traslochiverona.org/
81.29.220.37200 OK 4.4 kB IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1132)
Hash fa3efae9f437352206d7acf2a9fcf565
4f6aedabf7a51a91686b2ce814a869b7123fa21a
620e02624aa25578f9caf89118287a4f7d5281d6f10b3d68a5b6dd3592a5f50b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:11 GMT
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13693
Expires: Thu, 26 Jan 2023 12:52:23 GMT
Date: Thu, 26 Jan 2023 09:04:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6455
Expires: Thu, 26 Jan 2023 10:51:45 GMT
Date: Thu, 26 Jan 2023 09:04:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 08:42:53 GMT
content-type: application/json
age: 1277
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3394
Expires: Thu, 26 Jan 2023 10:00:44 GMT
Date: Thu, 26 Jan 2023 09:04:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UbxIc3jwG09SUSKPtbmC5gJ43Mc+JsuW0lfZTNlpQMrqJEBiARDkVOgzF6l53wAWZE9I026lioI=
x-amz-request-id: JTSVYHFQXPBMJAXX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 08:20:01 GMT
age: 2649
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 09:04:10 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
traslochiverona.org/style/reset.css?12-0-8-29
81.29.220.37200 OK 449 B URL HTTP/1.1 traslochiverona.org/style/reset.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
Hash 33d57641ef02e5ebf311400b111b3f10
229bbbcef94749a37e3185e2e3b3755d39112f06
c38aee5436bbca93dfbe226ae88eac70bb62d90573e6415577f4e2d9de17dac1
GET /style/reset.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/style/style.css?12-0-8-29
81.29.220.37200 OK 2.9 kB URL HTTP/1.1 traslochiverona.org/style/style.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (12356), with no line terminators
Hash 2d7a5b49e6304689593d3360c4b92e22
a8e14a4711e36d9798d5520ad8cd4fb0e489f8da
4e53e87716d4c17cf5e6b8fc1f81f13a9b33aa17d8cb9419315a3c2f29f91716
GET /style/style.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/style/template.css?12-0-8-29
81.29.220.37200 OK 847 B URL HTTP/1.1 traslochiverona.org/style/template.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
Hash 7f98f330027f51b7946e1346603b4aac
84c382248f2ba6760383c029929faa08cdab27a3
d36e60cf0a6854254fd34d7ac410c09f21adc02129d5dc319ef6a6594ec339b5
GET /style/template.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/style/menu.css?12-0-8-29
81.29.220.37200 OK 2.2 kB URL HTTP/1.1 traslochiverona.org/style/menu.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (4610)
Hash 94ff777b6542f4ad598d9aad4ec0cd59
8669303ba0e60e9fb67f1dc6605e8f5221187ce9
85127520ec5f53073aa05bfee247081e80beaaf2c8550860d8a20971a4ff57cd
Analyzer Verdict Alert fortinet Malware
GET /style/menu.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/pcss/index.css?12-0-8-29-636459585652706499
81.29.220.37200 OK 2.6 kB URL HTTP/1.1 traslochiverona.org/pcss/index.css?12-0-8-29-636459585652706499
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
Hash 22464c2e7eab0b4591e24657f11bb96a
53f18d70b58439fe558534da8d8f181f8c7465ca
93a4df66ae52f22fb66a0a8ceb6116a0e081dd45113b0c2c89169623859d70e7
Analyzer Verdict Alert fortinet Malware
GET /pcss/index.css?12-0-8-29-636459585652706499 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:15 GMT
Content-Encoding: gzip
traslochiverona.org/res/x5engine.js?12-0-8-29
81.29.220.37200 OK 3.0 kB URL HTTP/1.1 traslochiverona.org/res/x5engine.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type HTML document, ASCII text, with very long lines (6070), with no line terminators
Hash a215903e88414cad66647380a4cde4b5
92f58175b6c5a92df578acfc4315a5694ce63dd2
96b6ed749101096319509cc1a040925c2e114da4cc85b351e81846e32a85208a
GET /res/x5engine.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:18 GMT
Content-Encoding: gzip
traslochiverona.org/files/cookiechoices.js
81.29.220.37200 OK 3.1 kB URL HTTP/1.1 traslochiverona.org/files/cookiechoices.js
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (2237)
Hash 97cc04a77d7efaa967d7e44a836592ed
bb472e13ab6b772bd4c62a6964700f2af4d737fe
5693e2af11aba2e6b988fddd4e370226352bce9b9a451d95a42823e5f750023f
Analyzer Verdict Alert fortinet Malware
GET /files/cookiechoices.js HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Content-Encoding: gzip
traslochiverona.org/res/jquery.js?12-0-8-29
81.29.220.37200 OK 34 kB URL HTTP/1.1 traslochiverona.org/res/jquery.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (32072)
Hash 237f846d64594c9010d93a2b54c2cb21
fc79afb2627228b0252ac043a4fb8ffcb7a19a54
b6efc2b56c60392509a261e142108b2cd2248df6473c31d483746b83ab87d814
Analyzer Verdict Alert fortinet Malware
GET /res/jquery.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Content-Encoding: gzip
traslochiverona.org/style/print.css?12-0-8-29
81.29.220.37200 OK 281 B URL HTTP/1.1 traslochiverona.org/style/print.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type assembler source, ASCII text
Hash cb08bef452f75390185d2aac426b8708
a5a6612830c8cfcab0d7fb0a0f7b545b139e2d3a
994d039cd93aa1e2950f3cff4c45eeb98dce1f358fcf2d41817409f9ec778d10
GET /style/print.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/images/traslochi-verona-mezzi.jpg
81.29.220.37200 OK 7.6 kB URL HTTP/1.1 traslochiverona.org/images/traslochi-verona-mezzi.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 210x210, components 3\012- data
Hash 7190c3da28f1c392e504eb5487e78e24
821f6aa8ced918dc148ee63132311c73cb15f62b
ec0e53f6c43e84a9233ed25f0fa0e994d77c1d116c3d1e9e27bd763dc0b176ba
GET /images/traslochi-verona-mezzi.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 7569
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/telefono-traslochi-verona.jpg
81.29.220.37200 OK 3.6 kB URL HTTP/1.1 traslochiverona.org/images/telefono-traslochi-verona.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 160x53, components 3\012- data
Hash d43478ea89ac2dd17457a1a9519ed300
946d0d5d7c321b329233fc9c418fda679cadcb9a
2866f8afe169f52f1bc44f878279cee4a20faed90c4f8cee0a99ac6c2cab8609
GET /images/telefono-traslochi-verona.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 3590
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/preventivo-vr.jpg
81.29.220.37200 OK 4.4 kB URL HTTP/1.1 traslochiverona.org/images/preventivo-vr.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 160x48, components 3\012- data
Hash 7cfcab514168ea0b6a28b5028412c256
41578cbb6693f429607c210f0ecc97994b183dcc
9a2174b2823d455cd98eb6e50cf902477c47d83082517be3debe0c97403f7332
GET /images/preventivo-vr.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 4359
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/preventivo-vr-1.jpg
81.29.220.37200 OK 3.1 kB URL HTTP/1.1 traslochiverona.org/images/preventivo-vr-1.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 160x48, components 3\012- data
Hash 965307d776820c4aa6a2dfd3577bcb7d
3f5910be1f5e048d07ebbbd67f59e571eb4a445c
bcd18498bb7695e69a74e9d7f294593eb5856229164c07c0ec8ff730eabadef0
GET /images/preventivo-vr-1.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 3080
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/traslochi-verona-montacarichi.jpg
81.29.220.37200 OK 13 kB URL HTTP/1.1 traslochiverona.org/images/traslochi-verona-montacarichi.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 210x210, components 3\012- data
Hash d786acf2be463c0fca2915991a31302b
be24ec6c6f8926ca00ece1517cef97addcf768e3
80e709d404f6c3ba1c41a2400a34ccaa1570d864220f9c7998fd7024106c922b
GET /images/traslochi-verona-montacarichi.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 12987
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:14 GMT
Accept-Ranges: bytes
traslochiverona.org/images/traslochi-verona-logo.jpg
81.29.220.37200 OK 12 kB URL HTTP/1.1 traslochiverona.org/images/traslochi-verona-logo.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 210x210, components 3\012- data
Hash 9204db63066c0caaf089155c43b07aaa
85b5aac21d4087e01c8e9a9cd74b6716709c36ea
92a45f43ba1424b78c7483145a4cb6d0e81b6d5f8fa1f8e3d5bb28c7e9791653
GET /images/traslochi-verona-logo.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 11542
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/style/bg.jpg
81.29.220.37200 OK 14 kB URL HTTP/1.1 traslochiverona.org/style/bg.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 952x1000, components 3\012- data
Hash 4c85e2fb07d95473404ed4a49ba949f8
7db923263b7cd79caf81ab7bba0798df6e79708b
a6458f4a02f1ed386eab9234a9f325b1a58fe333ef8a78f122aa19aea2eb7c16
GET /style/bg.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/template.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 13731
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Accept-Ranges: bytes
traslochiverona.org/images/traslochi-verona-logo1.jpg
81.29.220.37200 OK 13 kB URL HTTP/1.1 traslochiverona.org/images/traslochi-verona-logo1.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 210x210, components 3\012- data
Hash 12ff7f157b4f543c995b4c12abd6ab46
9a74c7decc6ae77d1269101e0f149b433328b36b
70efe0b9b9c3169b3d776b664179c1cb0e1fd4d3a8800782e02b07687cdc6ace
GET /images/traslochi-verona-logo1.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 13238
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/foto-attaccate-traslochi-verona.jpg
81.29.220.37200 OK 29 kB URL HTTP/1.1 traslochiverona.org/images/foto-attaccate-traslochi-verona.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 350x280, components 3\012- data
Hash 60dc72ae059b6a196be333d47a01cd11
8f1a8a16a6c37e9e86cd8be7a4539f35521aa216
a0f9ba1fcdb2f624e605948bc339e94cd89451924b7e84c41eeeac9b02962739
GET /images/foto-attaccate-traslochi-verona.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/jpeg
Content-Length: 29362
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/style/top.png
81.29.220.37200 OK 31 kB URL HTTP/1.1 traslochiverona.org/style/top.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 899 x 200, 8-bit/color RGBA, interlaced\012- data
Hash 72c9a000a31955751fa66df53d61f26b
d9d29438cd7f85b590b7cfa243952ee8508f18fb
32a00dd581b1cc93b32aa195d5d1ad14f4ebd7338771e034904cd6ee42e7ced4
GET /style/top.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/template.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/png
Content-Length: 31219
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:20 GMT
Accept-Ranges: bytes
traslochiverona.org/res/imsearch.png
81.29.220.37200 OK 3.6 kB URL HTTP/1.1 traslochiverona.org/res/imsearch.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash e0920e85853ae31f7cbaf21dd016cf2a
1b9a6fecee7ee88dfde140e0dbe8093493127e12
d5f8f47c5da94a4b62da459524a31e62a81962ead9dc071485c1acdc01e7a9f2
GET /res/imsearch.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/png
Content-Length: 3559
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Accept-Ranges: bytes
traslochiverona.org/menu/hor_main_c.png
81.29.220.37200 OK 226 B URL HTTP/1.1 traslochiverona.org/menu/hor_main_c.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 140 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 4bfb460cbc2581320a1f0aaa58019154
39494760e970c15cd0481f80d12b84213418f4b1
7bf6daa7bf228e438a9d8ac44ffed57e47ac0e988d4665551f2978119f132852
GET /menu/hor_main_c.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/menu.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/png
Content-Length: 226
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:14 GMT
Accept-Ranges: bytes
traslochiverona.org/menu/hor_main.png
81.29.220.37200 OK 214 B URL HTTP/1.1 traslochiverona.org/menu/hor_main.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 140 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 67d53a398a4cd43865d8c09156a58191
2d8afe818a9da1ac9dbb83ff93096ce9bc391bf7
78fd304bca651d2e1571c6783b54613c97cb5607043dda9162dcdce8e7c9841a
GET /menu/hor_main.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/menu.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/png
Content-Length: 214
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:14 GMT
Accept-Ranges: bytes
traslochiverona.org/style/bottom.png
81.29.220.37200 OK 1.1 kB URL HTTP/1.1 traslochiverona.org/style/bottom.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 899 x 25, 8-bit/color RGBA, interlaced\012- data
Hash d8f72dd10f6efd64ceac8c28fad1f006
a57a0f5d0d1d4972340a6777af539b5e3abf2eef
366025e43c591f5b80e740c4f4572cbed2919b0db6589913fbf4ca3251bd8494
GET /style/bottom.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/template.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: image/png
Content-Length: 1121
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Accept-Ranges: bytes
traslochiverona.org/res/swfobject.js?12-0-8-29
81.29.220.37200 OK 4.9 kB URL HTTP/1.1 traslochiverona.org/res/swfobject.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (11520)
Hash 36228c51eee14e48635bfa4262b0826d
1904bc98d7b3cfcf82f13c1553526b6834e2ec17
354bc75c51040eaab42b137f2068087811712247dccb37d57a5bc446e77282b9
Analyzer Verdict Alert fortinet Malware
GET /res/swfobject.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Content-Encoding: gzip
traslochiverona.org/res/l10n.js?12-0-8-29
81.29.220.37200 OK 9.9 kB URL HTTP/1.1 traslochiverona.org/res/l10n.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type Unicode text, UTF-8 text, with very long lines (3127)
Hash bd3f4f81bb198b4702807d6b2642b18e
3fbbf139340517488ab01586082cccd16b0c659c
37cbac10a1d20d55a59d8fd178a8bc55b2fe34957473909bca29aaf12caacca9
Analyzer Verdict Alert fortinet Malware
GET /res/l10n.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/res/x5settings.js?12-0-8-29
81.29.220.37200 OK 2.4 kB URL HTTP/1.1 traslochiverona.org/res/x5settings.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (2237)
Hash 30548fb297ded69a8d9b01b8f6a65e95
4b3b6b44465e74597416830e54902f8acb88c5bc
ec70f7af75b35264316f42260734b196d492aac78b96ffdea64005093278e661
Analyzer Verdict Alert fortinet Malware
GET /res/x5settings.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:18 GMT
Content-Encoding: gzip
traslochiverona.org/res/x5cartengine.js?12-0-8-29
81.29.220.37200 OK 15 kB URL HTTP/1.1 traslochiverona.org/res/x5cartengine.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type Unicode text, UTF-8 text, with very long lines (32775)
Hash 3ec50db0f38e313160e03ad5b68ecd3d
8f92decf445a08c0f13f1571fdcbb187b3f8832c
25f40b69a5b98cc90f3617b18d8b03e44c5cdf2055ae99bcc935482d4026bd7c
Analyzer Verdict Alert fortinet Malware
GET /res/x5cartengine.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:17 GMT
Content-Encoding: gzip
traslochiverona.org/res/x5engine.deferrable.js?12-0-8-29
81.29.220.37200 OK 74 kB URL HTTP/1.1 traslochiverona.org/res/x5engine.deferrable.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (32769)
Hash aa38dd2da8260b62a0c0324208c15b19
01202ab9129e6142c71404e6cdbaa929ab211948
cd39bcf0b4c368934cda9aa0edc74a8dea1feccd918fb414bbf463acfba23fa1
Analyzer Verdict Alert fortinet Malware
GET /res/x5engine.deferrable.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:18 GMT
Content-Encoding: gzip
www.google-analytics.com/ga.js
142.250.74.14200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Thu, 26 Jan 2023 07:34:42 GMT
Expires: Thu, 26 Jan 2023 09:34:42 GMT
Cache-Control: public, max-age=7200
Age: 5369
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
traslochiverona.org/favicon.ico
81.29.220.37404 Not Found 238 B URL HTTP/1.1 traslochiverona.org/favicon.ico
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /favicon.ico HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 26 Jan 2023 09:04:10 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1830661433&utmhn=traslochiverona.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=.%3A%20TRASLOCHI%20VERONA%20%3A.&utmhid=309023485&utmr=-&utmp=%2F&utmht=1674723849125&utmac=UA-29374795-5&utmcc=__utma%3D248890690.843369236.1674723849.1674723849.1674723849.1%3B%2B__utmz%3D248890690.1674723849.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=89345571&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.14200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1830661433&utmhn=traslochiverona.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=.%3A%20TRASLOCHI%20VERONA%20%3A.&utmhid=309023485&utmr=-&utmp=%2F&utmht=1674723849125&utmac=UA-29374795-5&utmcc=__utma%3D248890690.843369236.1674723849.1674723849.1674723849.1%3B%2B__utmz%3D248890690.1674723849.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=89345571&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1830661433&utmhn=traslochiverona.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=.%3A%20TRASLOCHI%20VERONA%20%3A.&utmhid=309023485&utmr=-&utmp=%2F&utmht=1674723849125&utmac=UA-29374795-5&utmcc=__utma%3D248890690.843369236.1674723849.1674723849.1674723849.1%3B%2B__utmz%3D248890690.1674723849.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=89345571&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Thu, 26 Jan 2023 09:04:11 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 08:49:01 GMT
age: 910
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
traslochiverona.org/res/imLoad.gif
81.29.220.37200 OK 3.2 kB URL HTTP/1.1 traslochiverona.org/res/imLoad.gif
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type GIF image data, version 89a, 32 x 32\012- data
Hash a51c5608d01acf32df728f299767f82b
2eb3f9f430fb2a6267e0d252129ef6473d074f37
aebc793d0064383ee6b1625bf3bb32532ec30a5c12bf9117066107d412119123
GET /res/imLoad.gif HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.843369236.1674723849.1674723849.1674723849.1; __utmb=248890690.1.10.1674723849; __utmc=248890690; __utmz=248890690.1674723849.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:10 GMT
Content-Type: image/gif
Content-Length: 3208
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Accept-Ranges: bytes
traslochiverona.org/gallery/barra-home-traslochi-verona.jpg
81.29.220.37200 OK 35 kB URL HTTP/1.1 traslochiverona.org/gallery/barra-home-traslochi-verona.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 681x200, components 3\012- data
Hash 1b197709d6099f8341482cc80467a10a
837e465c406edb7e5e9946bb3c5850f16cac6101
acc6e985f53a64a0c603d43f9818932a9cab9ab43f346c5b6c3a680b5e2e54fe
GET /gallery/barra-home-traslochi-verona.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.843369236.1674723849.1674723849.1674723849.1; __utmb=248890690.1.10.1674723849; __utmc=248890690; __utmz=248890690.1674723849.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:10 GMT
Content-Type: image/jpeg
Content-Length: 35213
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Accept-Ranges: bytes
traslochiverona.org/menu/hor_main_h.png
81.29.220.37200 OK 212 B URL HTTP/1.1 traslochiverona.org/menu/hor_main_h.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 140 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash a46b92722a1b5faf1ffbcb2bd044d1ad
e04dea194c2dc7c4d7731ce6320e7a2f1daec238
24356964102835aee960039c6f52288aa729556b426ecb6422c54c1fa3745ac2
GET /menu/hor_main_h.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.843369236.1674723849.1674723849.1674723849.1; __utmb=248890690.1.10.1674723849; __utmc=248890690; __utmz=248890690.1674723849.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:10 GMT
Content-Type: image/png
Content-Length: 212
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:14 GMT
Accept-Ranges: bytes
traslochiverona.org/res/imClose.png
81.29.220.37200 OK 3.9 kB URL HTTP/1.1 traslochiverona.org/res/imClose.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 7cd638c3f10f63d9c8bf7df17de04dba
ad8865d4f4767eb6d850efb1847f3d9bd84d8684
d0076ba4f551fb5e1d2b56fe2541e90fa1d0d176c8c297ae2d670749231f1da8
GET /res/imClose.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.843369236.1674723849.1674723849.1674723849.1; __utmb=248890690.1.10.1674723849; __utmc=248890690; __utmz=248890690.1674723849.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:10 GMT
Content-Type: image/png
Content-Length: 3858
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Accept-Ranges: bytes
traslochiverona.org/gallery/barra-home-traslochi-verona1.jpg
81.29.220.37200 OK 32 kB URL HTTP/1.1 traslochiverona.org/gallery/barra-home-traslochi-verona1.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 681x200, components 3\012- data
Hash 121820d6ef303b9855e80aea80d3ae03
6083b09b74fa0e86047f4712a0777da89d3552bd
8564f505d95cd73e08465101a486085fa93be05874155a572bf457027646cd76
GET /gallery/barra-home-traslochi-verona1.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.843369236.1674723849.1674723849.1674723849.1; __utmb=248890690.1.10.1674723849; __utmc=248890690; __utmz=248890690.1674723849.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:10 GMT
Content-Type: image/jpeg
Content-Length: 32336
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Accept-Ranges: bytes
traslochiverona.org/gallery/barra-home-traslochi-verona2.jpg
81.29.220.37200 OK 38 kB URL HTTP/1.1 traslochiverona.org/gallery/barra-home-traslochi-verona2.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 681x200, components 3\012- data
Hash 32342c30db0be834d7ec40d37a52f703
07140bf092f7fd83ad1a85bb2b4064f35d0f71f5
ebaf4821af28737c22953656e57d43e0ff4fd63882a1055f525178ed929294bd
GET /gallery/barra-home-traslochi-verona2.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.843369236.1674723849.1674723849.1674723849.1; __utmb=248890690.1.10.1674723849; __utmc=248890690; __utmz=248890690.1674723849.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:10 GMT
Content-Type: image/jpeg
Content-Length: 37516
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Accept-Ranges: bytes
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7403
Expires: Thu, 26 Jan 2023 11:07:34 GMT
Date: Thu, 26 Jan 2023 09:04:11 GMT
Connection: keep-alive
traslochiverona.org/gallery/barra-home-traslochi-verona2-.jpg
81.29.220.37200 OK 38 kB URL HTTP/1.1 traslochiverona.org/gallery/barra-home-traslochi-verona2-.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 681x200, components 3\012- data
Hash bedd0e464a2a5d05cadf9d1ecf3d27e7
aeec8fa864d282a802b7392f3dada63bf18ca5e8
ec4b33509a6f92608708cda0caca40953b2707023f911cbd8d31408f7016d44d
GET /gallery/barra-home-traslochi-verona2-.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.843369236.1674723849.1674723849.1674723849.1; __utmb=248890690.1.10.1674723849; __utmc=248890690; __utmz=248890690.1674723849.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 09:04:10 GMT
Content-Type: image/jpeg
Content-Length: 37743
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Accept-Ranges: bytes
push.services.mozilla.com/
35.166.158.207101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.166.158.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6DaAXMXQ3vwWPYbjCcvZcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 551er5eof5bKATmI24cNaiqiauo=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3036
Expires: Thu, 26 Jan 2023 09:54:49 GMT
Date: Thu, 26 Jan 2023 09:04:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3036
Expires: Thu, 26 Jan 2023 09:54:49 GMT
Date: Thu, 26 Jan 2023 09:04:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3036
Expires: Thu, 26 Jan 2023 09:54:49 GMT
Date: Thu, 26 Jan 2023 09:04:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3036
Expires: Thu, 26 Jan 2023 09:54:49 GMT
Date: Thu, 26 Jan 2023 09:04:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:49:40 GMT
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
age: 40473
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mjK4GJ3UCEuHk4XqmXdZCWHTVvJeX8Z2HFaem2GYzqfqlPSd_h6DfA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 05:14:39 GMT
age: 13774
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe22ec7be-6a69-4dd9-9340-9be6624c7434.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe22ec7be-6a69-4dd9-9340-9be6624c7434.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ed67ca9bce75476cc13c83abe463bc7
242e26653f691852678a2a32fd17d58fb4747126
a54b909a228e7ac3c6a98e553445905cac7664a2a9208af9abba149f11881d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe22ec7be-6a69-4dd9-9340-9be6624c7434.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4513
x-amzn-requestid: 4caaaf23-4e35-4a1e-983a-5c556d009ecc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOi2OG15IAMFxKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf4b5a-643a67517111200131d532f6;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 03:07:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jIzVB4TdGNZ2zX-NL2DuwBNVA1nLpbd_KFddr_z0B2vQPSt6mNi8Fg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 03:55:11 GMT
age: 18542
etag: "242e26653f691852678a2a32fd17d58fb4747126"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c331b0423afe4c6888533296b5f275bc
766aba1f8bb596a068f4e611161fa54616f506ed
0551882e8ba5962ca2c3a8634574e75f11321d46f9c901430614a9c73eaeae12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05a55fc3-efb4-4124-a48d-b57fc1e9bea4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7426
x-amzn-requestid: 1c0f08ae-9b11-4c41-a6e9-819343332f34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF-fElWIAMFg8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf838f-6cf92e9d28ec0c9727e7419a;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A9cyJReV84QegjGfuOcBlZ-T6uefiGXXKnIBXIcn3a1x0kRYQ6XI3A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:34:59 GMT
age: 5354
etag: "766aba1f8bb596a068f4e611161fa54616f506ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b242645f0cc22e3b12c132e6d03722ac
dec70f83182de58e03bfcb95fc240b7c33f20674
59a2d8c972d27598dfe38637197f90053186c4f68b80a5a90283cb11ddaf8a31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6609
x-amzn-requestid: 129067f4-c79b-493d-8863-2eb6c1565ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZABF4IIAMFsig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d533-4908ab6e5c751213084de3c6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CaxCPk4-9yhypamZa96f4IyujB3AMeGmpcYP1UmJtjp275dwFjVOcw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:21:33 GMT
age: 6160
etag: "dec70f83182de58e03bfcb95fc240b7c33f20674"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13cd008fb3e2739ec7caadadbd427655
c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1
a300a4fde1863c8b806d0557d9f0adaed19e1c612989d7e3f79a7bb45e6e74dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8822
x-amzn-requestid: e16ae781-25f3-4b7d-b62b-85b35d6571c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYRwF2KIAMFjDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0d7-377f24bd18dea32564b148bd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3Q-kz6GkBHp82E__crWSeqbfxme8c9y1BAAq3TW8NlwJy4eSy7gy7Q==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:49:07 GMT
age: 40506
etag: "c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2