traslochiverona.org/
81.29.220.37200 OK 4.4 kB IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1132)
Hash fa3efae9f437352206d7acf2a9fcf565
4f6aedabf7a51a91686b2ce814a869b7123fa21a
620e02624aa25578f9caf89118287a4f7d5281d6f10b3d68a5b6dd3592a5f50b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:11 GMT
Content-Encoding: gzip
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7306
Expires: Wed, 25 Jan 2023 11:01:45 GMT
Date: Wed, 25 Jan 2023 08:59:59 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14228
Expires: Wed, 25 Jan 2023 12:57:07 GMT
Date: Wed, 25 Jan 2023 08:59:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 08:42:47 GMT
content-type: application/json
age: 1032
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10265
Expires: Wed, 25 Jan 2023 11:51:04 GMT
Date: Wed, 25 Jan 2023 08:59:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ytQ3QnvrvvDGcVdN3TJT/zrUPRKpRVOrneIYGxuhBPbz59kFM5XErus7uxUznwSRph7MNm3e8DM=
x-amz-request-id: 8TXP4A0ZYBJ9RYV4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 08:19:36 GMT
age: 2424
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 09:00:00 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
traslochiverona.org/style/reset.css?12-0-8-29
81.29.220.37200 OK 449 B URL HTTP/1.1 traslochiverona.org/style/reset.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
Hash 33d57641ef02e5ebf311400b111b3f10
229bbbcef94749a37e3185e2e3b3755d39112f06
c38aee5436bbca93dfbe226ae88eac70bb62d90573e6415577f4e2d9de17dac1
GET /style/reset.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/style/style.css?12-0-8-29
81.29.220.37200 OK 2.9 kB URL HTTP/1.1 traslochiverona.org/style/style.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (12356), with no line terminators
Hash 2d7a5b49e6304689593d3360c4b92e22
a8e14a4711e36d9798d5520ad8cd4fb0e489f8da
4e53e87716d4c17cf5e6b8fc1f81f13a9b33aa17d8cb9419315a3c2f29f91716
GET /style/style.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/style/template.css?12-0-8-29
81.29.220.37200 OK 847 B URL HTTP/1.1 traslochiverona.org/style/template.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
Hash 7f98f330027f51b7946e1346603b4aac
84c382248f2ba6760383c029929faa08cdab27a3
d36e60cf0a6854254fd34d7ac410c09f21adc02129d5dc319ef6a6594ec339b5
GET /style/template.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/res/x5engine.js?12-0-8-29
81.29.220.37200 OK 3.0 kB URL HTTP/1.1 traslochiverona.org/res/x5engine.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type HTML document, ASCII text, with very long lines (6070), with no line terminators
Hash a215903e88414cad66647380a4cde4b5
92f58175b6c5a92df578acfc4315a5694ce63dd2
96b6ed749101096319509cc1a040925c2e114da4cc85b351e81846e32a85208a
GET /res/x5engine.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:18 GMT
Content-Encoding: gzip
traslochiverona.org/style/menu.css?12-0-8-29
81.29.220.37200 OK 2.2 kB URL HTTP/1.1 traslochiverona.org/style/menu.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (4610)
Hash 94ff777b6542f4ad598d9aad4ec0cd59
8669303ba0e60e9fb67f1dc6605e8f5221187ce9
85127520ec5f53073aa05bfee247081e80beaaf2c8550860d8a20971a4ff57cd
Analyzer Verdict Alert fortinet Malware
GET /style/menu.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/files/cookiechoices.js
81.29.220.37200 OK 3.1 kB URL HTTP/1.1 traslochiverona.org/files/cookiechoices.js
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (2237)
Hash 97cc04a77d7efaa967d7e44a836592ed
bb472e13ab6b772bd4c62a6964700f2af4d737fe
5693e2af11aba2e6b988fddd4e370226352bce9b9a451d95a42823e5f750023f
Analyzer Verdict Alert fortinet Malware
GET /files/cookiechoices.js HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Content-Encoding: gzip
traslochiverona.org/pcss/index.css?12-0-8-29-636459585652706499
81.29.220.37200 OK 2.6 kB URL HTTP/1.1 traslochiverona.org/pcss/index.css?12-0-8-29-636459585652706499
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
Hash 22464c2e7eab0b4591e24657f11bb96a
53f18d70b58439fe558534da8d8f181f8c7465ca
93a4df66ae52f22fb66a0a8ceb6116a0e081dd45113b0c2c89169623859d70e7
Analyzer Verdict Alert fortinet Malware
GET /pcss/index.css?12-0-8-29-636459585652706499 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:15 GMT
Content-Encoding: gzip
traslochiverona.org/res/jquery.js?12-0-8-29
81.29.220.37200 OK 34 kB URL HTTP/1.1 traslochiverona.org/res/jquery.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (32072)
Hash 237f846d64594c9010d93a2b54c2cb21
fc79afb2627228b0252ac043a4fb8ffcb7a19a54
b6efc2b56c60392509a261e142108b2cd2248df6473c31d483746b83ab87d814
Analyzer Verdict Alert fortinet Malware
GET /res/jquery.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Content-Encoding: gzip
traslochiverona.org/style/print.css?12-0-8-29
81.29.220.37200 OK 281 B URL HTTP/1.1 traslochiverona.org/style/print.css?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type assembler source, ASCII text
Hash cb08bef452f75390185d2aac426b8708
a5a6612830c8cfcab0d7fb0a0f7b545b139e2d3a
994d039cd93aa1e2950f3cff4c45eeb98dce1f358fcf2d41817409f9ec778d10
GET /style/print.css?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/images/traslochi-verona-mezzi.jpg
81.29.220.37200 OK 7.6 kB URL HTTP/1.1 traslochiverona.org/images/traslochi-verona-mezzi.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 210x210, components 3\012- data
Hash 7190c3da28f1c392e504eb5487e78e24
821f6aa8ced918dc148ee63132311c73cb15f62b
ec0e53f6c43e84a9233ed25f0fa0e994d77c1d116c3d1e9e27bd763dc0b176ba
GET /images/traslochi-verona-mezzi.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 7569
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/preventivo-vr.jpg
81.29.220.37200 OK 4.4 kB URL HTTP/1.1 traslochiverona.org/images/preventivo-vr.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 160x48, components 3\012- data
Hash 7cfcab514168ea0b6a28b5028412c256
41578cbb6693f429607c210f0ecc97994b183dcc
9a2174b2823d455cd98eb6e50cf902477c47d83082517be3debe0c97403f7332
GET /images/preventivo-vr.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 4359
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/telefono-traslochi-verona.jpg
81.29.220.37200 OK 3.6 kB URL HTTP/1.1 traslochiverona.org/images/telefono-traslochi-verona.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 160x53, components 3\012- data
Hash d43478ea89ac2dd17457a1a9519ed300
946d0d5d7c321b329233fc9c418fda679cadcb9a
2866f8afe169f52f1bc44f878279cee4a20faed90c4f8cee0a99ac6c2cab8609
GET /images/telefono-traslochi-verona.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 3590
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/preventivo-vr-1.jpg
81.29.220.37200 OK 3.1 kB URL HTTP/1.1 traslochiverona.org/images/preventivo-vr-1.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 160x48, components 3\012- data
Hash 965307d776820c4aa6a2dfd3577bcb7d
3f5910be1f5e048d07ebbbd67f59e571eb4a445c
bcd18498bb7695e69a74e9d7f294593eb5856229164c07c0ec8ff730eabadef0
GET /images/preventivo-vr-1.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 3080
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/traslochi-verona-montacarichi.jpg
81.29.220.37200 OK 13 kB URL HTTP/1.1 traslochiverona.org/images/traslochi-verona-montacarichi.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 210x210, components 3\012- data
Hash d786acf2be463c0fca2915991a31302b
be24ec6c6f8926ca00ece1517cef97addcf768e3
80e709d404f6c3ba1c41a2400a34ccaa1570d864220f9c7998fd7024106c922b
GET /images/traslochi-verona-montacarichi.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 12987
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:14 GMT
Accept-Ranges: bytes
traslochiverona.org/images/traslochi-verona-logo1.jpg
81.29.220.37200 OK 13 kB URL HTTP/1.1 traslochiverona.org/images/traslochi-verona-logo1.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 210x210, components 3\012- data
Hash 12ff7f157b4f543c995b4c12abd6ab46
9a74c7decc6ae77d1269101e0f149b433328b36b
70efe0b9b9c3169b3d776b664179c1cb0e1fd4d3a8800782e02b07687cdc6ace
GET /images/traslochi-verona-logo1.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 13238
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/images/traslochi-verona-logo.jpg
81.29.220.37200 OK 12 kB URL HTTP/1.1 traslochiverona.org/images/traslochi-verona-logo.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 210x210, components 3\012- data
Hash 9204db63066c0caaf089155c43b07aaa
85b5aac21d4087e01c8e9a9cd74b6716709c36ea
92a45f43ba1424b78c7483145a4cb6d0e81b6d5f8fa1f8e3d5bb28c7e9791653
GET /images/traslochi-verona-logo.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 11542
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/style/top.png
81.29.220.37200 OK 31 kB URL HTTP/1.1 traslochiverona.org/style/top.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 899 x 200, 8-bit/color RGBA, interlaced\012- data
Hash 72c9a000a31955751fa66df53d61f26b
d9d29438cd7f85b590b7cfa243952ee8508f18fb
32a00dd581b1cc93b32aa195d5d1ad14f4ebd7338771e034904cd6ee42e7ced4
GET /style/top.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/template.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/png
Content-Length: 31219
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:20 GMT
Accept-Ranges: bytes
traslochiverona.org/style/bg.jpg
81.29.220.37200 OK 14 kB URL HTTP/1.1 traslochiverona.org/style/bg.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 952x1000, components 3\012- data
Hash 4c85e2fb07d95473404ed4a49ba949f8
7db923263b7cd79caf81ab7bba0798df6e79708b
a6458f4a02f1ed386eab9234a9f325b1a58fe333ef8a78f122aa19aea2eb7c16
GET /style/bg.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/template.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 13731
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Accept-Ranges: bytes
traslochiverona.org/res/imsearch.png
81.29.220.37200 OK 3.6 kB URL HTTP/1.1 traslochiverona.org/res/imsearch.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash e0920e85853ae31f7cbaf21dd016cf2a
1b9a6fecee7ee88dfde140e0dbe8093493127e12
d5f8f47c5da94a4b62da459524a31e62a81962ead9dc071485c1acdc01e7a9f2
GET /res/imsearch.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/png
Content-Length: 3559
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Accept-Ranges: bytes
traslochiverona.org/images/foto-attaccate-traslochi-verona.jpg
81.29.220.37200 OK 29 kB URL HTTP/1.1 traslochiverona.org/images/foto-attaccate-traslochi-verona.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 350x280, components 3\012- data
Hash 60dc72ae059b6a196be333d47a01cd11
8f1a8a16a6c37e9e86cd8be7a4539f35521aa216
a0f9ba1fcdb2f624e605948bc339e94cd89451924b7e84c41eeeac9b02962739
GET /images/foto-attaccate-traslochi-verona.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 29362
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:13 GMT
Accept-Ranges: bytes
traslochiverona.org/menu/hor_main_c.png
81.29.220.37200 OK 226 B URL HTTP/1.1 traslochiverona.org/menu/hor_main_c.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 140 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 4bfb460cbc2581320a1f0aaa58019154
39494760e970c15cd0481f80d12b84213418f4b1
7bf6daa7bf228e438a9d8ac44ffed57e47ac0e988d4665551f2978119f132852
GET /menu/hor_main_c.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/menu.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/png
Content-Length: 226
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:14 GMT
Accept-Ranges: bytes
traslochiverona.org/menu/hor_main.png
81.29.220.37200 OK 214 B URL HTTP/1.1 traslochiverona.org/menu/hor_main.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 140 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 67d53a398a4cd43865d8c09156a58191
2d8afe818a9da1ac9dbb83ff93096ce9bc391bf7
78fd304bca651d2e1571c6783b54613c97cb5607043dda9162dcdce8e7c9841a
GET /menu/hor_main.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/menu.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/png
Content-Length: 214
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:14 GMT
Accept-Ranges: bytes
traslochiverona.org/res/swfobject.js?12-0-8-29
81.29.220.37200 OK 4.9 kB URL HTTP/1.1 traslochiverona.org/res/swfobject.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (11520)
Hash 36228c51eee14e48635bfa4262b0826d
1904bc98d7b3cfcf82f13c1553526b6834e2ec17
354bc75c51040eaab42b137f2068087811712247dccb37d57a5bc446e77282b9
Analyzer Verdict Alert fortinet Malware
GET /res/swfobject.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Content-Encoding: gzip
traslochiverona.org/res/l10n.js?12-0-8-29
81.29.220.37200 OK 9.9 kB URL HTTP/1.1 traslochiverona.org/res/l10n.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type Unicode text, UTF-8 text, with very long lines (3127)
Hash bd3f4f81bb198b4702807d6b2642b18e
3fbbf139340517488ab01586082cccd16b0c659c
37cbac10a1d20d55a59d8fd178a8bc55b2fe34957473909bca29aaf12caacca9
Analyzer Verdict Alert fortinet Malware
GET /res/l10n.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Content-Encoding: gzip
traslochiverona.org/res/x5settings.js?12-0-8-29
81.29.220.37200 OK 2.4 kB URL HTTP/1.1 traslochiverona.org/res/x5settings.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (2237)
Hash 30548fb297ded69a8d9b01b8f6a65e95
4b3b6b44465e74597416830e54902f8acb88c5bc
ec70f7af75b35264316f42260734b196d492aac78b96ffdea64005093278e661
Analyzer Verdict Alert fortinet Malware
GET /res/x5settings.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:18 GMT
Content-Encoding: gzip
traslochiverona.org/style/bottom.png
81.29.220.37200 OK 1.1 kB URL HTTP/1.1 traslochiverona.org/style/bottom.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 899 x 25, 8-bit/color RGBA, interlaced\012- data
Hash d8f72dd10f6efd64ceac8c28fad1f006
a57a0f5d0d1d4972340a6777af539b5e3abf2eef
366025e43c591f5b80e740c4f4572cbed2919b0db6589913fbf4ca3251bd8494
GET /style/bottom.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/style/template.css?12-0-8-29
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/png
Content-Length: 1121
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:19 GMT
Accept-Ranges: bytes
traslochiverona.org/res/x5cartengine.js?12-0-8-29
81.29.220.37200 OK 15 kB URL HTTP/1.1 traslochiverona.org/res/x5cartengine.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type Unicode text, UTF-8 text, with very long lines (32775)
Hash 3ec50db0f38e313160e03ad5b68ecd3d
8f92decf445a08c0f13f1571fdcbb187b3f8832c
25f40b69a5b98cc90f3617b18d8b03e44c5cdf2055ae99bcc935482d4026bd7c
Analyzer Verdict Alert fortinet Malware
GET /res/x5cartengine.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:17 GMT
Content-Encoding: gzip
traslochiverona.org/res/x5engine.deferrable.js?12-0-8-29
81.29.220.37200 OK 74 kB URL HTTP/1.1 traslochiverona.org/res/x5engine.deferrable.js?12-0-8-29
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type ASCII text, with very long lines (32769)
Hash aa38dd2da8260b62a0c0324208c15b19
01202ab9129e6142c71404e6cdbaa929ab211948
cd39bcf0b4c368934cda9aa0edc74a8dea1feccd918fb414bbf463acfba23fa1
Analyzer Verdict Alert fortinet Malware
GET /res/x5engine.deferrable.js?12-0-8-29 HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 13 May 2022 16:08:18 GMT
Content-Encoding: gzip
www.google-analytics.com/ga.js
142.250.74.46200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Wed, 25 Jan 2023 07:34:31 GMT
Expires: Wed, 25 Jan 2023 09:34:31 GMT
Cache-Control: public, max-age=7200
Age: 5129
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
traslochiverona.org/favicon.ico
81.29.220.37404 Not Found 238 B URL HTTP/1.1 traslochiverona.org/favicon.ico
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7
GET /favicon.ico HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 404 Not Found
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 08:41:40 GMT
age: 1100
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
traslochiverona.org/res/imLoad.gif
81.29.220.37200 OK 3.2 kB URL HTTP/1.1 traslochiverona.org/res/imLoad.gif
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type GIF image data, version 89a, 32 x 32\012- data
Hash a51c5608d01acf32df728f299767f82b
2eb3f9f430fb2a6267e0d252129ef6473d074f37
aebc793d0064383ee6b1625bf3bb32532ec30a5c12bf9117066107d412119123
GET /res/imLoad.gif HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.630633766.1674637199.1674637199.1674637199.1; __utmb=248890690.1.10.1674637199; __utmc=248890690; __utmz=248890690.1674637199.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/gif
Content-Length: 3208
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Accept-Ranges: bytes
traslochiverona.org/gallery/barra-home-traslochi-verona.jpg
81.29.220.37200 OK 35 kB URL HTTP/1.1 traslochiverona.org/gallery/barra-home-traslochi-verona.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 681x200, components 3\012- data
Hash 1b197709d6099f8341482cc80467a10a
837e465c406edb7e5e9946bb3c5850f16cac6101
acc6e985f53a64a0c603d43f9818932a9cab9ab43f346c5b6c3a680b5e2e54fe
GET /gallery/barra-home-traslochi-verona.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.630633766.1674637199.1674637199.1674637199.1; __utmb=248890690.1.10.1674637199; __utmc=248890690; __utmz=248890690.1674637199.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 35213
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Accept-Ranges: bytes
traslochiverona.org/menu/hor_main_h.png
81.29.220.37200 OK 212 B URL HTTP/1.1 traslochiverona.org/menu/hor_main_h.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 140 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash a46b92722a1b5faf1ffbcb2bd044d1ad
e04dea194c2dc7c4d7731ce6320e7a2f1daec238
24356964102835aee960039c6f52288aa729556b426ecb6422c54c1fa3745ac2
GET /menu/hor_main_h.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.630633766.1674637199.1674637199.1674637199.1; __utmb=248890690.1.10.1674637199; __utmc=248890690; __utmz=248890690.1674637199.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/png
Content-Length: 212
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:14 GMT
Accept-Ranges: bytes
traslochiverona.org/res/imClose.png
81.29.220.37200 OK 3.9 kB URL HTTP/1.1 traslochiverona.org/res/imClose.png
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 7cd638c3f10f63d9c8bf7df17de04dba
ad8865d4f4767eb6d850efb1847f3d9bd84d8684
d0076ba4f551fb5e1d2b56fe2541e90fa1d0d176c8c297ae2d670749231f1da8
GET /res/imClose.png HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.630633766.1674637199.1674637199.1674637199.1; __utmb=248890690.1.10.1674637199; __utmc=248890690; __utmz=248890690.1674637199.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/png
Content-Length: 3858
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:16 GMT
Accept-Ranges: bytes
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=350162632&utmhn=traslochiverona.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=.%3A%20TRASLOCHI%20VERONA%20%3A.&utmhid=135803463&utmr=-&utmp=%2F&utmht=1674637198699&utmac=UA-29374795-5&utmcc=__utma%3D248890690.630633766.1674637199.1674637199.1674637199.1%3B%2B__utmz%3D248890690.1674637199.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1108362935&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.46200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=350162632&utmhn=traslochiverona.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=.%3A%20TRASLOCHI%20VERONA%20%3A.&utmhid=135803463&utmr=-&utmp=%2F&utmht=1674637198699&utmac=UA-29374795-5&utmcc=__utma%3D248890690.630633766.1674637199.1674637199.1674637199.1%3B%2B__utmz%3D248890690.1674637199.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1108362935&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.46:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=350162632&utmhn=traslochiverona.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=.%3A%20TRASLOCHI%20VERONA%20%3A.&utmhid=135803463&utmr=-&utmp=%2F&utmht=1674637198699&utmac=UA-29374795-5&utmcc=__utma%3D248890690.630633766.1674637199.1674637199.1674637199.1%3B%2B__utmz%3D248890690.1674637199.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1108362935&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Wed, 25 Jan 2023 09:00:00 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
traslochiverona.org/gallery/barra-home-traslochi-verona1.jpg
81.29.220.37200 OK 32 kB URL HTTP/1.1 traslochiverona.org/gallery/barra-home-traslochi-verona1.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 681x200, components 3\012- data
Hash 121820d6ef303b9855e80aea80d3ae03
6083b09b74fa0e86047f4712a0777da89d3552bd
8564f505d95cd73e08465101a486085fa93be05874155a572bf457027646cd76
GET /gallery/barra-home-traslochi-verona1.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.630633766.1674637199.1674637199.1674637199.1; __utmb=248890690.1.10.1674637199; __utmc=248890690; __utmz=248890690.1674637199.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 32336
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Accept-Ranges: bytes
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16242
Expires: Wed, 25 Jan 2023 13:30:42 GMT
Date: Wed, 25 Jan 2023 09:00:00 GMT
Connection: keep-alive
traslochiverona.org/gallery/barra-home-traslochi-verona2.jpg
81.29.220.37200 OK 38 kB URL HTTP/1.1 traslochiverona.org/gallery/barra-home-traslochi-verona2.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 681x200, components 3\012- data
Hash 32342c30db0be834d7ec40d37a52f703
07140bf092f7fd83ad1a85bb2b4064f35d0f71f5
ebaf4821af28737c22953656e57d43e0ff4fd63882a1055f525178ed929294bd
GET /gallery/barra-home-traslochi-verona2.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.630633766.1674637199.1674637199.1674637199.1; __utmb=248890690.1.10.1674637199; __utmc=248890690; __utmz=248890690.1674637199.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 37516
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Accept-Ranges: bytes
traslochiverona.org/gallery/barra-home-traslochi-verona2-.jpg
81.29.220.37200 OK 38 kB URL HTTP/1.1 traslochiverona.org/gallery/barra-home-traslochi-verona2-.jpg
IP 81.29.220.37:0
ASN #15830 Telecitygroup International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 681x200, components 3\012- data
Hash bedd0e464a2a5d05cadf9d1ecf3d27e7
aeec8fa864d282a802b7392f3dada63bf18ca5e8
ec4b33509a6f92608708cda0caca40953b2707023f911cbd8d31408f7016d44d
GET /gallery/barra-home-traslochi-verona2-.jpg HTTP/1.1
Host: traslochiverona.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traslochiverona.org/
Cookie: __utma=248890690.630633766.1674637199.1674637199.1674637199.1; __utmb=248890690.1.10.1674637199; __utmc=248890690; __utmz=248890690.1674637199.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 25 Jan 2023 08:59:59 GMT
Content-Type: image/jpeg
Content-Length: 37743
Connection: keep-alive
Last-Modified: Fri, 13 May 2022 16:08:12 GMT
Accept-Ranges: bytes
push.services.mozilla.com/
44.240.124.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.124.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nDtyD3SwaA28WHH3BAf1OA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mF3NnwzXU73wGphKEFszdyyJWU4=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4087
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 09:00:02 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4087
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 09:00:02 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4087
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 09:00:02 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4087
Expires: Wed, 25 Jan 2023 10:08:09 GMT
Date: Wed, 25 Jan 2023 09:00:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 07:33:54 GMT
age: 5168
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b458c619b07de23b3620f392b0f56f6
e45a3cfee589406e1ea0f1ebd6e8d321487474e1
9927c7a8e606180964b6e052e1eb2bacb007d05a46c1f04e28c48a74096d3c03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5974ff5e-ff49-4276-8943-5768c589b551.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8736
x-amzn-requestid: 65bdef1c-0389-4d16-b5fd-931d4753d75d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBYVuF_4oAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca0757-1569aec44c54b7c87663feae;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 03:15:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3fzmJ8iZrVvBDurLOdAJXB6uuvk6KHvIBuKzMKAMSjKUzWICg1cCjQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:47:09 GMT
age: 11573
etag: "e45a3cfee589406e1ea0f1ebd6e8d321487474e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb6c1403a1d3c878c08ccaf17f8b3d0a
7596b783e0da5fba63c49374933eccffc223d729
1524dbef51237950d4a14a0e2e053fad933dd92ee0831e2de5c45513122f1d58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33050e82-3c0a-40d6-a722-e4ff96872edc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6026
x-amzn-requestid: 4b05d7f7-783f-4a79-9eed-bbbeb53bc677
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRQ-QHmZIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d061f4-721f473c5c8dadd163ca7689;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 22:55:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uuhyzrUcYv-zqjLZvGNYsUuAhCW2vkKpEhQQKlmfSgHDtKz0jD2PNQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 23:18:31 GMT
age: 34891
etag: "7596b783e0da5fba63c49374933eccffc223d729"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59be5df3-0d3c-4611-9b91-9ce5041a7a57.jpeg
34.120.237.76200 OK 3.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59be5df3-0d3c-4611-9b91-9ce5041a7a57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbbcba4403c1ea4e45ff47894d66e984
8555e8d6a38b78829a7dd2f10eb99bdbb254d89a
c9acd732889f9a58b085ceee3ceb8040fedb1e85ddb9f5b933960472c2f8d147
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59be5df3-0d3c-4611-9b91-9ce5041a7a57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3109
x-amzn-requestid: 89df621b-47d8-4127-8e4f-8e57f3244419
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKV9hFNKIAMFtlg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cd9d23-0b4c0b5d2bf8c22b2ada0e9c;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 20:31:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: B62xY4rlFNdJGd5ethwkCIwQTsegDVJy6s7OptIr1g_E8GvwttW2sQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 10:04:44 GMT
age: 82518
etag: "8555e8d6a38b78829a7dd2f10eb99bdbb254d89a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6254fc1aaa5fbb1d87114b5b28d52c40
8d7bd3af0b9bfc3d3eb2751cb1ba211169eaefe8
866e0b364026754b2a88d73da5ccabf5b5df59fb75bc60b3aa5c66e8322ee764
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2130ca0-4287-4def-9d97-00fdb518ced4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7691
x-amzn-requestid: ee5858ec-ae6b-4a83-81f0-84903bea9786
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLP5HGwRIAMF2Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdf9d3-1b9f899e1d9e9ba67adbeeac;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 03:06:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 59rOv8-DhAIGQx240tISV3X6FskvU33S-4LVzv8fP45qQilEpp2VwQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 04:11:49 GMT
age: 17293
etag: "8d7bd3af0b9bfc3d3eb2751cb1ba211169eaefe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7d50173f78bef1429160a353679dd91
695d7913e35a7e086d76c38d7c6f43462b0896df
4c761d1f9fd523750102aea0cce3f8c3cd92918d4c59853415745278292afa4b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc3762f9-ecc0-4ad9-9272-0a3e8e55d247.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6231
x-amzn-requestid: 85406169-05a4-4ba9-8a20-5ed2badec48a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEXPmGB_oAMF7Zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb38ca-607a23df395511207f5958cd;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 00:58:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t8iFgYP3qA9gX0Cr2RgSJzQZ3QNTBHyEKwmKqYYx9EXdM60WOp6AaQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 06:25:50 GMT
age: 9252
etag: "695d7913e35a7e086d76c38d7c6f43462b0896df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2