Report - www.virgilio.it.virgilio-conferma.com/ripristino/

Report Overview

Submitted URL
www.virgilio.it.virgilio-conferma.com/ripristino/
IP
23.94.217.246
ASN
#36352 AS-COLOCROSSING
Submitted
2023-01-30 22:50:08
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
italiaonline01.wt-eu02.net	198846	2017-02-01T06:28:27Z	2023-02-16T13:45:56Z	873 B	873 B	185.54.150.20
hits-i.iubenda.com	12418	2017-01-30T00:36:13Z	2023-03-13T06:56:25Z	462 B	905 B	194.242.11.186
i.plug.it	191428	2012-08-07T20:03:52Z	2023-03-06T12:48:23Z	424 B	492 B	54.230.111.46
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	413 B	630 B	142.250.74.106
ocsp.usertrust.com	899	2012-05-21T17:43:18Z	2023-03-13T08:38:38Z	342 B	2.8 kB	104.18.32.68
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-13T08:37:09Z	393 B	32 kB	142.250.74.74
www.iubenda.com	13106	2012-10-02T05:43:10Z	2023-03-13T07:35:00Z	389 B	1.1 kB	194.242.11.186
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
cdn.iubenda.com	11074	2012-10-02T05:43:09Z	2023-03-13T07:35:00Z	1.6 kB	4.2 kB	138.199.37.229
evnt.iol.it	208994	2016-06-15T12:35:20Z	2023-03-07T14:13:43Z	538 B	536 B	213.209.62.8
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	142.250.74.131
i1.plug.it	unknown	2015-10-16T10:09:10Z	2023-02-16T17:17:14Z	1.3 kB	2.9 kB	54.230.111.46
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	2.4 kB	6.7 kB	104.18.32.68
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	44.239.211.14
www.iolam.it	203511	2018-03-07T08:54:25Z	2023-03-07T14:13:43Z	758 B	137 kB	213.209.30.161
italiaonline.profiles.tagger.opecloud.com	282743	2021-05-19T14:02:24Z	2023-03-07T14:13:43Z	1.2 kB	1.1 kB	3.126.65.87
secure-it.imrworldwide.com	43412	2012-05-24T15:42:13Z	2023-03-10T16:50:31Z	4.0 kB	3.9 kB	52.31.174.194
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
cdn-gl.imrworldwide.com	2458	2015-12-17T16:39:41Z	2023-03-13T08:27:16Z	1.3 kB	142 kB	54.230.111.95
www.virgilio.it.virgilio-conferma.com	unknown	2023-01-27T11:00:00Z	2023-01-29T13:03:18Z	478 B	428 B	23.94.217.246
login.virgilio.it	unknown	2017-09-28T18:58:34Z	2022-12-07T00:44:59Z	888 B	26 kB	213.209.36.2
c.amazon-adsystem.com	300	2012-05-22T23:02:12Z	2023-03-13T05:21:15Z	373 B	48 kB	54.230.111.210
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	481 B	17 kB	142.250.74.35
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	54.230.245.39
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.33.119.27
sd4qeftnf30glinakhjxlmmbyfx021675119013.nuid.imrworldwide.com	unknown			425 B	488 B	54.230.111.55
i5.plug.it	unknown	2022-06-07T09:34:03Z	2023-02-16T13:45:53Z	764 B	831 B	54.230.111.46
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
i2.plug.it	unknown	2015-10-16T10:09:10Z	2023-02-14T02:46:43Z	386 B	2.0 kB	54.230.111.46
i4.plug.it	unknown	2022-06-26T10:18:26Z	2023-02-05T19:15:50Z	1.2 kB	5.4 kB	54.230.111.46
securepubads.g.doubleclick.net	190	2013-05-31T06:19:39Z	2023-03-13T05:09:45Z	381 B	28 kB	142.250.74.130
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	58 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-30	medium	www.virgilio.it.virgilio-conferma.com/ripristino/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (35)

	URL	Size	First Seen	Last Seen
	i4.plug.it/iplug/js/lib/iol/analytics/engine/IOL.Analytics.Tracking.min.js	46 kB	2023-03-13	2023-11-21
Pretty URL i4.plug.it/iplug/js/lib/iol/analytics/engine/IOL.Analytics.Tracking.min.js IP 54.230.111.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2023-11-21 03:43:10 Times Seen7 Hash 10fd38d35c7d0ffd25b63da5cb552fdb 999634b63d59cb76162ddfe39d03f3bf8bc6d2dd 17e49df09dd14c40d50c5e4693c448e99cfee8ee79aa5a9c5bd2be5be3105562 Loading...

	login.virgilio.it/?ref=hpv-hd	188 B	2023-03-13	2023-03-13
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash ebfa1581c68008bf6e3d9475c9adfbd1 f4ab2523eb84f2f94e0e7962ad24db886842b4b8 4bf6239b6df83a11acbf58d76c99b787af4b0f99f23669bbae2a0cffc8547476 Loading...

	cdn.iubenda.com/cs/tcf/versions/tcf-v2-0.20.6.js	111 kB	2023-03-12	2023-03-14
Pretty URL cdn.iubenda.com/cs/tcf/versions/tcf-v2-0.20.6.js IP 138.199.37.229 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:56:57 Last Seen2023-03-14 00:08:08 Times Seen1 Hash ae53e9bd065951bf9cafede37f3a0c76 219eb29fd7eb1ad53e9069a81b44c09f3d249ddc 30cd6a74c5d89413e56c3651a6f7cc35b8ee688ce04eef8f08af246d3b279f60 Loading...

	i.plug.it/iplug/js/lib/iol/analytics/ads/banners/_adv.js?_t=1675119012736	25 B	2023-03-13	2024-02-29
Pretty URL i.plug.it/iplug/js/lib/iol/analytics/ads/banners/_adv.js?_t=1675119012736 IP 54.230.111.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2024-02-29 00:20:46 Times Seen11 Hash 71cf8419f164dc0a17189bd5ca53bb40 59e4285963c836eee0fa20b8d2b08cf45c846af9 0718476f9aeec1cbd746c569d6768a28c021163de52ceb5c7d89005484f16b8e Loading...

	securepubads.g.doubleclick.net/gpt/pubads_impl_2023012501.js	395 kB	2023-03-13	2023-03-13
Pretty URL securepubads.g.doubleclick.net/gpt/pubads_impl_2023012501.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:43:56 Last Seen2023-03-13 12:48:44 Times Seen1 Hash 28217fb8c11b6eac93823d9548b662fe 906f6d7d1a5827fc097cabbf5237560c753ba0cd 6f368aa8ed1ff20a7f45f67285eb393b6b164a71826955217eaac1aa54c31980 Loading...

	login.virgilio.it/?ref=hpv-hd	1.2 kB	2023-03-13	2023-03-13
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash 5db381628f9762af4790ed2038591433 96ccbf8a3c62a42171e47a506531a7592f9de962 49768191ca235dd82b163cec4068f71130abb72f5e570d893ddd735a3fc2b8dd Loading...

	www.iolam.it/js/iam2.0.js?ns=virgilio/web/webmail/login/1.1	154 kB	2023-03-13	2023-03-13
Pretty URL www.iolam.it/js/iam2.0.js?ns=virgilio/web/webmail/login/1.1 IP 213.209.30.161 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash 94b5989e74f1bf0d4bb2ab09ba4a0b7f febcbc015b0ab278104efa1637974842d6e90b3f 7b2a9eba394090bbebe7c0c43b94f5ec409468d400f5bc88259684bacfb5624e Loading...

	login.virgilio.it/?ref=hpv-hd	5.1 kB	2023-03-13	2023-03-13
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash 94e76671ca7faa5ba63313dd8daaed8b 803c5eaf810361d6baffe28eff54414f01655374 7058b15c72d093c048b1c35c17939ad257441bc39a3aa6c6e36b2c02479f685f Loading...

	login.virgilio.it/?ref=hpv-hd	237 B	2023-03-13	2023-03-13
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash 533b97a27b1b969f3c99d0c935117027 2939e8bddbf925fdcc3c804973df1c4cf183fae1 f5879705e4f41dcdaf8c8ad5f7c91ce0e30ad951e95e967018c19bf6cd3b57d6 Loading...

	cdn-gl.imrworldwide.com/conf/PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8.js#name=nlsnInstance&ns=NOLBUNDLE	28 kB	2023-03-13	2023-03-13
Pretty URL cdn-gl.imrworldwide.com/conf/PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8.js#name=nlsnInstance&ns=NOLBUNDLE IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash 7c467d1043205c168bdf6fe822c08ffe 05f4f0fb666a9e30b37cf356478f17198a0b7733 2fc634d17bde6f17bfd9347d1088897ea8e6a72623599af3fe5da667cc768f7b Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.0/jquery.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.0/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:07 Last Seen2024-04-25 05:38:24 Times Seen56391 Hash 12108007906290015100837a6a61e9f4 1d6ae46f2ffa213dede37a521b011ec1cd8d1ad3 c4dccdd9ae25b64078e0c73f273de94f8894d5c99e4741645ece29aeefc9c5a4 Loading...

	i5.plug.it/cmp/iub_conf_virgilio.js	8.2 kB	2023-03-13	2023-03-13
Pretty URL i5.plug.it/cmp/iub_conf_virgilio.js IP 54.230.111.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash dbc50be91aca7d33931b8f27d4cd8705 aa7aa42b6c2b1225351a0cd8f293b1c8c3657897 3ab76b9dc08c53dc43119b12e7998bbd8b9de75b68e793a0cf920e3bd4146212 Loading...

	i2.plug.it/mail/login/2018/js/placeholders.min.js	3.9 kB	2023-03-10	2023-11-03
Pretty URL i2.plug.it/mail/login/2018/js/placeholders.min.js IP 54.230.111.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:13:05 Last Seen2023-11-03 12:14:51 Times Seen4 Hash 453318a9d34fdaf67571b2ec604b2c5d fcd69025e63c558e9b0728191fb10396e33e1de3 bb631cb41d70ab6f8a07ab80b053676bca8589e7e1d835827f30e1bffbed91c5 Loading...

	login.virgilio.it/?ref=hpv-hd	60 B	2023-03-13	2024-02-29
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2024-02-29 00:20:46 Times Seen11 Hash e22613850cdc14ad7616891e3fa29b73 951ea49e4dc99e56fad9d25789eabf022affa83b de5b93b1a11e1ce1d4f90a6a6a95b40de6a5ff98802109fc69a57e838f30d9e0 Loading...

	login.virgilio.it/?ref=hpv-hd	463 B	2023-03-13	2024-02-29
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2024-02-29 00:20:46 Times Seen6 Hash 30b3a494c195705f263104e4573db80a 212246456fe1d0e0c5d8a77865fba811ed030600 8c7639bc05cfddc376dce0697e6146e0b9a91e28880f07439a07ebbf144799a6 Loading...

	i5.plug.it/cmp/qciol.min.js	7.3 kB	2023-03-13	2023-11-21
Pretty URL i5.plug.it/cmp/qciol.min.js IP 54.230.111.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2023-11-21 03:43:51 Times Seen9 Hash 3f2748f140d39883ccabdb93907fd920 285ad0502c16cae2c982e5a1c0c8f4bd73dab7bf f6a50485e3fb3724731b1e5a2607dddb80408839e94f3f156bb2d4e7f140f887 Loading...

	cdn.iubenda.com/cookie_solution/iubenda_cs/1.44.8/core-it.js	372 kB	2023-03-12	2023-03-26
Pretty URL cdn.iubenda.com/cookie_solution/iubenda_cs/1.44.8/core-it.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:55:04 Last Seen2023-03-26 00:09:16 Times Seen3 Hash 61eb74aad430547d2b2a2a3c1ca287e5 5a6883e7f767c5ac2251f33bdd9d679090f4c534 3517167dfcd2ee974abf5c88ae06eb1c22df9f043013d518d0cf686e850ff384 Loading...

	login.virgilio.it/?ref=hpv-hd	1.0 kB	2023-03-13	2023-03-13
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash 6756770b419b4ed0f54937e458861040 f95e53a7d8607d097a225ac3d218cf2f05603208 d73a2776ee50ea358adfd565d7e6beda7e4aa58e46759a0ae8201490939fa512 Loading...

	login.virgilio.it/?ref=hpv-hd	51 B	2023-03-13	2023-11-21
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2023-11-21 03:43:27 Times Seen7 Hash d5cb7303af37fe303badb0c2cf25ccce 52f45e437b12ff7620841adcbbe26ef1a13539c1 b000c76bae95a368a8044ddbfa674d5ef80f053ee844ffa0d07a398aec46312d Loading...

	login.virgilio.it/?ref=hpv-hd	2.0 kB	2023-03-13	2023-03-13
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 12:46:39 Times Seen1 Hash e9ec089a00672e59862f208cc3ed9568 0be4a58df7844ef58eb39bf26e787c140bff6bbf c7da9168de6347dba425287d7a9328c7698d0c7abddb1e987854b6941f5194d6 Loading...

	cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js	200 kB	2023-03-07	2023-03-14
Pretty URL cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js IP 54.230.111.95 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:38 Last Seen2023-03-14 19:09:12 Times Seen1 Hash 81a9e2a298d0019660cb2966f0c24748 24eda25c6f88a3923859aad9618ac26f8ba3633e 2d0ade31483bf44bbdbc9822066eaebf674738b370092fcfc8295e7ae3195d98 Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	82 kB	2023-03-13	2023-03-13
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:44:28 Last Seen2023-03-13 12:46:48 Times Seen1 Hash 34aed964a92b5c38218866ccadb72878 8b9a066fa1188c4dfdf49b52d9ca328c6116377b 12b8e3f9ea8c457b9a773943123534c77138836e61eca9964b2092b349f8864c Loading...

	i4.plug.it/iplug/js/lib/iol/evnt/iol_evnt_v3.min.js	16 kB	2023-03-13	2023-11-21
Pretty URL i4.plug.it/iplug/js/lib/iol/evnt/iol_evnt_v3.min.js IP 54.230.111.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2023-11-21 03:43:51 Times Seen5 Hash d806a6c57bbb18b4e336d660b4f156b4 72af9d3cc8251ee539ed1cc0f0406c1c6cf85284 a5044ffa79619b1f39b732970a75bc840a27088faefdd9a7298b04529d3afce4 Loading...

	login.virgilio.it/?ref=hpv-hd	5.2 kB	2023-03-13	2023-11-21
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2023-11-21 03:43:27 Times Seen7 Hash 959abb79742aa4201ab1bef56c940c04 db9c59cea2cf86b8241be0a75e157abc6999ef0a e302574de27422eb8c0076627db3934cc565675d00d8182151fc48af31ed9e9b Loading...

	cdn.iubenda.com/cs/iubenda_cs.js	587 B	2023-03-13	2023-03-13
Pretty URL cdn.iubenda.com/cs/iubenda_cs.js IP 138.199.37.229 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:26:52 Last Seen2023-03-13 15:39:35 Times Seen1 Hash 4970d553c28b44e184a3da7945ecd70e ce91353d67d2e179a18ea1a6735f2a58fde192cf 5c91c021cd44c50acfc0d12cf7dfc82293eb2ab963d20999754801a051f130a5 Loading...

	login.virgilio.it/?ref=hpv-hd	6.1 kB	2023-03-13	2023-03-13
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 12:46:39 Times Seen1 Hash 45359d223ab107cc3cb50ffe91beeb25 56cc4f2783404d62a4cb2a2ac410d50c709bc550 76bedd0196d43e22368f696298ff73ba10b1bafa6726d9bd734617944a37fe14 Loading...

	www.iubenda.com/cookie-solution/confs/js/89638261.js	124 B	2023-03-13	2023-03-13
Pretty URL www.iubenda.com/cookie-solution/confs/js/89638261.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:39 Last Seen2023-03-13 13:30:10 Times Seen1 Hash 20169ed127f01b21cc6b30f2a88b6358 84582d546946a17ba52f334e8a6deea825a49f42 e18d5db26f25c8fbdb6a6ee9f9a35baac4b755113f851a19f775a720acdf594f Loading...

	cdn-gl.imrworldwide.com/novms/html/ls.html	12 kB	2023-03-07	2023-12-25
Pretty URL cdn-gl.imrworldwide.com/novms/html/ls.html IP 54.230.111.95 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:38 Last Seen2023-12-25 10:50:40 Times Seen90 Hash 91e5d0a4583619dcadc7acb2761405a6 852eaa712784d917d51eafdc90dfb3ff57387a7b 975aca0cd6f13be91b3e76af8c2e764374ab18b631d31530ebfb468e7f474161 Loading...

	login.virgilio.it/?ref=hpv-hd	169 B	2023-03-13	2023-03-13
Pretty URL login.virgilio.it/?ref=hpv-hd IP 213.209.36.2 ASN #8660 Italiaonline S.p.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:27:48 Last Seen2023-03-13 20:31:22 Times Seen1 Hash 4e61464d5776d38c67f70ecd7ce41827 09573a88455bd895f1b709ce41079f22bfe7b954 b5a6a2d23feb9bb7ef5fa51709fc8fb60ec2003af2cc514638432bf7e4eaa298 Loading...

	i4.plug.it/iplug/js/lib/iol/analytics/data/login-virgilio-it/tracking_login-virgilio-it.min.js	5.1 kB	2023-03-13	2023-03-13
Pretty URL i4.plug.it/iplug/js/lib/iol/analytics/data/login-virgilio-it/tracking_login-virgilio-it.min.js IP 54.230.111.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:46:40 Last Seen2023-03-13 13:30:10 Times Seen1 Hash d80ab8210295365e68a6440c1ddb6848 e7e05922cf0f9aaab681fb75d46a57b90a041462 89fd99e8e4dca4d599c510fc9ae70ee86e1387c318a9e4bc3d6de2be7286d797 Loading...

	cdn.iubenda.com/cs/tcf/stub-v2.js	2.2 kB	2023-03-07	2023-12-29
Pretty URL cdn.iubenda.com/cs/tcf/stub-v2.js IP 138.199.37.229 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:00:39 Last Seen2023-12-29 10:34:37 Times Seen219 Hash ad8567520346b1a906d3a7de1a624e71 d3cc05a1fcdfe8c06d13022b3543f61aa8297b38 ab0bd19ed5ad90fb72819af221441e8a88091304b4d41b247b0dced128798935 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ae3ab6259b502a9de58e6fd2b81914d9	56 B	2023-03-13	2023-11-21
Pretty Observations First Seen2023-03-13 03:27:48 Last Seen2023-11-21 03:43:10 Times Seen3 Hash ae3ab6259b502a9de58e6fd2b81914d9 aa7281a14b0517a90d1f8d7a44c7c70dcbaba993 676004089a2295cc88da3cb6509d38c174e9d190996b04209565c50236aa46b0 Loading...

	#2 Eval - bc21adcf9a352e3ff2d58f9a6dacdde0	66 B	2023-03-09	2023-03-13
Pretty Observations First Seen2023-03-09 15:01:47 Last Seen2023-03-13 13:30:10 Times Seen1 Hash bc21adcf9a352e3ff2d58f9a6dacdde0 82cd7967360c135c2b69404699d211d99da4c11c bf315983ee2d65ffc8b5030e5d37576a4f7f5279430baee09f7ce308f0410f30 Loading...

		Size	First Seen	Last Seen
	#1 Write - dd429056a44dc545ed73cd3f83434fe3	138 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 12:46:40 Last Seen2023-03-13 12:46:40 Times Seen1 Hash dd429056a44dc545ed73cd3f83434fe3 30699d897739772e71e93eb8a5d311468a075c9d cfc324b232ea7bdf9fcc97321cd4c15b0cd3001d84b7dec13ce2ee4787b4d15a Loading...

	#2 Write - 536cf551a47ec98ad869da0139ef6973	511 B	2023-03-13	2024-02-29
Pretty Observations First Seen2023-03-13 03:27:48 Last Seen2024-02-29 00:20:46 Times Seen6 Hash 536cf551a47ec98ad869da0139ef6973 754e3c0784748717443e0511daa56ff609b79508 a3fbf85bb0234d1d55f46ac568d18ecfef3711ccd4e045e6e9de70d6778d915a Loading...

HTTP Transactions (71)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
64361ab63b337b952a1619f2c8d67713
cf5117a632401043bc83908bad6179dd143ca966
8aa5642139f07c53bdc947c466fc2ba7b967390bc60d2eda577e57f4da0b3840

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AA5642139F07C53BDC947C466FC2BA7B967390BC60D2EDA577E57F4DA0B3840"
Last-Modified: Mon, 30 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 31 Jan 2023 04:49:57 GMT
Date: Mon, 30 Jan 2023 22:49:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2733
Expires: Mon, 30 Jan 2023 23:35:30 GMT
Date: Mon, 30 Jan 2023 22:49:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3737
Expires: Mon, 30 Jan 2023 23:52:14 GMT
Date: Mon, 30 Jan 2023 22:49:57 GMT
Connection: keep-alive

www.virgilio.it.virgilio-conferma.com/ripristino/

23.94.217.246

200 OK

95 B

URL HTTP/1.1
www.virgilio.it.virgilio-conferma.com/ripristino/
IP
23.94.217.246:0
ASN
#36352 AS-COLOCROSSING

File type
ASCII text, with no line terminators
Size
95 B (95 bytes)
Hash
750e3b9c043d519275ce955096b21bdc
fa6d33794846e3603361163a1c14b8661b41a4a5
0fce24b53b19622f85ac66d281465f67b4612c4e1f90fdae9ad237785ac6a71d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ripristino/ HTTP/1.1
Host: www.virgilio.it.virgilio-conferma.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:57 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sun, 29 Jan 2023 17:03:36 GMT
ETag: "54-5f36a14498a00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 95
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7794
Expires: Tue, 31 Jan 2023 00:59:51 GMT
Date: Mon, 30 Jan 2023 22:49:57 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 22:35:47 GMT
content-type: application/json
age: 850
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: i5L4vlFNDPS9EdEtW9luaqeYplcdsQlfW+bx2xlxKs7JlXdQEUwou0OIyqmOLYOBo7IliCuENiM=
x-amz-request-id: 5QW4KH5GMHANSPER
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 21:50:54 GMT
age: 3543
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 22:49:57 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.usertrust.com/

104.18.32.68

200 OK

2.2 kB

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
2.2 kB (2236 bytes)
Hash
ae39333ae66accd3f8c0b703536422b3
56276d359bb892b328ad946d38c5198258e7c7a6
fa80d7b61e5d5b84955ab46a8ea06f2661f36614ef81d3e6596dccfa30c9b51b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:57 GMT
Content-Type: application/ocsp-response
Content-Length: 2236
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 22:12:16 GMT
Expires: Sat, 04 Feb 2023 22:12:15 GMT
Etag: "56276d359bb892b328ad946d38c5198258e7c7a6"
Cache-Control: max-age=603458,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1322
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791dc3874bff0b45-OSL

213.209.36.2

200 OK

9.0 kB

URL HTTP/1.1
login.virgilio.it/?ref=hpv-hd
IP
213.209.36.2:0
ASN
#8660 Italiaonline S.p.A.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5180), with CRLF, LF line terminators
Size
9.0 kB (8955 bytes)
Hash
4033e191690de26d72b71d6f68e26566
eab7dd20c2fa6c441b81e4dae6c8d6ec7e486966
412cf20aa5501167a62d383136d152eb670b061409d72f566cdde255c9e2fbd2

HTTP Headers

GET /?ref=hpv-hd HTTP/1.1
Host: login.virgilio.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:57 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Set-Cookie: cookies_enabled=yes; path=/
LIB_PROV_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=virgilio.it
LIB_LOG_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=login.virgilio.it; Secure; SameSite=None
LIB_LOG_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; Secure; SameSite=None
LIB_SSO_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=virgilio.it; Secure; SameSite=None
LIB_NAME_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=virgilio.it
LIB_TK_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=virgilio.it
LIB_LOG_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=login.virgilio.it; Secure; SameSite=None
LIB_LOG_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; Secure; SameSite=None
LIB_SSO_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=virgilio.it; Secure; SameSite=None
LIB_NAME_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=virgilio.it
LIB_TK_CK=0; expires=Sat, 06-Feb-1993 22:49:57 GMT; Max-Age=0; path=/; domain=virgilio.it
X-XSS-Protection: 1; mode=block
Content-Length: 8955
Keep-Alive: timeout=3, max=400
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 22:49:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/3.5.0/jquery.min.js

142.250.74.74

200 OK

31 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.0/jquery.min.js
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
3220a59e327fbd8dcbcf04d5cdeecdac
4f8620a379cc33e7cff27bb533a3b995fd9c8e82
8c3a1e90ef3cc7ef7379bbaf30d911554c5e2c9a056093aba09644ee3396cb23

HTTP Headers

GET /ajax/libs/jquery/3.5.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:25 GMT
expires: Sat, 27 Jan 2024 02:06:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
age: 333812
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i1.plug.it//mail/login/2018/libero/img/logo-quifinanza.png

54.230.111.46

200 OK

1.6 kB

URL HTTP/2
i1.plug.it//mail/login/2018/libero/img/logo-quifinanza.png
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type
PNG image data, 110 x 30, 8-bit colormap, non-interlaced\012- data
Size
1.6 kB (1572 bytes)
Hash
69e34c8320fbbbb96fb62bf21ab508d9
ec42e286bbd283a52462d64460dc31fc4ae8d611
e72563537754aafd3bb45b495360d16020dc6978b117211d5eb965d4dbdd0021

HTTP Headers

GET //mail/login/2018/libero/img/logo-quifinanza.png HTTP/1.1
Host: i1.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1572
server: nginx
last-modified: Wed, 28 Nov 2018 07:13:19 GMT
accept-ranges: bytes
date: Mon, 30 Jan 2023 07:20:01 GMT
cache-control: public, max-age=86400
etag: "5bfe400f-624"
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OaRNGvlXfZPdYFl445j-s6yRLVYmwmGalM65KJFW79A86LP3GN3jcQ==
age: 65067
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 22:49:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 22:41:41 GMT
age: 496
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
88d1d42e396dc12627568a179410944a
4d2b16d33db2749e8bc408d6de09caf8bca84433
4abb73e4a1ad534d0d060c1ff40ce19d9ec61e76cc9341ceece50d9e96ce83bc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 20:23:06 GMT
Expires: Mon, 06 Feb 2023 20:23:05 GMT
Etag: "4d2b16d33db2749e8bc408d6de09caf8bca84433"
Cache-Control: max-age=595386,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791dc3894fb40b02-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
45d05dd433375ab7a151d42d2af06ee0
427e91d930dee56ceb39f2ec973f700a177ef1ea
0d8a3d4f0ed5de9a6fa63683acb1540b4c621eb5ca80ca2a3c8a5cd1d9c42e89

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 11:41:08 GMT
Expires: Sat, 04 Feb 2023 11:41:07 GMT
Etag: "427e91d930dee56ceb39f2ec973f700a177ef1ea"
Cache-Control: max-age=391268,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791dc38a18d30b02-OSL

c.amazon-adsystem.com/aax2/apstag.js

54.230.111.210

200 OK

47 kB

URL HTTP/2
c.amazon-adsystem.com/aax2/apstag.js
IP
54.230.111.210:0
ASN
#16509 AMAZON-02

File type
data
Size
47 kB (47402 bytes)
Hash
50b811ebd7c6fbbe1cd501d54c06ef01
018d1bff39541347f3d6ddd86b1d2fa165e33874
b4500bd001490fb7f7031a9ebad66f406a054175714ae53713d79ba9ed04b93b

HTTP Headers

GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 22:26:32 GMT
last-modified: Wed, 25 Jan 2023 21:28:25 GMT
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 c60125e7f3465aceafb0abd071a41a36.cloudfront.net (CloudFront), 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
etag: W/"8a6d0f2d51de2b80e524e04684f71215"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: tLIzDv_JJqOfVPvyu7HfMCVXOqnIStFy2stdeA4BFx4hc65SVjrRZQ==
age: 1406
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
eabd6507d92b4cbaf76fb3be1493a3ef
7cfdb380a5f223266d1ee14cdee0f7310db26ebc
a8022c454907b15c49ae11dfa73a394cf47d97ab9ad2e345f1fddd82dfbb9553

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 14:44:44 GMT
Expires: Fri, 03 Feb 2023 14:44:43 GMT
Etag: "7cfdb380a5f223266d1ee14cdee0f7310db26ebc"
Cache-Control: max-age=315884,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791dc3894a7ab4ee-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
eabd6507d92b4cbaf76fb3be1493a3ef
7cfdb380a5f223266d1ee14cdee0f7310db26ebc
a8022c454907b15c49ae11dfa73a394cf47d97ab9ad2e345f1fddd82dfbb9553

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 14:44:44 GMT
Expires: Fri, 03 Feb 2023 14:44:43 GMT
Etag: "7cfdb380a5f223266d1ee14cdee0f7310db26ebc"
Cache-Control: max-age=315884,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791dc3894e88b4f4-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
45d05dd433375ab7a151d42d2af06ee0
427e91d930dee56ceb39f2ec973f700a177ef1ea
0d8a3d4f0ed5de9a6fa63683acb1540b4c621eb5ca80ca2a3c8a5cd1d9c42e89

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 11:41:08 GMT
Expires: Sat, 04 Feb 2023 11:41:07 GMT
Etag: "427e91d930dee56ceb39f2ec973f700a177ef1ea"
Cache-Control: max-age=391268,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791dc3897aadb4ee-OSL

push.services.mozilla.com/

44.239.211.14

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.239.211.14:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +3841j3VshxTJyapy1BdwQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W24sfr6qVY1FgTSAxe0NElcsgWY=

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
88d1d42e396dc12627568a179410944a
4d2b16d33db2749e8bc408d6de09caf8bca84433
4abb73e4a1ad534d0d060c1ff40ce19d9ec61e76cc9341ceece50d9e96ce83bc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:58 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 20:23:06 GMT
Expires: Mon, 06 Feb 2023 20:23:05 GMT
Etag: "4d2b16d33db2749e8bc408d6de09caf8bca84433"
Cache-Control: max-age=595386,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791dc3894fb20b02-OSL

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 22:49:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://login.virgilio.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 89278
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 22:49:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.iolam.it/js/prebid.js

213.209.30.161

200 OK

136 kB

URL HTTP/2
www.iolam.it/js/prebid.js
IP
213.209.30.161:0
ASN
#8660 Italiaonline S.p.A.

File type
data
Size
136 kB (135904 bytes)
Hash
858a6ced4d8fe4c4d1ef6c2cf56f54e6
b6ecad9266ddc5c16f5f178b1a9a8b9d082aea50
60bc7bbccc479d182cd7b5e5e1d454e48bb859d1e36355ceedec531a5642bd4c

HTTP Headers

GET /js/prebid.js HTTP/1.1
Host: www.iolam.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
server: Apache
strict-transport-security: max-age=63072000;
accept-ranges: bytes
expires: Tue, 31 Jan 2023 21:23:38 GMT
vary: Accept-Encoding
cache-control: max-age=86400
x-original-content-length: 399619
content-encoding: gzip
x-content-type-options: nosniff
content-type: application/javascript
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 22:49:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
c42275501b33a63e0d8c6feb75d40cfe
e5361966da834c499f0f597fffc0e5e795e71903
17ef97234bc8be9cacdc3ead655dce1302da11fec24fddb7d309f84ab074f9a2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:58 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 14:35:05 GMT
Expires: Fri, 03 Feb 2023 14:35:04 GMT
Etag: "e5361966da834c499f0f597fffc0e5e795e71903"
Cache-Control: max-age=315305,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791dc38e2f970b02-OSL

i2.plug.it/mail/login/2018/js/placeholders.min.js

54.230.111.46

200 OK

1.5 kB

URL HTTP/2
i2.plug.it/mail/login/2018/js/placeholders.min.js
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (3907), with no line terminators
Size
1.5 kB (1542 bytes)
Hash
7d00f1808a986bb98e1699d8f55dd3d3
5c355870f7bfb5a44dbe1b46b611918b8bae46b6
5cd6fa9db69001e6651258185370a38b88fb5c8507bd7523490a7ae30aec3c0f

HTTP Headers

GET /mail/login/2018/js/placeholders.min.js HTTP/1.1
Host: i2.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 30 Jan 2023 01:38:04 GMT
cache-control: public, max-age=86400
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MZ27rzq7ErDE-w0gSJMEItwK1D5DKASBxWRzQkkxkdaE4XbrDqs38Q==
age: 76314
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
679802fe3a120bcfc2b669298cb2776e
6cb4331535fb3ee87813fb38774645f87e3fb08e
0f5e3fcc568df620482c5be5f3a1bb95613048d32e3c55073f008d4e54e4b87f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161559
Date: Mon, 30 Jan 2023 22:49:58 GMT
Etag: "63d80a1b-1d7"
Expires: Wed, 01 Feb 2023 19:42:37 GMT
Last-Modified: Mon, 30 Jan 2023 18:19:07 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rmMlJc7w92Vymw7ZHJhuxarYtwjHGpjy5G7wgDjpWsSMi4sDO2rbog==
Age: 5010

cdn.iubenda.com/cs/tcf/stub-v2.js

138.199.37.229

200 OK

1.4 kB

URL HTTP/2
cdn.iubenda.com/cs/tcf/stub-v2.js
IP
138.199.37.229:0
ASN
#60068 Datacamp Limited

File type
ASCII text, with very long lines (2215), with no line terminators
Size
1.4 kB (1416 bytes)
Hash
383ebfaf5e44198063de5d98f5b66405
4aa417bf5a2e106246f2de56bc407b0c790280f9
e56481419d46aa7d431f170215b5215f50ecd9e2b28480713aa366233fa745f8

HTTP Headers

GET /cs/tcf/stub-v2.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
content-type: application/javascript
server: BunnyCDN-DE1-865
cdn-pullzone: 954456
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=10800
content-encoding: br
etag: "63d37692-3b1"
last-modified: Fri, 27 Jan 2023 07:00:34 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/27/2023 11:03:40
cdn-edgestorageid: 865
cdn-status: 200
cdn-requestid: fddf07634b0dd0713a0e0d87109f2781
cdn-cache: HIT
X-Firefox-Spdy: h2

italiaonline.profiles.tagger.opecloud.com/v1/targeting?url=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&gdpr_applies=0

3.126.65.87

200 OK

0 B

URL HTTP/2
italiaonline.profiles.tagger.opecloud.com/v1/targeting?url=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&gdpr_applies=0
IP
3.126.65.87:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/targeting?url=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&gdpr_applies=0 HTTP/1.1
Host: italiaonline.profiles.tagger.opecloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: referrer-policy
Referer: https://login.virgilio.it/
Origin: https://login.virgilio.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
content-length: 0
access-control-allow-headers: referrer-policy
access-control-allow-origin: https://login.virgilio.it
access-control-allow-methods: GET, POST, HEAD, OPTIONS
access-control-max-age: 1800
access-control-allow-credentials: true
X-Firefox-Spdy: h2

www.iubenda.com/cookie-solution/confs/js/89638261.js

194.242.11.186

200 OK

124 B

URL HTTP/2
www.iubenda.com/cookie-solution/confs/js/89638261.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text
Size
124 B (124 bytes)
Hash
20169ed127f01b21cc6b30f2a88b6358
84582d546946a17ba52f334e8a6deea825a49f42
e18d5db26f25c8fbdb6a6ee9f9a35baac4b755113f851a19f775a720acdf594f

HTTP Headers

GET /cookie-solution/confs/js/89638261.js HTTP/1.1
Host: www.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
content-type: application/javascript
content-length: 124
server: BunnyCDN-NO1-830
cdn-pullzone: 966339
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
access-control-allow-methods: POST, PUT, DELETE, GET, OPTIONS
access-control-allow-origin: *
cache-control: public, max-age=3600
etag: "63d7e3ac-7c"
last-modified: Mon, 30 Jan 2023 15:35:08 GMT
access-control-request-method: *
strict-transport-security: max-age=63072000
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/30/2023 16:10:57
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1c44bae08fb66f7c7860ae76e3da9074
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

evnt.iol.it/v2?&pgnf=login.virgilio.it%2Call%2C%2C%2C%2C0%2C1280%2C0%2C%2Cb%2C0%2C%2Ccmpdbg_pop_open%2C1591&nc=1675119012981

213.209.62.8

200 OK

43 B

URL HTTP/2
evnt.iol.it/v2?&pgnf=login.virgilio.it%2Call%2C%2C%2C%2C0%2C1280%2C0%2C%2Cb%2C0%2C%2Ccmpdbg_pop_open%2C1591&nc=1675119012981
IP
213.209.62.8:0
ASN
#8660 Italiaonline S.p.A.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277

HTTP Headers

GET /v2?&pgnf=login.virgilio.it%2Call%2C%2C%2C%2C0%2C1280%2C0%2C%2Cb%2C0%2C%2Ccmpdbg_pop_open%2C1591&nc=1675119012981 HTTP/1.1
Host: evnt.iol.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Cookie: evntuid=Y9hJlgoCDU4AACQ@TW8AAA2f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 22:49:58 GMT
content-type: image/gif
content-length: 43
vary: Cookie,User-Agent
last-modified: Fri, 27 Jul 2007 12:44:16 GMT
etag: "2b-4363e19d36800"
p3p: policyref=http://www.iolam.it/P3P/policy.xml, CP=NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT CNT
age: 0
x-cache: MISS
x-cache-hits: 0
accept-ranges: bytes, bytes
expires: Mon, 30 Jan 2023 22:49:58 GMT
cache-control: max-age=0, no-cache
X-Firefox-Spdy: h2

i4.plug.it/iplug/js/lib/iol/evnt/iol_evnt_v3.min.js

54.230.111.46

200 OK

4.1 kB

URL HTTP/2
i4.plug.it/iplug/js/lib/iol/evnt/iol_evnt_v3.min.js
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (4613)
Size
4.1 kB (4113 bytes)
Hash
b57082e470688136a5309a625d0c1fe2
edab6c504368e736bf9ab1306d98e9a775fe8d88
6d0a252b3a02fc6c8329b755a9ff2dff917089323cd2a13543bbaf8f25177c4c

HTTP Headers

GET /iplug/js/lib/iol/evnt/iol_evnt_v3.min.js HTTP/1.1
Host: i4.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 30 Jan 2023 22:14:40 GMT
cache-control: public, max-age=1200
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oixah0MW6KKmrAlH9ogYthIS4bBtBmi-XrzyNRwskcxX9o0SqDmeyg==
age: 2117
X-Firefox-Spdy: h2

italiaonline01.wt-eu02.net/215973748390194/wt?p=433,virgilio.web.mail.login.step1,1,1280x1024,24,1,1675119012542,0,1280x939,0&pu=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&la=en&tz=0&cg1=virgilio&cg2=web&cg3=mail&cg4=login&cg5=step1&cg7=virgilio.web.mail.login.step1&cp1=no-referrer&cp2=no-referrer&cp4=no-refresh&cp7=utf-8&cp9=1.4.04&cp10=20220315110853&cp11=Virgilio%20Mail%20-%20login&cp12=web&cp24=webmail&cp25=https%3A&cp26=login.virgilio.it&cp47=&cp103=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd

185.54.150.20

200

43 B

URL HTTP/1.1
italiaonline01.wt-eu02.net/215973748390194/wt?p=433,virgilio.web.mail.login.step1,1,1280x1024,24,1,1675119012542,0,1280x939,0&pu=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&la=en&tz=0&cg1=virgilio&cg2=web&cg3=mail&cg4=login&cg5=step1&cg7=virgilio.web.mail.login.step1&cp1=no-referrer&cp2=no-referrer&cp4=no-refresh&cp7=utf-8&cp9=1.4.04&cp10=20220315110853&cp11=Virgilio%20Mail%20-%20login&cp12=web&cp24=webmail&cp25=https%3A&cp26=login.virgilio.it&cp47=&cp103=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd
IP
185.54.150.20:0
ASN
#60164 Webtrekk GmbH

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /215973748390194/wt?p=433,virgilio.web.mail.login.step1,1,1280x1024,24,1,1675119012542,0,1280x939,0&pu=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&la=en&tz=0&cg1=virgilio&cg2=web&cg3=mail&cg4=login&cg5=step1&cg7=virgilio.web.mail.login.step1&cp1=no-referrer&cp2=no-referrer&cp4=no-refresh&cp7=utf-8&cp9=1.4.04&cp10=20220315110853&cp11=Virgilio%20Mail%20-%20login&cp12=web&cp24=webmail&cp25=https%3A&cp26=login.virgilio.it&cp47=&cp103=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd HTTP/1.1
Host: italiaonline01.wt-eu02.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Set-Cookie: wteid_215973748390194=4167511899900851000; Max-Age=15552000; Expires=Sat, 29 Jul 2023 22:49:59 GMT; Secure; SameSite=None
wtsid_215973748390194=1; Secure; SameSite=None
wt_nbg_Q3=!o6quzCwpLY2ZQeDpjGYh4zwSUbWZoBcYwyAEKNtCsfoxjBwpD0Ctt4Y7/JXigWyIPaAtepyn1986zg==; path=/; Httponly; Secure; SameSite=None
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, private, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Mon, 30 Jan 2023 22:49:59 GMT
P3P: policyref="https://q3.webtrekk.net/w3c/p3p.xml", CP="NOI DSP IND COM NAV INT"
X-Robots-Tag: noindex, nofollow, noarchive
Content-Type: image/gif;charset=UTF-8
Content-Length: 43
Date: Mon, 30 Jan 2023 22:49:59 GMT
Keep-Alive: timeout=30
Connection: keep-alive
Server: 1679091c

hits-i.iubenda.com/write?db=hits1

194.242.11.186

204 No Content

0 B

URL HTTP/2
hits-i.iubenda.com/write?db=hits1
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /write?db=hits1 HTTP/1.1
Host: hits-i.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 39
Origin: https://login.virgilio.it
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Mon, 30 Jan 2023 22:49:59 GMT
server: BunnyCDN-NO1-830
cdn-pullzone: 967785
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Length, Content-Type, X-CSRF-Token, X-HTTP-Method-Override
access-control-allow-methods: DELETE, GET, OPTIONS, POST, PUT
access-control-allow-origin: https://login.virgilio.it
access-control-expose-headers: Date, X-InfluxDB-Version, X-InfluxDB-Build
cache-control: public, max-age=0
request-id: 6c8bffe3-a0f0-11ed-8bb5-0242ac110002
x-influxdb-build: OSS
x-influxdb-version: 1.8.2
x-request-id: 6c8bffe3-a0f0-11ed-8bb5-0242ac110002
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 204
cdn-cachedat: 01/30/2023 22:49:59
cdn-edgestorageid: 830
cdn-requestid: 333543a8972e5eb3d2fa277546b46e80
X-Firefox-Spdy: h2

213.209.36.2

200 OK

15 kB

URL HTTP/1.1
login.virgilio.it/images/virgilio_favicon.ico
IP
213.209.36.2:0
ASN
#8660 Italiaonline S.p.A.

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
15 kB (15086 bytes)
Hash
c413be99b4873a125abf724ce7272c44
868214b77c6aa2852a1ba85141d1ea25dcac7282
01187492ba09db1c404d8b71a7942a379c06bcb6b5a96898655fe2e6c99bb41d

HTTP Headers

GET /images/virgilio_favicon.ico HTTP/1.1
Host: login.virgilio.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/?ref=hpv-hd
Cookie: cookies_enabled=yes
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 22:49:59 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
Last-Modified: Fri, 29 Sep 2017 12:03:09 GMT
ETag: "3aee-55a52ceecd940"
Accept-Ranges: bytes
Content-Length: 15086
Cache-Control: public
X-Frame-Options: SAMEORIGIN
Keep-Alive: timeout=3, max=399
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon

italiaonline.profiles.tagger.opecloud.com/v1/targeting?url=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&gdpr_applies=0

3.126.65.87

200 OK

527 B

URL HTTP/2
italiaonline.profiles.tagger.opecloud.com/v1/targeting?url=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&gdpr_applies=0
IP
3.126.65.87:0
ASN
#16509 AMAZON-02

File type
data
Size
527 B (527 bytes)
Hash
63a38c96537098c797881c11e120ce1d
96579f5a478f20b2fb91a1de76e72899ddea19e2
9df485146044563fb5d353c416168f6b14839aefe7d6127ca35dd8efc292242d

HTTP Headers

GET /v1/targeting?url=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&gdpr_applies=0 HTTP/1.1
Host: italiaonline.profiles.tagger.opecloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Referrer-Policy: no-referrer-when-downgrade
Origin: https://login.virgilio.it
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
content-type: application/json
content-encoding: gzip
access-control-allow-origin: https://login.virgilio.it
access-control-allow-credentials: true
cache-control: no-cache
X-Firefox-Spdy: h2

securepubads.g.doubleclick.net/tag/js/gpt.js

142.250.74.130

200 OK

28 kB

URL HTTP/2
securepubads.g.doubleclick.net/tag/js/gpt.js
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (39375)
Size
28 kB (27545 bytes)
Hash
a1924af2d9eac1045e322f51822d0c34
68fd7008aa0cf417bd493827cf08c98854aae1ac
9db1dcf04ac299553c6f08635908f1041ff7c52021572b67c59f8e36f8813a59

HTTP Headers

GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27545
date: Mon, 30 Jan 2023 22:49:59 GMT
expires: Mon, 30 Jan 2023 22:49:59 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1468 / 353 of 1000 / last-modified: 1675093417"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 22:49:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

secure-it.imrworldwide.com/cgi-bin/m?ci=matrix-it&cg=0&si=http://login.virgilio.it/&seq=1675119012534

52.31.174.194

200 OK

44 B

URL HTTP/2
secure-it.imrworldwide.com/cgi-bin/m?ci=matrix-it&cg=0&si=http://login.virgilio.it/&seq=1675119012534
IP
52.31.174.194:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3

HTTP Headers

GET /cgi-bin/m?ci=matrix-it&amp;cg=0&amp;si=http://login.virgilio.it/&seq=1675119012534 HTTP/1.1
Host: secure-it.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:59 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=6ca325e0-a0f0-11ed-b05e-7fee3b1ad986; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Sat, 24-Feb-2024 22:49:59 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-it.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2

cdn-gl.imrworldwide.com/conf/PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8.js

54.230.111.95

200 OK

140 kB

URL HTTP/2
cdn-gl.imrworldwide.com/conf/PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8.js
IP
54.230.111.95:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (36980)
Size
140 kB (139960 bytes)
Hash
589e75938e867ea1d2899f3d659bdfed
bd624ec72d26d02217db98f244e53f32dc235c0d
55cde59dbccddc20cba0be8af9d201843587934dba67c5b5ff2ffab33eddd415

HTTP Headers

GET /conf/PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 30 Jan 2023 09:19:37 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 9.xJyFx5zyHLkxEwMtEO.AAY9oJFnNBA
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 22:49:59 GMT
cache-control: max-age=86400,s-maxage=86400
etag: W/"7c467d1043205c168bdf6fe822c08ffe"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9GpAqq_YcG0BYDJMlrUqF0oBQ9Op6WhCqbxGo3vWcXZ4_6tGrsDKSg==
age: 2010
X-Firefox-Spdy: h2

secure-it.imrworldwide.com/cgi-bin/gn?prd=session&c9=devid,&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&c16=sdkv,bj.6.0.0&uoo=&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&sdd=&retry=0

52.31.174.194

200 OK

44 B

URL HTTP/2
secure-it.imrworldwide.com/cgi-bin/gn?prd=session&c9=devid,&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&c16=sdkv,bj.6.0.0&uoo=&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&sdd=&retry=0
IP
52.31.174.194:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3

HTTP Headers

GET /cgi-bin/gn?prd=session&c9=devid,&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&c16=sdkv,bj.6.0.0&uoo=&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&sdd=&retry=0 HTTP/1.1
Host: secure-it.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:59 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=6caa2ac0-a0f0-11ed-a075-7fecf462f794; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Sat, 24-Feb-2024 22:49:59 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-it.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2

sd4qeftnf30glinakhjxlmmbyfx021675119013.nuid.imrworldwide.com/

54.230.111.55

200 OK

35 B

URL HTTP/2
sd4qeftnf30glinakhjxlmmbyfx021675119013.nuid.imrworldwide.com/
IP
54.230.111.55:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET / HTTP/1.1
Host: sd4qeftnf30glinakhjxlmmbyfx021675119013.nuid.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: image/gif
content-length: 35
last-modified: Tue, 11 Sep 2018 17:05:20 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 01:05:50 GMT
etag: "c2196de8ba412c60c22ab491af7b1409"
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7wQ6giFuS4icznta_wbAQ3H-BOXc_0c9zyohJEhG8UHw5km0b6Lb8w==
age: 78250
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13689
Expires: Tue, 31 Jan 2023 02:38:08 GMT
Date: Mon, 30 Jan 2023 22:49:59 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13689
Expires: Tue, 31 Jan 2023 02:38:08 GMT
Date: Mon, 30 Jan 2023 22:49:59 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13689
Expires: Tue, 31 Jan 2023 02:38:08 GMT
Date: Mon, 30 Jan 2023 22:49:59 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70d0f84c-475c-41c3-922d-8f0be8fbfff4.jpeg

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70d0f84c-475c-41c3-922d-8f0be8fbfff4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6481 bytes)
Hash
f6790dfb54452775c77c50890d17669a
a21e3ac869acae92640075dcb9da9ded4b7f0c92
b24238875cca2327ef4df93e5e66303f02b7f64265faebcb033a245c14638817

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70d0f84c-475c-41c3-922d-8f0be8fbfff4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6481
x-amzn-requestid: ca20c9a5-983f-4cde-a833-2a561c13af95
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY-T9FcXoAMFnlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d3774c-665397d31a681a155b8a7d53;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:03:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BpOJ8IlnGRS5RbTLM1pQdk11d9NJLiiUy7oIMbwYykeX5E6OyAAFdw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 17:04:34 GMT
age: 20725
etag: "a21e3ac869acae92640075dcb9da9ded4b7f0c92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13853 bytes)
Hash
d957012d3e2b8c3bc0eefe11d66e8554
1959fdd94846fa3791c4890578dd15336b909dcc
a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUGjUSIkoacdmaO1jnMwIuNMONhjyVfAIcTQ3B5d5da_g9eEnCtW7g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:48:17 GMT
age: 3702
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39003a0d-b88f-4013-b50c-7e01c5afc867.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5757 bytes)
Hash
b60240f10673b4c275619f7c2f5005cf
d29076a2ad44f9d44da6f77fd1dcaea9a28c7d51
ccfdf6106ab405f6fd346bd501a7bc121acba3db657bf0bc2f7587cbe6488f55

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39003a0d-b88f-4013-b50c-7e01c5afc867.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5757
x-amzn-requestid: 7d5679c9-d86c-4179-b9eb-0bb0c669ff06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRYfEwvoAMFbsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c902-797b832050c000dd5a905f3b;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: x_N3UeM26YGF3H0FrJF1O8CD7p7n7HacaSr8Xc6-g51wJemoO6zmEg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 08:54:39 GMT
age: 50120
etag: "d29076a2ad44f9d44da6f77fd1dcaea9a28c7d51"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7550d034-a90a-434b-9fea-868c8c7b245c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5678 bytes)
Hash
da3305c255098d7a3ae582b5962ba14c
00b899160598d98b5026d4b53814b16d3f745b14
d505f682650fcacc557eb821a055b0e6c61f4d2aa2c5d8f3b595a2d240335b55

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7550d034-a90a-434b-9fea-868c8c7b245c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5678
x-amzn-requestid: 7fdf597d-0f02-48ef-9059-04d99a0d5dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffy4JFm8IAMFjJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d631cd-6044076459b6b9815fbfbe9c;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 08:43:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w1OY-d-PqtQ6UnIIdLhYkvNlm6CSImBXYdQFkhBlweSIDxDaT5FdYQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:59:01 GMT
age: 3058
etag: "00b899160598d98b5026d4b53814b16d3f745b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10898 bytes)
Hash
4a2d26da68a313cc65958fc2692351c2
798c3538f3147ca77d317676ddd1bf040bd0f93b
76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XYo_QvM8GWDyulOtUb5nVjS9PxOinaRJ3lYvCreeqd_9tHI5yv5xcQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:48:21 GMT
age: 3698
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8558 bytes)
Hash
e6f9ffb8f9e99229b45ca5fdb84ce7d5
04577ad69ee9749b14382254eb5bbf0e1edcd7fa
6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8558
x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_BFA8IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZP2Mar8l3QoPH733_vv3hUuQjWvaN4_TgfYwme2-6WIxGi55BoSchg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 03:24:10 GMT
age: 69949
etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

secure-it.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=it-605193&ch=it-605193_c30_VirgilioMail_BRW_S&asn=VirgilioMail_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&prv=1&c6=vc,c30&ca=NA&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,1675119013362821&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=1675119012536&c3=st,c&c64=starttm,1675119014&adid=1675119012536&c58=isLive,false&c59=sesid,&c61=createtm,1675119015&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=0&si=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&c66=mediaurl,&sdd=&c62=sendTime,1675119015&rnd=345555

52.31.174.194

200 OK

44 B

URL HTTP/2
secure-it.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=it-605193&ch=it-605193_c30_VirgilioMail_BRW_S&asn=VirgilioMail_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&prv=1&c6=vc,c30&ca=NA&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,1675119013362821&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=1675119012536&c3=st,c&c64=starttm,1675119014&adid=1675119012536&c58=isLive,false&c59=sesid,&c61=createtm,1675119015&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=0&si=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&c66=mediaurl,&sdd=&c62=sendTime,1675119015&rnd=345555
IP
52.31.174.194:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3

HTTP Headers

GET /cgi-bin/gn?prd=dcr&ci=it-605193&ch=it-605193_c30_VirgilioMail_BRW_S&asn=VirgilioMail_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&prv=1&c6=vc,c30&ca=NA&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,1675119013362821&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=1675119012536&c3=st,c&c64=starttm,1675119014&adid=1675119012536&c58=isLive,false&c59=sesid,&c61=createtm,1675119015&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=0&si=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&c66=mediaurl,&sdd=&c62=sendTime,1675119015&rnd=345555 HTTP/1.1
Host: secure-it.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:50:01 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=6dd627a0-a0f0-11ed-9c61-87d1ba622030; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Sat, 24-Feb-2024 22:50:01 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-it.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2

secure-it.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=it-605193&ch=it-605193_c30_VirgilioMail_BRW_S&asn=VirgilioMail_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&prv=1&c6=vc,c30&ca=NA&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,5&crs=&lat=&lon=&c29=plid,1675119013362821&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=1675119012536&c3=st,c&c64=starttm,1675119014&adid=1675119012536&c58=isLive,false&c59=sesid,&c61=createtm,1675119019&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=2&si=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&c66=mediaurl,&sdd=&c62=sendTime,1675119019&rnd=428810

52.31.174.194

200 OK

44 B

URL HTTP/2
secure-it.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=it-605193&ch=it-605193_c30_VirgilioMail_BRW_S&asn=VirgilioMail_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&prv=1&c6=vc,c30&ca=NA&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,5&crs=&lat=&lon=&c29=plid,1675119013362821&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=1675119012536&c3=st,c&c64=starttm,1675119014&adid=1675119012536&c58=isLive,false&c59=sesid,&c61=createtm,1675119019&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=2&si=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&c66=mediaurl,&sdd=&c62=sendTime,1675119019&rnd=428810
IP
52.31.174.194:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3

HTTP Headers

GET /cgi-bin/gn?prd=dcr&ci=it-605193&ch=it-605193_c30_VirgilioMail_BRW_S&asn=VirgilioMail_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=sd4qeftnf30glinakhjxlmmbyfx021675119013&prv=1&c6=vc,c30&ca=NA&c13=asid,PFC09D71E-A69E-4F04-908B-9FCDD07DDBC8&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=D&c9=devid,&enc=true&c1=nuid,999&at=timer&rt=text&c16=sdkv,bj.6.0.0&c27=cln,5&crs=&lat=&lon=&c29=plid,1675119013362821&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=1675119012536&c3=st,c&c64=starttm,1675119014&adid=1675119012536&c58=isLive,false&c59=sesid,&c61=createtm,1675119019&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=2&si=https%3A%2F%2Flogin.virgilio.it%2F%3Fref%3Dhpv-hd&c66=mediaurl,&sdd=&c62=sendTime,1675119019&rnd=428810 HTTP/1.1
Host: secure-it.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:50:05 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=708f5431-a0f0-11ed-9591-25f7d812dae4; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Sat, 24-Feb-2024 22:50:05 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-it.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2

i1.plug.it/mail/login/2020/virgilio/img/logo.svg

54.230.111.46

200 OK

0 B

URL HTTP/2
i1.plug.it/mail/login/2020/virgilio/img/logo.svg
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mail/login/2020/virgilio/img/logo.svg HTTP/1.1
Host: i1.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
last-modified: Mon, 14 Dec 2020 08:02:23 GMT
content-encoding: gzip
date: Mon, 30 Jan 2023 03:59:43 GMT
cache-control: public, max-age=86400
etag: W/"5fd71c0f-8ae"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WwdKZDhzWfQvz-g-Ngdn1pQ5ZeYuCtuEl-wxb3WbXxsjq34JN0pqTQ==
age: 67814
X-Firefox-Spdy: h2

cdn.iubenda.com/cs/tcf/versions/tcf-v2-0.20.6.js

138.199.37.229

200 OK

0 B

URL HTTP/2
cdn.iubenda.com/cs/tcf/versions/tcf-v2-0.20.6.js
IP
138.199.37.229:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cs/tcf/versions/tcf-v2-0.20.6.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
content-type: application/javascript
server: BunnyCDN-DE1-865
cdn-pullzone: 954456
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
etag: "63d37692-5561"
last-modified: Fri, 27 Jan 2023 07:00:34 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/27/2023 11:03:41
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: e8e5b0a1a25fa1bcfc2989505123ab8c
cdn-cache: HIT
X-Firefox-Spdy: h2

cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js

54.230.111.95

200 OK

0 B

URL HTTP/2
cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js
IP
54.230.111.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /novms/js/2/nlsSDK600.bundle.min.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 14:09:01 GMT
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
x-amz-version-id: Tw1ZrV6S6M8HrQmSnEoR4BpykB7j_69v
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 22:49:39 GMT
cache-control: max-age=86400
etag: W/"81a9e2a298d0019660cb2966f0c24748"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4A2OIuGWw_cE_J-vgTj4pMtqZlZ4O3jp3T1so4_1AHvhjLy8Cb32RA==
age: 21
X-Firefox-Spdy: h2

i.plug.it/iplug/js/lib/iol/analytics/ads/banners/_adv.js?_t=1675119012736

54.230.111.46

200 OK

0 B

URL HTTP/2
i.plug.it/iplug/js/lib/iol/analytics/ads/banners/_adv.js?_t=1675119012736
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /iplug/js/lib/iol/analytics/ads/banners/_adv.js?_t=1675119012736 HTTP/1.1
Host: i.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 30 Jan 2023 22:49:58 GMT
access-control-allow-methods: GET, POST, HEAD, OPTIONS
access-control-allow-origin: *
cache-control: public, max-age=1200
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xny-mwKeIoxmaeGvec5eZbrbRceiYjEYy9pGx5VEtwyZLp3lMS9F7w==
X-Firefox-Spdy: h2

i5.plug.it/cmp/qciol.min.js

54.230.111.46

200 OK

0 B

URL HTTP/2
i5.plug.it/cmp/qciol.min.js
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cmp/qciol.min.js HTTP/1.1
Host: i5.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 30 Jan 2023 22:30:01 GMT
cache-control: public, max-age=1200
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i7TcDF7Jk240DksoHL8nGFrz1rFY4Ra5g3KMORQXP0wjuuxtTzah3g==
age: 1196
X-Firefox-Spdy: h2

i5.plug.it/cmp/iub_conf_virgilio.js

54.230.111.46

200 OK

0 B

URL HTTP/2
i5.plug.it/cmp/iub_conf_virgilio.js
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cmp/iub_conf_virgilio.js HTTP/1.1
Host: i5.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 30 Jan 2023 22:39:08 GMT
cache-control: public, max-age=1200
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tso-1Az-u6Gw1QFMefXKcC9cAMmtduzbO8rZKSsOjfQtYbdVCXG37Q==
age: 649
X-Firefox-Spdy: h2

i4.plug.it/iplug/js/lib/iol/analytics/data/login-virgilio-it/tracking_login-virgilio-it.min.js

54.230.111.46

200 OK

0 B

URL HTTP/2
i4.plug.it/iplug/js/lib/iol/analytics/data/login-virgilio-it/tracking_login-virgilio-it.min.js
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /iplug/js/lib/iol/analytics/data/login-virgilio-it/tracking_login-virgilio-it.min.js HTTP/1.1
Host: i4.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 30 Jan 2023 22:26:29 GMT
cache-control: public, max-age=1200
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4UGx0e2sofPq__2-GU11IIbIB_LiWK85N5RObHYmxiGP3iQ7285ehg==
age: 1408
X-Firefox-Spdy: h2

i4.plug.it/iplug/js/lib/iol/analytics/engine/IOL.Analytics.Tracking.min.js

54.230.111.46

200 OK

0 B

URL HTTP/2
i4.plug.it/iplug/js/lib/iol/analytics/engine/IOL.Analytics.Tracking.min.js
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /iplug/js/lib/iol/analytics/engine/IOL.Analytics.Tracking.min.js HTTP/1.1
Host: i4.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 30 Jan 2023 22:06:28 GMT
cache-control: public, max-age=1200
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W75bTbwyqSetJxN4I_JwgcwklDowjNn2vSrKU0aWq77o13mdlN1M2Q==
age: 2610
X-Firefox-Spdy: h2

cdn-gl.imrworldwide.com/novms/html/ls.html

54.230.111.95

200 OK

0 B

URL HTTP/2
cdn-gl.imrworldwide.com/novms/html/ls.html
IP
54.230.111.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /novms/html/ls.html HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 28 Sep 2022 14:09:00 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: kefD87rpNa3sUBHNjAEOkjjRzic54A4V
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 22:24:45 GMT
cache-control: max-age=86400
etag: W/"7fa83dfc7b78314b137e2eb13834daa7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QBvFZ-T0GSUcaZ2lD32p2oHfB1gQRvl_wEwLiNQE0tleg9o93P_MRQ==
age: 1515
X-Firefox-Spdy: h2

www.iolam.it/js/iam2.0.js?ns=virgilio/web/webmail/login/1.1

213.209.30.161

200 OK

0 B

URL HTTP/2
www.iolam.it/js/iam2.0.js?ns=virgilio/web/webmail/login/1.1
IP
213.209.30.161:0
ASN
#8660 Italiaonline S.p.A.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/iam2.0.js?ns=virgilio/web/webmail/login/1.1 HTTP/1.1
Host: www.iolam.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
server: Apache
strict-transport-security: max-age=63072000;
accept-ranges: bytes
x-original-content-length: 260022
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 31 Jan 2023 21:23:42 GMT
cache-control: max-age=81223
x-content-type-options: nosniff
content-type: application/javascript
X-Firefox-Spdy: h2

cdn.iubenda.com/cs/tcf/v2/vendorlist.181.json

138.199.37.229

200 OK

0 B

URL HTTP/2
cdn.iubenda.com/cs/tcf/v2/vendorlist.181.json
IP
138.199.37.229:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cs/tcf/v2/vendorlist.181.json HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://login.virgilio.it
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
content-type: application/json
vary: Accept-Encoding
server: BunnyCDN-DE1-865
cdn-pullzone: 954456
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=10800
etag: W/"63d37692-c2c4"
last-modified: Fri, 27 Jan 2023 07:00:34 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/27/2023 11:03:41
cdn-edgestorageid: 1075
cdn-status: 200
cdn-requestid: 8b1a77dc0cc7327816aa0c3737245dd9
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

i1.plug.it/mail/login/2020/virgilio/css/style.css?01022022

54.230.111.46

200 OK

0 B

URL HTTP/2
i1.plug.it/mail/login/2020/virgilio/css/style.css?01022022
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mail/login/2020/virgilio/css/style.css?01022022 HTTP/1.1
Host: i1.plug.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css
server: nginx
date: Mon, 30 Jan 2023 22:49:23 GMT
cache-control: public, max-age=86400
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q-OqrGIdqt5e4oQL2TZrLnmpEdzeH0T36hki-VROnYYFEm0mEbDYFA==
age: 34
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@300;400;500&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@300;400;500&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Roboto:wght@300;400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://i1.plug.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 22:49:58 GMT
date: Mon, 30 Jan 2023 22:49:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.iubenda.com/cs/iubenda_cs.js

138.199.37.229

200 OK

0 B

URL HTTP/2
cdn.iubenda.com/cs/iubenda_cs.js
IP
138.199.37.229:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /cs/iubenda_cs.js HTTP/1.1
Host: cdn.iubenda.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://login.virgilio.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 30 Jan 2023 22:49:58 GMT
content-type: application/javascript
server: BunnyCDN-DE1-865
cdn-pullzone: 954456
cdn-uid: a7bd0c3f-43db-400a-80e2-073f933f3c99
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
etag: "63d37692-136"
last-modified: Fri, 27 Jan 2023 07:00:34 GMT
p3p: CP="DSP NOI COR", policyref="http://www.iubenda.com/w3c/p3p.xml"
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/27/2023 11:03:40
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: b49ee6248dcc823b14a29efb160c08c2
cdn-cache: HIT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML