Report - webmail.macelleriadelcorso.biz/

Report Overview

Submitted URL
webmail.macelleriadelcorso.biz/
IP
146.59.214.72
ASN
#16276 OVH SAS
Submitted
2023-03-27 21:10:26
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	238 B	34.117.65.55
webmail.sistemitre.it	unknown	2016-08-08T22:04:52Z	2023-03-27T23:10:16Z	9.3 kB	452 kB	146.59.214.74
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.8 kB	61 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.7 kB	7.1 kB	23.36.76.226
webmail.macelleriadelcorso.biz	unknown	2016-08-08T12:30:41Z	2023-03-29T05:10:06Z	362 B	405 B	146.59.214.72
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-29T08:59:28Z	340 B	964 B	104.18.32.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-27 21:10:34	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-03-27 21:10:34	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	webmail.sistemitre.it/webmail/login/	94 B	2023-03-07	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:35 Last Seen2023-04-01 10:25:03 Times Seen14 Hash 37f167f22ea42843e1acfd39b5c91dae 82dd2a78c07c40e96a1de4aa725f13d3522f77a0 f4d4b82919fd8afdf98e564ba21f3c3a99edb0f9fdaba4cb949eded221ef7a61 Loading...

	webmail.sistemitre.it/webmail/login/	59 B	2023-03-07	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:35 Last Seen2023-04-01 10:25:03 Times Seen14 Hash c06e362c392ab5d5db6d9e27c65fe816 158fc8685d56ee1b017b025e64940c7ea05c1b4c 0ab5a1d0cec819164f34f18ab45abbd0db59ad5d0e1af2652d2422b2aba959ff Loading...

	webmail.sistemitre.it/webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb	2.7 kB	2023-03-13	2023-12-01
Pretty URL webmail.sistemitre.it/webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash 4d64b47bf922fc4c87710bb69bc54d64 63f262de01e3dfc894fb88b8eb754da13f97b97d a55db4d7df0c120c7002c5c605caa5aa33360177beb889a0cbc9ed80836bc102 Loading...

	webmail.sistemitre.it/webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb	54 B	2023-03-08	2023-12-27
Pretty URL webmail.sistemitre.it/webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:21:06 Last Seen2023-12-27 14:10:42 Times Seen35 Hash 567cafe78a87b0aee28c50993b92daab e493300134759a69eaa60128dc07133738d6ac97 68ec0a063e394fab883e5f22623125d38cedafaeabd7aca07e6c408358ebb1d3 Loading...

	webmail.sistemitre.it/weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb	28 kB	2023-03-08	2024-01-31
Pretty URL webmail.sistemitre.it/weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:21:06 Last Seen2024-01-31 00:19:14 Times Seen41 Hash ccf5e8687b20b29a55b320a458de7e84 b5d996714a2972938a1de0398d02acf3f54810e7 4e3470ec56712664defb271ebd315467e001270f78bcfadf9ce794e400649588 Loading...

	webmail.sistemitre.it/weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb	25 kB	2023-03-08	2023-12-27
Pretty URL webmail.sistemitre.it/weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 09:21:06 Last Seen2023-12-27 14:10:42 Times Seen35 Hash 95c0baeb9329e3566fc25975f5f68f14 c1dbff1971be3d19acdf49f16e5237b10bd55d31 3e35cfb3ff01c0c51c11a124acd7cf8a88622068291eb7275404b6457a460383 Loading...

	webmail.sistemitre.it/webmail/login/	540 B	2023-03-07	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:35 Last Seen2023-04-01 10:25:03 Times Seen14 Hash 787c86c9b20745959f839121fd180f6d 6ba24581d778396677cd1e7ca2350c188f0334af a8c34b888a530253bb3e651d2d3742e37fe8776bec861ab43dea3b8c9d983cc9 Loading...

	webmail.sistemitre.it/webmail/login/	856 B	2023-03-07	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:35 Last Seen2023-04-01 10:25:03 Times Seen14 Hash c0d4266d3a965f351b7eafae3bf6e895 0c4ab022e00405ccf83f254a3b6ce85569d8458e 507a212f165f63def7fb98f4249343234cd0d5f2f2fa7cad4be231c1cb179a50 Loading...

	webmail.sistemitre.it/webmail/generatedDefaults.js	1.1 kB	2023-03-13	2023-11-02
Pretty URL webmail.sistemitre.it/webmail/generatedDefaults.js IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:45:24 Last Seen2023-11-02 07:10:35 Times Seen24 Hash 9e9095716ce593afe8724f5b5babc7df 95debf0c6faa185a4d151c83f8d49aff7e04ba45 6014ed7acd31bfd7ab16a02ef95ba30f363112fa42418b6b46c711ceff022fe1 Loading...

	webmail.sistemitre.it/webmail/login/	955 B	2023-03-13	2023-04-01
Pretty URL webmail.sistemitre.it/webmail/login/ IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:45:24 Last Seen2023-04-01 10:25:03 Times Seen12 Hash fe2c617fd6e22ee53460731cbb3707b2 09b517399d92967c33a29eaec86c1a7dd181d4e3 1d35712cff162317870693c7b002a97cf930342ec33b6780612386b1fde1ceb1 Loading...

	webmail.sistemitre.it/weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb	5.4 kB	2023-03-13	2023-12-01
Pretty URL webmail.sistemitre.it/weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash a178528ebfec063d3dcd61962b6af86c 99aea1bab460b7365ddc3289e221772ad68a452c bb5e9926f96157657cbd26558c26f2aa0f906c650bdc64321fe96e3c324c1f91 Loading...

		Size	First Seen	Last Seen
	#1 Write - 7d6d28d8e229b1f69e3b732e1ac9b8b6	106 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash 7d6d28d8e229b1f69e3b732e1ac9b8b6 bb9a9d3114e477cbb7244e433431e1c42ff895a8 e1d0447715e4a96d5cef857206681579ff195e04f23ee943e0efffe28e349571 Loading...

	#2 Write - d00a4e2c044fc97dcb9518a61b5fde66	109 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash d00a4e2c044fc97dcb9518a61b5fde66 66878e5b2f2581ef6ee23c1e603f57e272599ad7 7522966cd1416a9ea3a7e2a778663e8143a852168a100d0929fe4ce18730102a Loading...

	#3 Write - f04619debfdbdd7f798c4a910c7c4147	109 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:54 Times Seen27 Hash f04619debfdbdd7f798c4a910c7c4147 f7b78fec7461f157275afd048d05910041d737f7 7bec794d7697d571d4fecb11bb6134e00d68fdb5055e933f2a13c94db814b308 Loading...

	#4 Write - 65b76616706037d3d70663ba0ed5b93a	108 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:54 Times Seen27 Hash 65b76616706037d3d70663ba0ed5b93a 7b67252adb0ce9cd0791046b326314ebfc0e310e d5cb441769e7194e2b3c37a54591e548ff538e04cc58ac121c5044bb9138b60c Loading...

	#5 Write - 0293054decd28fc4789e4aceae3102ce	113 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:54 Times Seen27 Hash 0293054decd28fc4789e4aceae3102ce 275305127c70cab7a090c294180ac72032f3c87d 30378a918eb96f4f8ced59be64ffd2db22021cd5c08d0c9179a6537722cd0f8f Loading...

	#6 Write - 7c50e274ad0c9a05a20f1d79959c1e07	109 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:54 Times Seen27 Hash 7c50e274ad0c9a05a20f1d79959c1e07 eab85da0fff24ff75ce7d5e1355354577438ab60 e8aa833e4d8c09d9f0179459cbf0de28727514676a9caa8182cc8f0930f9211d Loading...

	#7 Write - 8d6b8bbc9c8244a626dc7f49a46e2efb	120 B	2023-03-13	2023-12-01
Pretty Observations First Seen2023-03-13 07:45:24 Last Seen2023-12-01 15:49:53 Times Seen27 Hash 8d6b8bbc9c8244a626dc7f49a46e2efb cdd95c8f05c1d9348eec3d657ffd27ad4ffc9bf2 83760e2d6b0f4f1ba70e4c77340b5f2365531557144a5004268f84c6e653f1a4 Loading...

HTTP Transactions (42)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8" Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4480 Expires: Mon, 27 Mar 2023 22:24:55 GMT Date: Mon, 27 Mar 2023 21:10:15 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 911d74784325663a0d95b463b0e9ae9b 21e999229be584d8e42696bce71236ad5bcb9a25 f48cbe4d605e660a45267400e0add4f7bc7cd523c450376ecd8e3a7f094abf56 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F48CBE4D605E660A45267400E0ADD4F7BC7CD523C450376ECD8E3A7F094ABF56" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16901 Expires: Tue, 28 Mar 2023 01:51:56 GMT Date: Mon, 27 Mar 2023 21:10:15 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 4ad6984a756720fbfff47b37a75513a2 355e35258114452af8b9638985ed9d8ef3bf0aca 43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 27 Mar 2023 20:27:59 GMT content-type: application/json age: 2536 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5ad3eec59bebbf969f175627757507c1 b176af3a70db378c9e1f219bab24d9d446070d6f 704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11495 Expires: Tue, 28 Mar 2023 00:21:50 GMT Date: Mon, 27 Mar 2023 21:10:15 GMT Connection: keep-alive`

	webmail.macelleriadelcorso.biz/	146.59.214.72	301 Moved Permanently	153 B
URL HTTP/1.1 webmail.macelleriadelcorso.biz/ IP 146.59.214.72:0 ASN #16276 OVH SAS File type HTML document text\012- HTML document text\012- HTML document, ASCII text Size 153 B (153 bytes) Hash ee654b93f7bcdf2035c5c85fb5c3f6f7 507e39b12cdd77fcbf3e2062cd11246a1ebab246 d9f1a99835e1f3b8ee9f801b10facd49d96c20fad076ee8ef775d75a78e2b3ae HTTP Headers `GET / HTTP/1.1 Host: webmail.macelleriadelcorso.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=UTF-8 Location: https://webmail.sistemitre.it/ Server: Microsoft-IIS/8.5 X-Powered-By: ASP.NET X-Powered-By-Plesk: PleskWin Date: Mon, 27 Mar 2023 21:10:19 GMT Content-Length: 153`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: Q1yaafhEx540wmsKbBmhCuTenRg8BKgk5ynb2Yw3tNE27dMwOmXFAAjFX6l+7vSRLZ1jPTUnI+Y= x-amz-request-id: VJVC6SJ97TGS1BPQ x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 27 Mar 2023 20:55:55 GMT age: 861 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 27 Mar 2023 21:10:16 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a3242c27d5e1454c4ed0224a21b99fde d14f94d30b766f1e11284fb333529903e116718c e9f38284fdd9e5d9c19f16fe29db0d58bc68bd71c35aebfbcb80580417feefae HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E9F38284FDD9E5D9C19F16FE29DB0D58BC68BD71C35AEBFBCB80580417FEEFAE" Last-Modified: Sun, 26 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16629 Expires: Tue, 28 Mar 2023 01:47:25 GMT Date: Mon, 27 Mar 2023 21:10:16 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 27 Mar 2023 20:17:24 GMT age: 3172 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	push.services.mozilla.com/	34.117.65.55	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 34.117.65.55:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: vw67YndSfIyrH8RM7cHITQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: /xbVktfsp3pceo9KLys1c3EUKjA= Date: Mon, 27 Mar 2023 21:10:16 GMT Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	ocsp.sectigo.com/	104.18.32.68	200 OK	472 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 472 B (472 bytes) Hash 2bfc4d3977e410cb3e990c174264d40e 25eee53a5f7bc6404ef38b964d91cc135bee1879 83b7267e7c2f2730f19baa36cd2e89c74d943df04c4235b902520df97fa6aa3f HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 27 Mar 2023 21:10:16 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Mon, 27 Mar 2023 14:59:30 GMT Expires: Mon, 03 Apr 2023 14:59:29 GMT Etag: "25eee53a5f7bc6404ef38b964d91cc135bee1879" Cache-Control: max-age=581952,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb3 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7aea9e811e40b524-OSL`

	webmail.sistemitre.it/	146.59.214.74	301 Moved permanently	0 B
URL HTTP/1.1 webmail.sistemitre.it/ IP 146.59.214.74:0 ASN #16276 OVH SAS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 301 Moved permanently Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: application/octet-stream Date: Mon, 27 Mar 2023 21:10:16 GMT Keep-Alive: timeout=15, max=99 Location: /webmail/ Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/	146.59.214.74	301 Moved permanently	0 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/ IP 146.59.214.74:0 ASN #16276 OVH SAS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /webmail/ HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 301 Moved permanently Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: application/octet-stream Date: Mon, 27 Mar 2023 21:10:16 GMT Keep-Alive: timeout=15, max=98 Location: /webmail/login Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/login	146.59.214.74	301 Moved permanently	0 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/login IP 146.59.214.74:0 ASN #16276 OVH SAS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /webmail/login HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 301 Moved permanently Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: application/octet-stream Date: Mon, 27 Mar 2023 21:10:16 GMT Keep-Alive: timeout=15, max=97 Location: https://webmail.sistemitre.it/webmail/login/ Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	997 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type OpenPGP Secret Key\012- data Size 997 B (997 bytes) Hash 859280db7ae02c7fb5d1863ece11db08 d654fc2a28be481719a84121d15ea41885888ade fd3b101245bd0d25b4697d4ad103fea9293124c06041a47569c5710d3388a9a2 HTTP Headers `GET /webmail/login/defaults.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=99 Last-Modified: Sun, 26 Jun 2022 07:40:26 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/generatedDefaults.js	146.59.214.74	200 OK	617 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/generatedDefaults.js IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 617 B (617 bytes) Hash 6543b6f410d2a00b6d21d380ec04bdb4 7b6f0d0a040f60359a1eea6a15cb8326468b1e19 b64f9aade140a157c9724eb1da705ec85fe39994d9466262f73ea2bf3c5a7ed1 HTTP Headers `GET /webmail/generatedDefaults.js HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Mon, 27 Mar 2023 21:10:17 GMT Expires: Wed, 4 Jun 1980 06:02:09 GMT Keep-Alive: timeout=15, max=99 Pragma: no-cache Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block

	webmail.sistemitre.it/weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	2.0 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 2.0 kB (1981 bytes) Hash 811afcd33b7e7f30f44a7d6d3f5868f1 3be2f399121d73ec2c86a47c5807c5749425e957 5409d20d1dcbde04aea8bff584bbf51c6882dfa8a214251b513b8fac190d08f7 HTTP Headers `GET /weblib/int/login/index.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=98 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	1.3 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 1.3 kB (1341 bytes) Hash 92c6b7414356e6ed490caf503fcdcbc6 6d33b4804efb4c1bcedb512dd520574f344e0157 c7b26a9598d70d786534002074f3ec34b14f1cd8961f2dfcc6e259af60b96c04 HTTP Headers `GET /weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/css Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=97 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/connect/webmail2.css?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	255 B
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/connect/webmail2.css?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type OpenPGP Secret Key\012- data Size 255 B (255 bytes) Hash 8102d853579361ba45858a141aa89de8 be84fd697e959476982f841b8bad72719c6e050c dc48e085c5234f53f07730dc60cbc353ff1bc9b52318db9dc6319b80c9c3c8b6 HTTP Headers `GET /weblib/int/login/connect/webmail2.css?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/css Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=98 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	7.5 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 7.5 kB (7482 bytes) Hash 767a48818e5d9b3a33368a48269db555 f84b9fff11563727d29a4bf841ff02199856e4a8 e8548538f5278713d2a1be2afc3fad0649efc786936e504658f88f0e26f4f029 HTTP Headers `GET /weblib/int/lib/login.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=96 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	7.1 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 7.1 kB (7104 bytes) Hash 62463c88a541280f7381c720c9b6a75a 407f5eb455e53520a7a02ecae0cedf61e90f5ad4 a2095ff94890758ee54422822958343edbd009164609016df5d6cf3b56e80648 HTTP Headers `GET /weblib/int/login/script.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=97 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	58 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 58 B (58 bytes) Hash 16887ef4c7b7c7c232e2d69c036d6f20 df82f25005a607f8060ccaad4450a8c7cb6e913e a9031e9b5b2f9a967e7c817d44923e134243acc5014b4aa4cc750b82cb19988d HTTP Headers `GET /webmail/translations/en_login.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=95 Last-Modified: Sun, 26 Jun 2022 07:40:00 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/img/background.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	13 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/img/background.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 89 x 89, 8-bit/color RGBA, non-interlaced\012- data Size 13 kB (13253 bytes) Hash 14642e1e36792878b78f0506c1f38420 3efa60d284c34afafd401f81a0e49597429353dc 441591df4085a5b82c77cf0fb4c10b009461d608bbc27dae2e4ed871c8ab630e HTTP Headers GET /weblib/int/login/img/background.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=94 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/connect/logo.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	3.6 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/connect/logo.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 209 x 45, 8-bit/color RGBA, non-interlaced\012- data Size 3.6 kB (3597 bytes) Hash 6847721072d8b62cd8ac823bf896a95f 49ad83ef34c1195face43d95d709c047a81c31f1 b8a745d37e3fc1cb6fac54694e50a8caf7f4ac4d938eec049857b6384e0f1fe4 HTTP Headers GET /weblib/int/login/connect/logo.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/connect/webmail2.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=96 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/img/top.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	1.3 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/img/top.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 325 x 15, 8-bit/color RGBA, non-interlaced\012- data Size 1.3 kB (1280 bytes) Hash fad83a948802b4e3fd07f5c6db1a2586 9cfb859e335e6688935608e620a9ee41b35fe47e 2236abfb0d888ece71c46f5aa65ee3e334dda7031b220779ecfac4ea2be7e489 HTTP Headers `GET /weblib/int/login/img/top.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=99 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/img/middle.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	1.0 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/img/middle.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 325 x 3, 8-bit/color RGBA, non-interlaced\012- data Size 1.0 kB (1009 bytes) Hash e91b57aee3f49204f440b4e5d840d042 041fe6a7e4012fd81dd631fce22e1f9f42cd26c9 eed3769d85f5e4d3f1a5809cb683dc73e31fd97ce125a934b274e8883b8d03f7 HTTP Headers `GET /weblib/int/login/img/middle.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=99 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/weblib/int/login/img/bottom.png?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	1.3 kB
URL HTTP/1.1 webmail.sistemitre.it/weblib/int/login/img/bottom.png?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 325 x 15, 8-bit/color RGBA, non-interlaced\012- data Size 1.3 kB (1258 bytes) Hash 354a3c5977033d14f4fc89e16241d438 35478b37a70a93fea4bce3939b269051ff3a0f1c 8490c4be2797355bdcf968e41ace78026692d684f700bc75634df16898d56753 HTTP Headers `GET /weblib/int/login/img/bottom.png?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/weblib/int/login/style.css?v=748834186c7d001b5d860cb20514cbcb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=93 Last-Modified: Sun, 26 Jun 2022 07:39:58 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/favicon.ico?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	5.4 kB
URL HTTP/1.1 webmail.sistemitre.it/favicon.ico?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel\012- data Size 5.4 kB (5430 bytes) Hash 94348007b80d9a8f1a4ed5d8ccea0700 c49b2009700b8bd6efcf30080e7f9d15d056b2b2 59f2b70d58187d2dca8bb533fadf563a0077d2273755149a416d493b233a0f13 HTTP Headers `GET /favicon.ico?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/x-icon Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=92 Last-Modified: Sun, 26 Jun 2022 07:39:50 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	webmail.sistemitre.it/custom/webmail/img/loginlogo_13726.png	146.59.214.74	200 OK	5.3 kB
URL HTTP/1.1 webmail.sistemitre.it/custom/webmail/img/loginlogo_13726.png IP 146.59.214.74:0 ASN #16276 OVH SAS File type PNG image data, 227 x 34, 8-bit/color RGBA, non-interlaced\012- data Size 5.3 kB (5316 bytes) Hash a2a7e0a1ab927ca9ed55170878fdeb68 6e034d485052af64c28138f60a54d56ae97e7923 21429799c2fef9a564e765a3768621a52fce92b5a6f22ce649ae986f1e4461e9 HTTP Headers `GET /custom/webmail/img/loginlogo_13726.png HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: image/png Date: Mon, 27 Mar 2023 21:10:17 GMT Keep-Alive: timeout=15, max=95 Last-Modified: Wed, 11 Oct 2017 09:56:13 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3651 Expires: Mon, 27 Mar 2023 22:11:09 GMT Date: Mon, 27 Mar 2023 21:10:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3651 Expires: Mon, 27 Mar 2023 22:11:09 GMT Date: Mon, 27 Mar 2023 21:10:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3651 Expires: Mon, 27 Mar 2023 22:11:09 GMT Date: Mon, 27 Mar 2023 21:10:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3651 Expires: Mon, 27 Mar 2023 22:11:09 GMT Date: Mon, 27 Mar 2023 21:10:18 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg	34.120.237.76	200 OK	3.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.6 kB (3589 bytes) Hash 1ec08d4bd079a92161fc80f41281b5a9 bf61369962342cce85de8f48942b4b150fd2721e 8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3589 x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CW1uyE2joAMF50g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0 x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT x-amz-cf-pop: SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: pjRA439kqSg5daR_Zuvsf2l45R4oqv3AMWNiMCGQ_C5o2KA8kEd3TQ== via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google date: Sun, 26 Mar 2023 21:37:24 GMT age: 84774 etag: "bf61369962342cce85de8f48942b4b150fd2721e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10405 bytes) Hash 22905e8a7c8b1741dd51842c114a6517 c5900fe2396e0ca371c4847af4e96149850c3577 1525f9f39c09370fcb1f58f079f2d741a4c6d13fba26e6dd5b79466153d7685e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10405 x-amzn-requestid: 0b8dad7a-2ec1-4eed-9a2c-06079ed46662 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CRi69E9xoAMFiJg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641d4b79-2f606ac041c5db24583c8d51;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:25 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: qbbEi0tXZLKo6qjrbJMtTHdhWziYrLrgzY1hzt_LrQJoeDDBbJnZBA== via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 05:54:17 GMT age: 54961 etag: "c5900fe2396e0ca371c4847af4e96149850c3577" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5556 bytes) Hash c831201ad81f55c63c1b101ce854a810 0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5 c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5556 x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CM69eHE3IAMF0Yw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0 x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: CgU9j02Bnw0UdIwQ3sRCDvJoPitHIAUTRDhLH_PMXYlAPoAwSbv6Iw== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 05:36:52 GMT age: 56006 etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg	34.120.237.76	200 OK	4.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.8 kB (4775 bytes) Hash 8cc79a830964d923d24a45f5ccc9939b 557cc4827414912c41319ad961c14cce71ed4a18 b3b1c73b34057cb6e41920f3d55213ad8c193076525767c051960ec26d17ca3c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F217b24c4-6cf4-4be4-bdbf-764890bd9672.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4775 x-amzn-requestid: 28d0e56d-ed03-4686-bd49-34f193f1c65a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CK96KF9coAMFvMA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641aa9da-122cd32a6f23e8442a52464c;Sampled=0 x-amzn-remapped-date: Wed, 22 Mar 2023 07:10:18 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: psNReeBG7nAuKQXIMl1zwCVmvtZ-xwn6Fx8oAIX4wi4GCNUWNWOGMA== via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google date: Sun, 26 Mar 2023 22:12:36 GMT age: 82662 etag: "557cc4827414912c41319ad961c14cce71ed4a18" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10591 bytes) Hash 668a8a17a1bb77ea7db7fa23c9df9690 242108539ff8694a3c557d07b2b000e764a77f24 100952573dc9eeba889a77f4d148b646accb99f277035f0607b1c6918f93a358 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb0254d-5c75-4e14-a0c6-04283194ce5b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10591 x-amzn-requestid: 8359ddc1-a6c6-4caf-9de3-f2eb4dcb0c78 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CaIO-F0QIAMF5_A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6420ba5f-72ee066911fdddb62c4a201d;Sampled=0 x-amzn-remapped-date: Sun, 26 Mar 2023 21:34:23 GMT x-amz-cf-pop: HIO50-C1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: hfm1xuKZ-Olu263DvYfbYlEnANaiIL9e7jEDUqDAf3ihT5N2HAdyIA== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google date: Sun, 26 Mar 2023 21:49:30 GMT age: 84048 etag: "242108539ff8694a3c557d07b2b000e764a77f24" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12017 bytes) Hash e999a9d79efe60a30b2942c5f2940294 c3891c43b16521f66eb3a52d83694de2ddd39871 290ed1232883a4ec63ef42c30f40b819983c5544e35261d2d1e0d1e55d0c8b07 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4429ed9b-a655-45dc-a59b-78db53c9c2f6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12017 x-amzn-requestid: 4f61a0c7-4b18-4289-b47c-eeeff93d873f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Ca6yQGNtoAMFsxw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64210b41-350e4e2425d9606e478872b5;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 03:19:29 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: TCzHm5qTtnAUDSmayc-LLFmDfV7o6PaaYYfVtN_w7cC3o66HCa3DEg== via: 1.1 b3cdce1c2fc39b89f45c98c417351f26.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 03:34:08 GMT age: 63370 etag: "c3891c43b16521f66eb3a52d83694de2ddd39871" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	webmail.sistemitre.it/webmail/lib/ext4/ext.min.js?v=748834186c7d001b5d860cb20514cbcb	146.59.214.74	200 OK	391 kB
URL HTTP/1.1 webmail.sistemitre.it/webmail/lib/ext4/ext.min.js?v=748834186c7d001b5d860cb20514cbcb IP 146.59.214.74:0 ASN #16276 OVH SAS File type data Size 391 kB (390872 bytes) Hash 1da985f0df8f4fe85f7edac1be38e5f6 a6d82d178da69ad7e047e5c47263b16f376c17ef 47b877ffb88bc3610ac2bb2084d61ac349e912fe1caca960696e188349bc95b6 HTTP Headers `GET /webmail/lib/ext4/ext.min.js?v=748834186c7d001b5d860cb20514cbcb HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://webmail.sistemitre.it/webmail/login/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Connection: Keep-Alive Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/javascript Date: Mon, 27 Mar 2023 21:10:18 GMT Keep-Alive: timeout=15, max=91 Last-Modified: Sun, 26 Jun 2022 07:40:02 GMT Server: WebServer Transfer-Encoding: chunked X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81c2ee0-b0d8-4d53-8a73-a453a7669c92.jpeg	34.120.237.76	200 OK	6.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81c2ee0-b0d8-4d53-8a73-a453a7669c92.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.6 kB (6623 bytes) Hash 9e5dfaeb44e65f30874efae17a8fd652 52c517a45e53a4ca5b5783d0364ac0e2606d6970 3752bdf3d574299ccb17ac42d20f940dd1daf48d127889a1d82a55bec82a0436 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd81c2ee0-b0d8-4d53-8a73-a453a7669c92.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 6623 x-amzn-requestid: 5b246408-bf9c-488d-aee6-7d387115863e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: COQn4EHJoAMFl3Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641bfafe-686e97b34f7c33862db51515;Sampled=0 x-amzn-remapped-date: Thu, 23 Mar 2023 07:08:47 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: Dc5ZpKbzuxe6YqNOtsNpeKShE02r5kg-YX_3gPgeEIgRADZRBL6b4w== via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 12:05:17 GMT age: 32707 etag: "52c517a45e53a4ca5b5783d0364ac0e2606d6970" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	webmail.sistemitre.it/webmail/login/	146.59.214.74	200 OK	0 B
URL HTTP/1.1 webmail.sistemitre.it/webmail/login/ IP 146.59.214.74:0 ASN #16276 OVH SAS File type Size 0 B (0 bytes) Hash HTTP Headers `GET /webmail/login/ HTTP/1.1 Host: webmail.sistemitre.it User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: Close Content-Encoding: deflate Content-Security-Policy: default-src 'self' 'unsafe-eval' 'unsafe-inline' .kerio.com; img-src http: https: data:; Content-Type: text/html; charset=utf-8 Date: Mon, 27 Mar 2023 21:10:17 GMT Expires: Wed, 4 Jun 1980 06:02:09 GMT Pragma: no-cache Server: WebServer X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-UA-Compatible: IE=edge X-XSS-Protection: 1; mode=block

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML