boatest/login.php 65.60.35.58
2022-12-06 15:39:06 +0000
0 - 0 - 1 prismlabs.in/boatest/login.php 65.60.35.58
2022-12-06 13:53:53 +0000
0 - 0 - 1 ssl1.adfx.xyz/?utm_medium=1004b74abd05bec76dc (...) 65.60.58.180

Last 5 reports on domain: awesome-leaders.com

Date UQ / IDS / BL URL IP
2022-09-29 21:59:08 +0000
0 - 0 - 6 www.awesome-leaders.com/index.html 184.154.61.171
2022-09-23 17:11:57 +0000
0 - 0 - 6 www.awesome-leaders.com/ 184.154.61.171
2022-09-15 21:24:20 +0000
0 - 0 - 6 www.awesome-leaders.com/ 184.154.61.171
2022-09-02 12:11:22 +0000
0 - 0 - 6 www.awesome-leaders.com/index.html 184.154.61.171
2022-09-02 00:11:48 +0000
0 - 0 - 4 www.awesome-leaders.com/ 184.154.61.171

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-28 17:23:43 +0000
0 - 0 - 4 robilliardag.com/ 203.26.41.132
2022-11-23 06:35:13 +0000
0 - 0 - 5 alpacaranchhouse.com/ 192.252.216.194
2022-11-13 19:48:23 +0000
0 - 0 - 6 robilliardag.com/ 203.26.41.132
2022-11-11 08:53:30 +0000
0 - 0 - 6 alpacaranchhouse.com/ 192.252.216.194
2022-10-14 23:08:00 +0000
0 - 0 - 3 thethrone.xyz/ 104.21.4.88


JavaScript

Executed Scripts (19)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (40)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 21:15:55 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QmzfpZkKMhbhNVv_WlV4SZKt961P1lTnhL5ukfFNB-ryRBXXJ0NDCw==
Age: 2582


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4915
Expires: Thu, 29 Sep 2022 23:20:52 GMT
Date: Thu, 29 Sep 2022 21:58:57 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 29 Sep 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x_xIdKLty77vuPTLQlgILqa_gqhR6etYNomTX4wCWbeaPWTdzMSR6w==
age: 59430
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 29 Sep 2022 21:58:57 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 29 Sep 2022 21:29:33 GMT
Expires: Thu, 29 Sep 2022 21:32:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VfvCUlHCemTYSwrkwdfF4nryZQEtKG1JsYUtltlugnvIFdcSettiyg==
Age: 1765


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3019
Cache-Control: 'max-age=158059'
Date: Thu, 29 Sep 2022 21:58:58 GMT
Last-Modified: Thu, 29 Sep 2022 21:08:39 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DusRknigXy32H4CdSdE1hg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.41.246.187
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FkAng4HmOmASsMd0ljhpMGHroGs=

                                        
                                            GET /jquery-latest.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 29 Sep 2022 21:58:58 GMT
content-encoding: gzip
content-length: 33202
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1762a"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664488738.dop013.sk1.t,1664488738.cds068.sk1.hn,1664488738.cds256.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32086)
Size:   33202
Md5:    a39e9fcc2a78d5b1ed25b5f853c17a22
Sha1:   f1d1d30d35146a7adee855becba02b776366f169
Sha256: a0581d3f2c05cfb302f81d2894c114da758e14a290bd4f240c7b63628469ee8d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 21:58:59 GMT
Content-Length: 2236
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 10:12:16 GMT
Expires: Wed, 05 Oct 2022 10:12:15 GMT
Etag: "cf82d4d918f571b2cbf50c775e60985e1d69f99e"
Cache-Control: max-age=602981,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1244
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7527fbbb6a9db51b-OSL


--- Additional Info ---
Magic:  data
Size:   2236
Md5:    f9f2f44ac1527ff7d8a87f131a6691ae
Sha1:   cf82d4d918f571b2cbf50c775e60985e1d69f99e
Sha256: bc72ce9a7e111f29d1fba9983bde4cddee32b78bf1c90ce204c84c2f28acb19d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Sep 2022 21:58:59 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 19:11:35 GMT
Expires: Wed, 05 Oct 2022 19:11:34 GMT
Etag: "d41575fa62247d65a091f5920844743c68b4c737"
Cache-Control: max-age=507754,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7527fbbb7b8ab4f9-OSL

                                        
                                            GET /cmn/assets/css/catalogo/w.login.digitalBanking.min.css?vers=1131606 HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 29 Sep 2022 21:58:59 GMT
Content-Length: 10619
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Fri, 02 Sep 2022 09:44:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Sat, 29 Oct 2022 19:15:31 GMT
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-1822701942"
Etag: W/"PSA-FVzCgDKGRW"
X-Original-Content-Length: 47636
X-Content-Type-Options: nosniff, nosniff
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_1_sn_BF85E3C3B2F683FFA4A8BCA56B6FAD1F_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad23890182ea137e3359ffd9847e2a9499c4f5c8e874046d707d01d741958ba3997ad5130ba771fba0ec4d433ed56cc4ad6e49; Path=/; Secure; HTTPOnly TS01802bdf=01eaad2389dc2aa0092f4cdebbf9d8e85bf1c5def6c8e874046d707d01d741958ba3997ad5d2cdc589eea96fd9c4e82672778045255ae55b63814d55a1d859442dd97de130; path=/; domain=.mps.it; HTTPonly; Secure
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (47635)
Size:   10619
Md5:    ef1675b320b987135de036859cc0351a
Sha1:   ce48a3b5427a63ae16c0384525d1ca2483a5a8dc
Sha256: 48dfbcef93cc3ab6309e135e8f290815ce31bfd0069b0280b84da659635846a7
                                        
                                            GET /index.html HTTP/1.1 
Host: www.awesome-leaders.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         184.154.61.171
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 29 Sep 2022 21:58:58 GMT
Server: Apache
Last-Modified: Wed, 11 Nov 2020 05:10:12 GMT
Accept-Ranges: bytes
Content-Length: 185840
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (447), with CRLF line terminators
Size:   185840
Md5:    a21c182a17e9b8b79617c15397df7f2e
Sha1:   8c133b56d7e1043c5191decad9380064204a2378
Sha256: 13f241ffa8e1721a40d1ac8c5345212831e7eb3ef760cc810ebba5c770e03d10

Alerts:
  Blocklists:
    - openphish: Monte dei Paschi Di Siena
    - phishtank: Other
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6439
Expires: Thu, 29 Sep 2022 23:46:18 GMT
Date: Thu, 29 Sep 2022 21:58:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6439
Expires: Thu, 29 Sep 2022 23:46:18 GMT
Date: Thu, 29 Sep 2022 21:58:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6439
Expires: Thu, 29 Sep 2022 23:46:18 GMT
Date: Thu, 29 Sep 2022 21:58:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6439
Expires: Thu, 29 Sep 2022 23:46:18 GMT
Date: Thu, 29 Sep 2022 21:58:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10023
x-amzn-requestid: 0cb6b9a1-0707-4094-b197-5a0add2df717
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK4dHJLIAMFWmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be9c-2d8bbb17157900f126c5bb3c;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wZ2hBqHAdwimAVV3p-CJFrb9zQ-CTN5ar9CB-cu0mZoENYUFTKKPWQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 22:04:58 GMT
age: 86041
etag: "e1067a2dfbc22e7eb196046d57bd1e17604dba75"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10023
Md5:    f4505f57697072468da82e0b536d0d5b
Sha1:   e1067a2dfbc22e7eb196046d57bd1e17604dba75
Sha256: b5e79054f165f38b99f93a8128284f82076523988aeb102b85dd8ff1a2870d00
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99f26bb4-2c5c-44ef-86d3-90fd05ec1ce0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9654
x-amzn-requestid: 7961f184-9476-43de-bf35-8ccb50ee1760
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGVYsHA6oAMFvRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63326904-05f567f7606462ac44f89987;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 03:07:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XaB4TwXv4xy0Sy3dncNYZWEPEnHY5BkEHR7fZDK59APYkzH9DPdT7A==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 04:20:40 GMT
age: 63499
etag: "44cc19b21912d07f82a88af5b2fa6d3e370459bf"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9654
Md5:    36ae9444071dd70dcf86802c370ffda9
Sha1:   44cc19b21912d07f82a88af5b2fa6d3e370459bf
Sha256: 99984d108bf31d733414f7f1352e17225ac21ac2dbfb4b1e7fa7ae80e5b6b822
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dyDhatfeYzzSQpRY7JpOIu3VhjlI8IOWcKCLCBWYaxJ1CYgCxqdQjA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:49:47 GMT
age: 552
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14073
Md5:    11594ce7500d8776bfd5162b17f87d72
Sha1:   72603efba82d649ce5a7a0ca45dc830c0d9ef012
Sha256: 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4235
x-amzn-requestid: 60825c64-7743-4b16-b80d-d1195ccb0f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK2nFsDoAMFRwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be90-1898e5d9111db7c843c1ebb4;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C-XC9qsktkENdI6lWZp5RQjeEvrrFMUfBq1mA5dxEjRq5tkfL5Jsxw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 22:04:55 GMT
age: 86044
etag: "2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4235
Md5:    30471179bd7cdeecea2fa4ea98701aef
Sha1:   2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb
Sha256: 967e070aec3942c64cc6c4cfdc13d430825c9e5c26dbec5bb3d66237d5978dfc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F783cca30-851d-4c3b-97b3-dfc92f711d23.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4093
x-amzn-requestid: 4275d743-8507-4fbe-83d1-cc0da2adef7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKoPHCMIAMF7wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be34-5ddb717430e7b38e3ee53657;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H713oiiX6wslZytV_P5NblH5vT7KZ2fv1G3DLKLrH5nw0lHOquia4w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:50:27 GMT
age: 512
etag: "c17c7bdfa4b40f9a0634da65c610869e5c410bf1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4093
Md5:    aed4d25286420a1405c3274931194002
Sha1:   c17c7bdfa4b40f9a0634da65c610869e5c410bf1
Sha256: f32058bdd49930b927d1f9fdfd204ed054b4f85e0d679eff067d522d42ac504a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0e9057-f203-4080-95b8-652ecd15effa.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7859
x-amzn-requestid: 34d0718f-46d4-446f-bb06-8449bd8f4287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZIlO4FcBoAMFy0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63334f2b-58ae81c9077e4f1575750f15;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 19:29:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uzwIgEsYiWch9RE2mlWZO__ZajkuFHafOjSxtq4oW_cxZJ1FwDT8eA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 19:04:20 GMT
age: 10479
etag: "35ec6e80d324bb215796c590a7ffafbaea55d88e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7859
Md5:    c62a6368c456e9614ca4c8e360a2ef12
Sha1:   35ec6e80d324bb215796c590a7ffafbaea55d88e
Sha256: 90a37acc6beda1aa98a98cb84e00a7e469d6d919a14f4709c5f67a83ae95278d
                                        
                                            GET /cmn/assets/js/jquery-ext.js?vers=1131606 HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 29 Sep 2022 21:58:59 GMT
Content-Length: 11361
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Fri, 02 Sep 2022 09:44:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Sat, 29 Oct 2022 19:26:43 GMT
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="1"
Etag: W/"PSA-2jPy1yEKjj"
X-Original-Content-Length: 25288
X-Content-Type-Options: nosniff, nosniff
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_3_sn_E0C245D0EBDCC3140F82B90D255580D4_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad23892a778ec5de7c3571c9776282eef18151b2e63d191e943fce4caf555a2ec0b05debfd49865341b4d6062fbca5de1b8e33; Path=/; Secure; HTTPOnly TS01802bdf=01eaad2389c938093c00d5be9c1c359a7312aeac90b2e63d191e943fce4caf555a2ec0b05d52128fcf49d354c5b2dfd7035269d0d21198f65788c87b33ca724a76c6e4468b; path=/; domain=.mps.it; HTTPonly; Secure
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (25288), with no line terminators
Size:   11361
Md5:    e2d5f519dd40e9810a29a66491cadf74
Sha1:   ffd8a2874172accd96d6b6439f696d7f37517cab
Sha256: a0b72acb9248731929ff167146fce054eec1085fc11905a565c780cc1e770038
                                        
                                            GET /libs/img/loginBI/iconaSpeechAssistantred.png HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Content-Length: 2394
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Accept-Ranges: bytes
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="0", dtRpid;desc="217922772"
Etag: W/"PSA-aj-ym2Ym0rtFb"
Expires: Sat, 29 Oct 2022 21:26:43 GMT
Cache-Control: max-age=2590062
X-Content-Type-Options: nosniff, nosniff
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_3_sn_374AA6FA0B3023BD886701CBDF9FED05_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad23898c5f37bcaf3e21a736cff4d0bc75972611a556943739e90a75467d744cf543ce2ad650368b41d0450609b15dbb2ab24f; Path=/; Secure; HTTPOnly TS01802bdf=01eaad238964334f8177a08b994010084241ffb71911a556943739e90a75467d744cf543ce64f099d763000b8cdd08a53d3a4f87da3243b9f4fd6b2275e0d69f360ee2e65a; path=/; domain=.mps.it; HTTPonly; Secure


--- Additional Info ---
Magic:  PNG image data, 224 x 224, 8-bit colormap, non-interlaced\012- data
Size:   2394
Md5:    ca6d989b4aed15bc09f589876a4697b6
Sha1:   c1b3afd98683383d7dacf66164d0e875f752bc3f
Sha256: d46dda2fab1d8fe763cec3ef41291116c4df2667bdb89448b37fbc342249924a
                                        
                                            GET /login.html HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Accept-Ranges: bytes
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Cache-Control: max-age=0, no-cache
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-1304321670"
Content-Length: 13
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_2_sn_2B5C2E2F9B4A99C9DD070636E81373E5_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad2389a8afa717ea8e586117893a0872ea77ed8ecad74cef71480e33914cf1cf858cd05ce426fac789690bb3053f3cfabf4e05; Path=/; Secure; HTTPOnly TS01802bdf=01eaad23890e1ac15d3c04e5c12b0952d7bb0de08a8ecad74cef71480e33914cf1cf858cd04b36182d18b62c1446925d7dfe8ce321300510e64ce46e6d05f1da61f1ead5dd; path=/; domain=.mps.it; HTTPonly; Secure
Vary: Accept-Encoding


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   13
Md5:    c83301425b2ad1d496473a5ff3d9ecca
Sha1:   941efb7368e46b27b937d34b07fc4d41da01b002
Sha256: b633a587c652d02386c4f16f8c6f6aab7352d97f16367c3c40576214372dd628
                                        
                                            GET /libs/img/montedeipaschi_logo_hd.png HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Content-Length: 10960
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Accept-Ranges: bytes
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="0", dtRpid;desc="1367285251"
Etag: W/"PSA-aj-I0rwWqEAus"
Expires: Sat, 29 Oct 2022 21:28:02 GMT
Cache-Control: max-age=2590141
X-Content-Type-Options: nosniff, nosniff
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_3_sn_67A92C96129C2EC23D9C198E772DE585_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad2389df48cf800eeae84c2ec9032cf1ec87b7369ae88337cf608e40a8fee8b8efd7b5e44b097cb007137dd37a146bec2f12d6; Path=/; Secure; HTTPOnly TS01802bdf=01eaad2389e893cc4a5459b02ba94e327aed96d06f369ae88337cf608e40a8fee8b8efd7b572ce11019cfb1ad9654aa5aac0bbc385d05b741e2d44fc81c46ccef9a82b8d3f; path=/; domain=.mps.it; HTTPonly; Secure


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 241x88, components 3\012- data
Size:   10960
Md5:    234af05aa100bac0bd183b7e8bf02179
Sha1:   5d467e25cf91aa9e5a90c1ed6e4ba4a8c471f451
Sha256: 0a0c6433b58c72136375414d6f7a6a511932eeaac396f7c0991a2b953fa2eaaa
                                        
                                            GET /cmn/assets/icons/catalogo/info%20tooltip_UI.svg HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Fri, 02 Sep 2022 09:43:12 GMT
Accept-Ranges: bytes
Content-Length: 999
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Sat, 29 Oct 2022 21:59:00 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="0", dtRpid;desc="45519127"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_3_sn_BCB0F6D45BE2ABA267667F4D5321AB53_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad2389b05a6ce3a00049e5556b9ee7952a86298f7fbc4319f7b94bd4ed64e3d5535246b43e1556fd49ac56d5b60bac949cb835; Path=/; Secure; HTTPOnly TS01802bdf=01eaad2389246ac43842b24ba13286acd1134616198f7fbc4319f7b94bd4ed64e3d553524648636f2d7f5b2f1bba2f2eeed518a1dfd859823625938ff50cbd26a866fb2bff; path=/; domain=.mps.it; HTTPonly; Secure


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   999
Md5:    12c7d3bc84dcbc9bf6f4f8c0bc62a03c
Sha1:   9fa0f5c8c6b269a02baf4615895766e024de984c
Sha256: 9c9b26055379437522e81d6ad02ec43de51199f7ee3ad2fb8a7f6ab3a44efccf
                                        
                                            GET /libs/img/loginBI/ico_carte.svg HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Fri, 02 Sep 2022 09:43:26 GMT
Accept-Ranges: bytes
Content-Length: 1330
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Sat, 29 Oct 2022 21:59:00 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-1211413542"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_1_sn_9471F726AA549D634B61750AA5D6B26E_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad23896dd62cd0784c538afefeb62b926e43fb59ce15036d179567e7d862e9fd9f47fd5843122829b7c9a0bfdd73be68a02349; Path=/; Secure; HTTPOnly TS01802bdf=01eaad2389b2d5a48a077052a265055fa6c40ba53059ce15036d179567e7d862e9fd9f47fddba6741301aae290e96059e8be5916f1462731590f9cf797f09bb01269529d76; path=/; domain=.mps.it; HTTPonly; Secure


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1330
Md5:    6a713d495a6a62bc4cecb91676fe25f2
Sha1:   54818deb2f386ad9f7f8aa831391b6fc2c59464a
Sha256: b989e87444353500fa31829b5814b69d053f5e5553bfff4fcb26a38f76e0f08e
                                        
                                            GET /libs/img/loginBI/ico_informazioni.svg HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Fri, 02 Sep 2022 09:43:26 GMT
Accept-Ranges: bytes
Content-Length: 2448
Vary: Accept-Encoding
Cache-Control: max-age=2592000
Expires: Sat, 29 Oct 2022 21:59:00 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Server-Timing: dtSInfo;desc="0", dtRpid;desc="969487116"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_2_sn_1BFB43653EE828A7DC3DD508CA8120E9_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad2389a1acb7e4357005e6489f8bc447f565d9be6ae31d9c9ddc7ef08e14602bd126537a7ee08a07f5c96572e83363bc68b33d; Path=/; Secure; HTTPOnly TS01802bdf=01eaad2389240dd4aa73b26957a998a1ee7865eb56be6ae31d9c9ddc7ef08e14602bd126535e8c20fe774fd561bb884b7a56a734976890f235a04e7cd84df704a1957c7f92; path=/; domain=.mps.it; HTTPonly; Secure


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   2448
Md5:    671e7303796ce8cccd6f8f98f192fb1c
Sha1:   6680a2f5f75ddd3fbfa15f36445759ebef52b48e
Sha256: 0723be3bac2e41d6d7aa267af24f45a7240d74ead82a130765f83fc6fbf19723
                                        
                                            GET /cmn/font/text-security-disc.woff2 HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.awesome-leaders.com
Connection: keep-alive
Referer: https://digital.mps.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Fri, 02 Sep 2022 09:43:17 GMT
Accept-Ranges: bytes
Content-Length: 2280
Cache-Control: max-age=2592000
Expires: Sat, 29 Oct 2022 21:59:00 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-877346951", dtTao;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_1_sn_8EB914EA11169E4218F50A4D58C0AAD0_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad2389b56a0d1267fb2e4459b988e057ca2aa55abac4b0e07db60a154b13d18a42a739638ea236dc6e3814e2ecb98f63d8e0d2; Path=/; Secure; HTTPOnly TS01802bdf=01eaad238945571602ae75971b94a5b8e95ffd921f5abac4b0e07db60a154b13d18a42a73946acb0b8fe9e1095c3f684fd7dd4e140cd72d14bfdcec5e30551d41b5e574146; path=/; domain=.mps.it; HTTPonly; Secure
Vary: Accept-Encoding


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 2280, version 1.0\012- data
Size:   2280
Md5:    db2e9ff14caa4e15f4e39ef4e10d34b8
Sha1:   16a11d60fd4b69f3fe7bf7bfb09475a5967124d9
Sha256: 9dd630e7cbf1a068b89a5a134e248ff63f2d452081bf86684aeb4b7f73712b76
                                        
                                            GET /cmn/font/text-security-disc.woff HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.awesome-leaders.com
Connection: keep-alive
Referer: https://digital.mps.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Fri, 02 Sep 2022 09:43:15 GMT
Accept-Ranges: bytes
Content-Length: 2988
Cache-Control: max-age=2592000
Expires: Sat, 29 Oct 2022 21:59:00 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-225766785", dtTao;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_2_sn_155ED10CBF97ED3A5DAEEF389E4F28EA_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_1; Path=/; Domain=.mps.it TS01d2b0ab=01eaad238907cb318e351fc05767b48950ea7a1a13889e81a29919d9d3658db9417cc3156ad6990b873154eb003b205b0da27acab7; Path=/; Secure; HTTPOnly TS01802bdf=01eaad23892ec226863fc018545859550565192aef889e81a29919d9d3658db9417cc3156a453a79d932071e4172fe272c42ad47e4c2620083006152cf56dde23ee97eae09; path=/; domain=.mps.it; HTTPonly; Secure


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 2988, version 1.0\012- data
Size:   2988
Md5:    4fa38d775a1f6b9179bc7c425ecaf7f4
Sha1:   999363e7db078097dd06c303a4fd09839da7cc6e
Sha256: 6252319c96777a4ce3952f63ec70735230c1c5c9392e81a9b3f9a8b2bc06c164
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.awesome-leaders.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.awesome-leaders.com/index.html

                                         
                                         184.154.61.171
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Server: Apache
Last-Modified: Wed, 11 Nov 2020 05:10:12 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    756b5102ba5f5f62045174f1e0e24f2e
Sha1:   da960cdb4f405c110d956b286915426a2c08689f
Sha256: 23063090027d06c463ca3fcf7b5c19b715051dff25da99f3c0b505fa20fbfe11

Alerts:
  Blocklists:
    - openphish: Monte dei Paschi Di Siena
    - quad9: Sinkholed
                                        
                                            GET /cmn/font/text-security-disc.ttf HTTP/1.1 
Host: digital.mps.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.awesome-leaders.com
Connection: keep-alive
Referer: https://digital.mps.it/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         81.26.193.203
HTTP/1.1 200 OK
Content-Type: application/font-sfnt
                                        
Date: Thu, 29 Sep 2022 21:59:00 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
Last-Modified: Fri, 02 Sep 2022 09:43:17 GMT
Accept-Ranges: bytes
Content-Length: 12392
Cache-Control: max-age=2592000
Expires: Sat, 29 Oct 2022 21:59:00 GMT
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google.com https://ajax.googleapis.com https://maps.googleapis.com www.google-analytics.com https://8294890.fls.doubleclick.net https://secure.adnxs.com https://white.mynsystems.com https://blue.mynsystems.com/ https://privacy.mynsystems.com https://ib.adnxs.com https://yellow.mynsystems.com https://zna4cciryw9kzle8d-mps.siteintercept.qualtrics.com https://siteintercept.qualtrics.com https://connect.facebook.net https://zn9nahtxma7dxxjqe-mps.siteintercept.qualtrics.com https://zn5j9lftsu1lqzb1k-mps.siteintercept.qualtrics.com https://zncveh3lu3fyce1re-mps.siteintercept.qualtrics.com;
Access-Control-Allow-Headers: Content-Type
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="1567353571", dtTao;desc="1"
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Set-Cookie: dtCookie=v_4_srv_2_sn_A9C59C46CB83F5F9381EEE91C100E3F1_perc_100000_ol_0_mul_1_app-3A07e31ae0c92b1b0b_0; Path=/; Domain=.mps.it TS01d2b0ab=01eaad2389a78a5c4918561393076cdc5ea6ecdf64128e80fb746fa5e25673165ae9945af529919b10aa784b5f5203b186ad652fc5; Path=/; Secure; HTTPOnly TS01802bdf=01eaad2389b1c88f5b1935bc7dffe6e6bdd8b63ba3128e80fb746fa5e25673165ae9945af59a92196a6477094e65512d205ed60861a97fa9884dcd36c92ad663cf4690bc46; path=/; domain=.mps.it; HTTPonly; Secure


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, text-security-discRegulartext-security-disctext-security-discVersion 1.0text-security-discGenera\012- data
Size:   12392
Md5:    7c83ea2ac4879abaee1d9e85d996b00c
Sha1:   f2edb568b2b37d9fa0d694ba2776e88441c2aac2
Sha256: 45db43564f0403a0df50caa810df6e9ee61dca5127cb3682f27d37b4f595f25a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 29 Sep 2022 21:59:00 GMT
Last-Modified: Thu, 29 Sep 2022 21:38:37 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4C52-oDYhSisJv99KYFca7dtsJ61HhbwCXa1r8QOHUAyWqQlewQ-9w==
Age: 1223

                                        
                                            GET /static/js/main.2b685341.chunk.js HTTP/1.1 
Host: widget-v2.smartsuppcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.14
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 29 Sep 2022 21:59:00 GMT
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-1cba4"
expires: Fri, 29 Sep 2023 20:02:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017766
server: CDN77-Turbo
x-77-nzt: AblMCQ23UYD/PhsAAA
x-77-nzt-ray: p2RM0tUm+vg
x-cache: HIT
x-age: 6974
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   27648
Md5:    64dcb17a37a4eb23ae91e9014f3edc10
Sha1:   d2305ab3325c8a5d82d455a980dd088b9b772133
Sha256: 52da5d89f6b7d368ae495db2d268fe1fc1ba5b37491ede847a7efe6aea902f50
                                        
                                            GET /asset-manifest.json HTTP/1.1 
Host: widget-v2.smartsuppcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: http://www.awesome-leaders.com
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.14
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 29 Sep 2022 21:59:00 GMT
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-6ce"
expires: Thu, 29 Sep 2022 20:07:45 GMT
cache-control: max-age=300, public, s-maxage=60
access-control-allow-origin: *
x-accel-expires: @1664488766
server: CDN77-Turbo
x-77-nzt: AblMCQ3DJQD/IgAAAA
x-77-nzt-ray: OVANe1yhgoc
x-cache: HIT
x-age: 34
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   3216
Md5:    108f20ef801c4209bc9a08741c8d4f22
Sha1:   11bdbc76b34ba7e319e747b63d77265d3c2cb81b
Sha256: 8c3343b08fab22e1f66d21b1818237d6026a2c9bb962717188be43f94baf16ee
                                        
                                            GET /translates/en.json?v=40dc5d66667b97efcc02e6c0aff17d1954e58a21 HTTP/1.1 
Host: widget-v2.smartsuppcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.awesome-leaders.com/
Origin: http://www.awesome-leaders.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.76.9.14
HTTP/2 200 OK
content-type: application/json
                                        
date: Thu, 29 Sep 2022 21:59:00 GMT
last-modified: Thu, 29 Sep 2022 17:18:40 GMT
etag: W/"6335d370-fc9"
expires: Fri, 29 Sep 2023 20:02:47 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017767
server: CDN77-Turbo
x-77-nzt: AblMCQ2p/Hz/PRsAAA
x-77-nzt-ray: MhU4G54QRTA
x-cache: HIT
x-age: 6973
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /loader.js? HTTP/1.1 
Host: www.smartsuppchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.22
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 29 Sep 2022 21:59:00 GMT
last-modified: Tue, 22 Mar 2022 17:52:27 GMT
etag: W/"623a0cdb-4792"
expires: Mon, 23 May 2022 11:09:42 GMT
cache-control: max-age=300, public, s-maxage=60
x-accel-expires: @1664488800
server: CDN77-Turbo
x-77-nzt: AblMCRRxtqz/AAAAAA
x-77-nzt-ray: +H8xLIkkpes
x-cache: HIT
x-age: 0
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /widget/76c55fb536a8a3965c8cd8c28546bd2c38f6704f.json HTTP/1.1 
Host: bootstrap.smartsuppchat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: http://www.awesome-leaders.com
Connection: keep-alive
Referer: http://www.awesome-leaders.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.65.143.70
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Thu, 29 Sep 2022 21:59:00 GMT
x-version: 40abd74f2935f2a6d1a2667e53c08501d31c5c2e
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private, max-age=0, must-revalidate
x-hit: redis
etag: "445-p9WsxWT8WEmwiLpvVdMb7vNP8Ws"
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /static/js/6.0e1e87c0.chunk.js HTTP/1.1 
Host: widget-v2.smartsuppcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.14
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Thu, 29 Sep 2022 21:59:00 GMT
last-modified: Thu, 29 Sep 2022 17:19:37 GMT
etag: W/"6335d3a9-81d5c"
expires: Fri, 29 Sep 2023 20:02:46 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1696017766
server: CDN77-Turbo
x-77-nzt: AblMCQ1f3QT/PhsAAA
x-77-nzt-ray: l2EfOFRRVto
x-cache: HIT
x-age: 6974
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---