tr.sentianchetu.it/go/1675952783/1636382585/71697907fe64cf40d07e42f91080f51b/ln4wzjek/7/79
301 Moved Permanently 0 B URL HTTP/1.1 tr.sentianchetu.it/go/1675952783/1636382585/71697907fe64cf40d07e42f91080f51b/ln4wzjek/7/79
IP
ASN #34081 INCUBATEC GmbH - Srl
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/1675952783/1636382585/71697907fe64cf40d07e42f91080f51b/ln4wzjek/7/79 HTTP/1.1
Host: tr.sentianchetu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://tr.sentianchetu.it/go/1675952783/1636382585/71697907fe64cf40d07e42f91080f51b/ln4wzjek/7/79
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 84247d80b610d0c6da587141b21323ae
46461f8709d099f5295998f41aaafa5be4387ea6
bee5e9e0d7b4a24609950ceb40194bffb482c36152d376bb119e7cc3aba488dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BEE5E9E0D7B4A24609950CEB40194BFFB482C36152D376BB119E7CC3ABA488DC"
Last-Modified: Thu, 09 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15464
Expires: Thu, 09 Feb 2023 19:51:54 GMT
Date: Thu, 09 Feb 2023 15:34:10 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13532
Expires: Thu, 09 Feb 2023 19:19:42 GMT
Date: Thu, 09 Feb 2023 15:34:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Feb 2023 14:34:15 GMT
content-type: application/json
age: 3595
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 50a2f8cdbbd1059f5318753155bba7ef
405e63ea4683be44f876feae34b5cb645ff751f2
f6ac743a5a17d64d2858fec5791050d2dc8074ddd823826c93e67bffdb2f0868
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6AC743A5A17D64D2858FEC5791050D2DC8074DDD823826C93E67BFFDB2F0868"
Last-Modified: Thu, 09 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8494
Expires: Thu, 09 Feb 2023 17:55:44 GMT
Date: Thu, 09 Feb 2023 15:34:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Pu7Li3p2pevJ0WSafmjX2alk7Az4tEOC0YHy2lL4XiJPYOWztvah2F8NzhhRqaUvucCWeUAZBXU=
x-amz-request-id: V3QP995XW1XBY3QA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Feb 2023 14:46:26 GMT
age: 2864
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 15:34:10 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7ea0eca167fca03fb242243cccbf8a42
8a84b2e7b97544e2e469dbacc20515cbf995c3a2
8c283300274a3e5133441b9c260a441524d3ddad3c206779280ae12506b5562d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8C283300274A3E5133441B9C260A441524D3DDAD3C206779280AE12506B5562D"
Last-Modified: Wed, 08 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Thu, 09 Feb 2023 21:33:58 GMT
Date: Thu, 09 Feb 2023 15:34:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 14:51:21 GMT
age: 2570
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
notizieveloci.com/v2/click/mm055jlp8zszzbyv8xf
200 OK 20 B URL HTTP/2 notizieveloci.com/v2/click/mm055jlp8zszzbyv8xf
IP
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /v2/click/mm055jlp8zszzbyv8xf HTTP/1.1
Host: notizieveloci.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty
date: Thu, 09 Feb 2023 15:34:09 GMT
content-type: text/html; charset=UTF-8
content-length: 20
x-powered-by: PHP/7.4.28
set-cookie: tr[mm055jlp8zszzbyv8xf]=2; expires=Thu, 09-Feb-2023 16:34:10 GMT; Max-Age=3600; path=/; secure; SameSite=None
track[7432]=mm055jlp8zszzbyv8xfC106525872; expires=Fri, 10-Feb-2023 15:34:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
track[0]=mm055jlp8zszzbyv8xfC106525872; expires=Fri, 10-Feb-2023 15:34:10 GMT; Max-Age=86400; path=/; secure; SameSite=None
p3p: policyref="http://notizieveloci.com/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa OUR NOR UNI COM NAV INT";
refresh: 0; URL=https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
content-encoding: gzip
vary: Accept-Encoding
x-robots-tag: noindex
x-served-by: notizieveloci.com
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12692
Expires: Thu, 09 Feb 2023 19:05:43 GMT
Date: Thu, 09 Feb 2023 15:34:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cfa8607abe81ff3c81c05711d18575f3
3f6ca770e50ae6802f1caedd2cdc072f57e438aa
7b8783683986f475bce22871b66283343399335ef5a42446d545926030051b22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B8783683986F475BCE22871B66283343399335EF5A42446D545926030051B22"
Last-Modified: Wed, 08 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21562
Expires: Thu, 09 Feb 2023 21:33:33 GMT
Date: Thu, 09 Feb 2023 15:34:11 GMT
Connection: keep-alive
landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
200 OK 3.1 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (498), with CRLF, LF line terminators
Hash 9253e05e332951c09b31abcd649cab7c
5d1cacc8db0e693b58296c3e308ec2fe5537eb2e
d15275a707d1f8715dfbc53a548744bd5a0878e2beaf87a513ad7bb63654c53f
GET /tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872 HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
X-Powered-By: PHP/5.4.13
Access-Control-Allow-Origin: https://www.offerteperte.net
Vary: User-Agent,Accept-Encoding
Content-Encoding: gzip
Content-Length: 3077
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/html
landing.offerteperte.net/tim/fibra-promo/css/lp/static.css
200 OK 4.3 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/css/lp/static.css
IP
File type ASCII text, with very long lines (4291), with CRLF line terminators
Hash 410f3966038cad3a39c49d7776a48841
c055bbaba3f81890b9ce6e08044f7010448cda81
fb3fdbf6a966fa55652bc011dc57717c13bf3e4fcce3cf57390272c67384f8f4
GET /tim/fibra-promo/css/lp/static.css HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Mon, 30 Jan 2023 10:01:08 GMT
ETag: "ad412b8-10c5-5f3784b452100"
Accept-Ranges: bytes
Content-Length: 4293
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GI00h9Jr9XGSaCUytiwEGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kGPvHwHUwSjNaV9pEHtPJ9KP/Oo=
ocsp.digicert.com/
200 OK 279 B IP
Hash b8ad5b23aac490c2e9ccbac5a9dbcc6b
ef73076be963061b44563356cb33201e401f65e8
92d2469a14b9fe0eb637029f9f2782228441a65c44feb1a37b73ccc606e2b55d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4144
Cache-Control: max-age=107997
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 15:34:11 GMT
Etag: "63e40520-117"
Expires: Fri, 10 Feb 2023 21:34:08 GMT
Last-Modified: Wed, 08 Feb 2023 20:25:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.2/iframeResizer.min.js
200 OK 4.9 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.2/iframeResizer.min.js
IP
File type ASCII text, with very long lines (13786)
Hash 7f9f4a58e27ee069755d6dfad1e2f4da
a3f9c2c71e5976cd8557e3ceabd8b533473182f4
a636807755ff7c7984e7fab6449e47a6a4d214c9391c937febb5b0781f9d576c
GET /ajax/libs/iframe-resizer/4.3.2/iframeResizer.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://landing.offerteperte.net
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 15:34:11 GMT
content-type: application/javascript; charset=utf-8
content-length: 4924
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60c3228f-133c"
last-modified: Fri, 11 Jun 2021 08:45:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6774140
expires: Tue, 30 Jan 2024 15:34:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PnYDlpmjgYsrHfTI1lFp1ACgazkRwjpL8TH1ieKKwA7IlLQLvi3V%2FylkaKFFGnrv26ibCTfRb0zS6dVpK8%2Fe%2FvC3rRg1exK7uSOdZzAGk1LV7tmzjMwbyrOr50C6IIaYGeIjYsbl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 796daaf38c69b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
landing.offerteperte.net/tim/fibra-promo/css/lp/style.css?v=1
200 OK 19 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/css/lp/style.css?v=1
IP
File type ASCII text, with very long lines (18872)
Hash 9bcfa807c73267aa8e00926a529cb690
279247cb70e2e8e615eaecb6ee7407eb37c647d1
c670111158fc9a29ba77571028ae5c57aa97f9c83662244e8198935564b58156
GET /tim/fibra-promo/css/lp/style.css?v=1 HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Thu, 02 Feb 2023 16:26:04 GMT
ETag: "ad412c0-49b9-5f3ba056c3f00"
Accept-Ranges: bytes
Content-Length: 18873
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/css
landing.offerteperte.net/__INCLUDE/v3/script/js/bodyLock.min.js
200 OK 351 B URL HTTP/1.1 landing.offerteperte.net/__INCLUDE/v3/script/js/bodyLock.min.js
IP
File type C++ source, ASCII text, with very long lines (350)
Hash 6e9e91f9bd7d469d28fcb53ebb652d0f
87a8bc359bc81e43e5f9bc4b0302af386357c1a9
b8a7d3c63b6133d0b2a548b511d72157762452936f0c39977042fd1755e06ef6
GET /__INCLUDE/v3/script/js/bodyLock.min.js HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Thu, 22 Dec 2022 08:57:56 GMT
ETag: "a1e253d-15f-5f066dd702d00"
Accept-Ranges: bytes
Content-Length: 351
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
200 OK 279 B IP
Hash b8ad5b23aac490c2e9ccbac5a9dbcc6b
ef73076be963061b44563356cb33201e401f65e8
92d2469a14b9fe0eb637029f9f2782228441a65c44feb1a37b73ccc606e2b55d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4144
Cache-Control: max-age=107997
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 15:34:11 GMT
Etag: "63e40520-117"
Expires: Fri, 10 Feb 2023 21:34:08 GMT
Last-Modified: Wed, 08 Feb 2023 20:25:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
landing.offerteperte.net/tim/fibra-promo/js/floatingCta.js
200 OK 928 B URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/js/floatingCta.js
IP
File type ASCII text, with CRLF line terminators
Hash 1eefbb981c9e8fb69d90692ecad660c8
ad369f59bdb47f1aa272f73c5bd7d45587d7a9be
dae0773d7397763e8a829499062143fb314291de2cf1f464a2d54db6c50c25d3
GET /tim/fibra-promo/js/floatingCta.js HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 27 Jan 2023 09:00:05 GMT
ETag: "ad4131d-3a0-5f33b176a0f40"
Accept-Ranges: bytes
Content-Length: 928
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: application/javascript
landing.offerteperte.net/__INCLUDE/v3/script/js/modal.min.js
200 OK 891 B URL HTTP/1.1 landing.offerteperte.net/__INCLUDE/v3/script/js/modal.min.js
IP
File type C++ source, ASCII text, with very long lines (890)
Hash 62c35261d80ba2070dd06d5a35d8a79c
13824394a666287a81ade680a1feaaed8cabc1ef
386a5efb0bcd870535398582ce4eefd61a3076ebeabf03ddd8017fd94a1c0af7
GET /__INCLUDE/v3/script/js/modal.min.js HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Thu, 22 Dec 2022 08:57:56 GMT
ETag: "a1e253a-37b-5f066dd702d00"
Accept-Ranges: bytes
Content-Length: 891
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: application/javascript
landing.offerteperte.net/__INCLUDE/v3/script/js/showOnMobile.min.js
200 OK 315 B URL HTTP/1.1 landing.offerteperte.net/__INCLUDE/v3/script/js/showOnMobile.min.js
IP
File type ASCII text, with very long lines (315), with no line terminators
Hash 5193458e6ab21b96003b32c6a8dc4327
8b5ce35c2d2d855a847c5365994766940a6ce2d9
b161fb04652876b6133d2383c70c44b481a05e17f270786bbc4181a8543d34ec
GET /__INCLUDE/v3/script/js/showOnMobile.min.js HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Thu, 22 Dec 2022 08:57:56 GMT
ETag: "a1e253e-13b-5f066dd702d00"
Accept-Ranges: bytes
Content-Length: 315
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 99bfb35b81402db593351738cc641149
a2cd43213a424d8d0b81b4e13e75802299fb15d0
fda9c4b047ea3eac937dd8e710c0bf659a5fafa0b1b771a4117a901e2d611544
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDA9C4B047EA3EAC937DD8E710C0BF659A5FAFA0B1B771A4117A901E2D611544"
Last-Modified: Thu, 09 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7841
Expires: Thu, 09 Feb 2023 17:44:52 GMT
Date: Thu, 09 Feb 2023 15:34:11 GMT
Connection: keep-alive
imgstore.ediscom.it/_ediscom-footer/js/app.js
200 OK 3.2 kB URL HTTP/1.1 imgstore.ediscom.it/_ediscom-footer/js/app.js
IP
File type ASCII text, with very long lines (3162), with no line terminators
Hash 4f75afed43a516792ec780e8eda2007f
afd8dc3afd79936025ab9cbda0a65323ba2d9e20
4f2ddb6e321cc4aad329c724ef8baea9efa52a3ae75cfc48c5e7737fc5290c50
GET /_ediscom-footer/js/app.js HTTP/1.1
Host: imgstore.ediscom.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
X-Robots-Tag: noindex
Last-Modified: Tue, 20 Dec 2022 11:11:35 GMT
ETag: "1e16e7-c5a-5f0407fb9a7c0"
Accept-Ranges: bytes
Content-Length: 3162
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8fd929a87b30da910ead88b3363089b3
7135980feab9776b64a708d19172fff9e223fb7b
3af31447f7c3019a58dd7295c31d87b50087ffa97ec71284324dbe8e2a724591
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3AF31447F7C3019A58DD7295C31D87B50087FFA97EC71284324DBE8E2A724591"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17791
Expires: Thu, 09 Feb 2023 20:30:43 GMT
Date: Thu, 09 Feb 2023 15:34:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16940
Expires: Thu, 09 Feb 2023 20:16:32 GMT
Date: Thu, 09 Feb 2023 15:34:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16940
Expires: Thu, 09 Feb 2023 20:16:32 GMT
Date: Thu, 09 Feb 2023 15:34:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16940
Expires: Thu, 09 Feb 2023 20:16:32 GMT
Date: Thu, 09 Feb 2023 15:34:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fa3b80f6c5e48935acba628afd26f4ce
f69397ac7d88fc285d79b1a17ec28340c8a5c564
6019b3d5a40f38c020b87c2bc5d25b3646b7cccd3bf005f835cb74b46869100d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6019B3D5A40F38C020B87C2BC5D25B3646B7CCCD3BF005F835CB74B46869100D"
Last-Modified: Thu, 09 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16940
Expires: Thu, 09 Feb 2023 20:16:32 GMT
Date: Thu, 09 Feb 2023 15:34:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ec996f6-8867-41f0-9850-ad04d05e22e6.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ec996f6-8867-41f0-9850-ad04d05e22e6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 464812429ec9f5c766def4ac26e86e4f
170a5d6fcaa69c78896ed8a37442a27c6309c09a
1248df6127626b254420b6ddabba6fba12066c9b7f314386c25ac51781f59060
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ec996f6-8867-41f0-9850-ad04d05e22e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10472
x-amzn-requestid: 6948a391-6553-40ec-8373-4c3b5c95c7e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ACoE9EgaoAMFRFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e42085-275d22cb2435af874715be99;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 22:21:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rj8wiiICVx4rJ0-InAUgGVx5E6VrRDV9MndpdsDgwnQJw_I2Up_XmA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 09 Feb 2023 09:12:10 GMT
age: 22922
etag: "170a5d6fcaa69c78896ed8a37442a27c6309c09a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
0bb7-62-11-179-45.ngrok.io/tim/fibra-promo/font/timSans/TIMSans-Bold.eot
404 Not Found 896 B URL HTTP/1.1 0bb7-62-11-179-45.ngrok.io/tim/fibra-promo/font/timSans/TIMSans-Bold.eot
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 09c07f6fdc1fdfb7c75648f29189d1d4
f197362a47aa67f5e50b2b6bee80404c5fcdd280
5e788660d81cb48503407b8abd769fa51d929d2d6f257910b0af4bcd80aa26b3
GET /tim/fibra-promo/font/timSans/TIMSans-Bold.eot HTTP/1.1
Host: 0bb7-62-11-179-45.ngrok.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Connection: close
Content-Type: text/html
Ngrok-Error-Code: ERR_NGROK_3200
Ngrok-Trace-Id: cf8fa5ff19404951835a7488286a1246
Referrer-Policy: no-referrer
Date: Thu, 09 Feb 2023 15:34:12 GMT
Content-Length: 896
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 764b732e88dd1e9c1824529b24b3dffc
2ba954a51c2972b267ae0536e343e608aa9aa7f4
a1efdf03b14bb05cf8e407b92476592c35fa2d27c5e66705322abdb4c6412a06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8150
x-amzn-requestid: 3834493a-4162-4cc9-b67c-541cc9be895b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwD8IH0TIAMFWqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb380-3746ff7b0a6894366efa848e;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:10:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I3qmC4D6qdsheK8VO3oKbPDU7XV1r9_XEPMcExKnvATDkVUsJHjHbg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 09 Feb 2023 01:59:42 GMT
age: 48870
etag: "2ba954a51c2972b267ae0536e343e608aa9aa7f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb92005b3-7a69-411c-9afb-60b86ab8c5da.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb92005b3-7a69-411c-9afb-60b86ab8c5da.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0c5e12696e3ee13041d043084828210
c48927fb23f59e0949d388086c197699c8f19d1b
47838e958555ff6799d4d1d3994913943726daba5294cd89afe9036628ef6fdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb92005b3-7a69-411c-9afb-60b86ab8c5da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: fa797448-32c3-4438-a192-5291c48b1d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AChJKFq9oAMFgog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e4156d-46ff32923a2763b45a5194f4;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2olwTLHKbCas7GcQiRz22bk_I646VcTxN3Yv_ObBVgeGC0l73GNh8A==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:37 GMT
etag: "c48927fb23f59e0949d388086c197699c8f19d1b"
content-type: image/jpeg
age: 64775
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce710ab5746832fe637fada3e6d63abf
d545c85d4a8cf92dc8b88db0a056623d1ef7a943
40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: 7e2b1875-ecf9-4ee9-8d5a-a911fdd28d16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AColKGwOIAMFyqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e42153-097b982244d3ad7b6f49a392;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 22:25:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Uvdg9MhYDsR9aC-s_chZDKp7_5RzhQfTwXZ0epZVW7TUVdrdADUEfQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 09 Feb 2023 03:49:25 GMT
age: 42287
etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844d5320-b850-4dd9-87c4-2b4f17eb895e.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844d5320-b850-4dd9-87c4-2b4f17eb895e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82ed633b05ccadc8b87e83413641f1ef
aafed39990cf6a3391d53355085d816167a500fa
c9202e36b231d0a9a9cba1ff8f570e5b0fbba215eb6b28e3989fd442ee7f5835
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844d5320-b850-4dd9-87c4-2b4f17eb895e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8717
x-amzn-requestid: dbb8b5a2-d3f6-42e2-8778-da19de081cb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2c0LHaiIAMF5cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df41b4-309b6b1f651f68453dd52f55;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 05:42:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hBfl0rPzn_iOD9xRlc236_IEvyGlK5WteH1y4cd0aYxlFzd3RVfgkQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:46 GMT
age: 64766
etag: "aafed39990cf6a3391d53355085d816167a500fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ab2faf0-d9a7-41a6-b5cf-bf6189f66342.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ab2faf0-d9a7-41a6-b5cf-bf6189f66342.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9203cfb9f0c1c958dd008eac55a9d3c4
6bdd1047590dd3fb54c15d5d6d38e7c86274b203
09770229be5ff3037708543e3204c66de84253b3a858a83a0e1672a04c0e9cb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ab2faf0-d9a7-41a6-b5cf-bf6189f66342.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11760
x-amzn-requestid: b2863a01-4714-4554-a478-5402467b3448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AChJKHc_oAMFwlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e4156d-1c5a3edf37bc7cc937c800d2;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: y-1zzLzVegi0T-SAyTpUuFD6iVVYbuL5u71dc74BY2l7PrxVu-am5w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:37 GMT
etag: "6bdd1047590dd3fb54c15d5d6d38e7c86274b203"
content-type: image/jpeg
age: 64775
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
landing.offerteperte.net/tim/fibra-promo/img/UnipolSai_logo.svg
200 OK 13 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/UnipolSai_logo.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (561), with CRLF line terminators
Hash a33920a730f004b7a7d40d8ce536ed68
33b294a15a13edfcd489019531b2ca63324d87ec
5be0fb023c126853d00434703e52d4c06f096f268dda4eb2b55ad629534fef35
GET /tim/fibra-promo/img/UnipolSai_logo.svg HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad41317-32c2-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 12994
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/svg+xml
landing.offerteperte.net/tim/fibra-promo/img/ico_landing_antenna.svg
200 OK 2.2 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/ico_landing_antenna.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2164), with no line terminators
Hash 5872b302ac2ac6f3737ef95ba7aabd84
f677bc28e33c90def65e5b1bfa274cd06f2130b2
ed13139501e5c9cdec97b1ee65d7fb4e06cd3c253ffbe3a9ed13524296640bcd
GET /tim/fibra-promo/img/ico_landing_antenna.svg HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad41307-874-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 2164
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/svg+xml
landing.offerteperte.net/tim/fibra-promo/img/logo_tim.svg
200 OK 1.9 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/logo_tim.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1852), with no line terminators
Hash 657d8f29d799aabfc8ecf234a795e54d
bef052f5ce8a2395a30310a75576d660a60addb8
c106bb8ef2eb93334fab69f43172b7b228abd1d8f5e22bd753650d93b071364b
GET /tim/fibra-promo/img/logo_tim.svg HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad41315-73c-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 1852
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/svg+xml
landing.offerteperte.net/tim/fibra-promo/img/bollino-fibra.svg
200 OK 1.0 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/bollino-fibra.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1002), with no line terminators
Hash af4576edc6130bfebbc24d0b246ce47e
31c608c3b09cb61d0a06d9e92b54602a9d510161
5c0a8c8650019a972369cde30c35fe311e691669274e7af1b469581f71914d14
GET /tim/fibra-promo/img/bollino-fibra.svg HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad412fe-3ea-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 1002
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/svg+xml
landing.offerteperte.net/tim/fibra-promo/img/components/chiudi.svg
200 OK 349 B URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/components/chiudi.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (349), with no line terminators
Hash 2259903990c1781d8be6e4b1b254a7ed
89eb69f84dbe14e5d326016dcb11eac2bd46a08f
826d76a69f3fd9c2f1eee01ff2d4a49cc3a79106401fd14398ae31672792e87b
GET /tim/fibra-promo/img/components/chiudi.svg HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 16:04:01 GMT
ETag: "ad4131f-15d-5f2b432a0fe40"
Accept-Ranges: bytes
Content-Length: 349
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/svg+xml
landing.offerteperte.net/tim/fibra-promo/img/ico_landing_velocita.svg
200 OK 1.3 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/ico_landing_velocita.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1307), with no line terminators
Hash 4c0647358df401af06a378352b5d4177
8b53f802dc4faebbfdf42b8fe6c58aa6d3cea573
6ef4e62dbbb8561080bef348e422e74141f9cc7482d38ff722f8e6c1bd1fa5fa
GET /tim/fibra-promo/img/ico_landing_velocita.svg HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad41306-51b-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 1307
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/svg+xml
imgstore.ediscom.it/_ediscom-footer/css/app.css
200 OK 2.4 kB URL HTTP/1.1 imgstore.ediscom.it/_ediscom-footer/css/app.css
IP
File type ASCII text, with very long lines (2447), with no line terminators
Hash 5af4993fb1ed27f8dbeca48e4fe54e9b
c9c9431d1e723514eac43f8f173e498cf1ebf495
5173d304114b61147b391aad0c73e3d394a12dd04113b9822863c26c9261a6cb
GET /_ediscom-footer/css/app.css HTTP/1.1
Host: imgstore.ediscom.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
X-Robots-Tag: noindex
Last-Modified: Tue, 20 Dec 2022 10:36:42 GMT
ETag: "1e16e2-98f-5f04002f90280"
Accept-Ranges: bytes
Content-Length: 2447
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/css
landing.offerteperte.net/tim/fibra-promo/font/timSans/TIMSans-Bold.woff2
200 OK 40 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/font/timSans/TIMSans-Bold.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 40220, version 1.0\012- data
Hash 778ede5d258f7a8548154dc9a8c8d781
ae9aa43548b8d03e2d58d565214c0500be6bf927
294b3455b19035c27885141973f871f8ad346328da69d05ce9ffb3108cb82ed7
GET /tim/fibra-promo/font/timSans/TIMSans-Bold.woff2 HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/css/lp/style.css?v=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad412c3-9d1c-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 40220
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/plain
imgstore.ediscom.it/_ediscom-footer/images/content/chiudi.svg
200 OK 298 B URL HTTP/1.1 imgstore.ediscom.it/_ediscom-footer/images/content/chiudi.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash f240efa168490463e6a13824b78de35b
8d225006b55715487ddee00e84d5f2acf7177f06
e86120bcd05b8f9990ab6561e8a0795ebb07ec8c8e1ce5d9f615cad05d2d02c1
GET /_ediscom-footer/images/content/chiudi.svg HTTP/1.1
Host: imgstore.ediscom.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
X-Robots-Tag: noindex
Last-Modified: Fri, 27 May 2022 14:03:53 GMT
ETag: "1e16e5-12a-5dffec6c46440"
Accept-Ranges: bytes
Content-Length: 298
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/svg+xml
landing.offerteperte.net/tim/fibra-promo/font/timSans/TIMSans-Regular.woff2
200 OK 40 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/font/timSans/TIMSans-Regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 39704, version 1.0\012- data
Hash b1c980bad3585bb798d4557e8aa16c86
2bff8f1d9a19ca82f0969665d3f468ef803add9f
aaf387dfa60f2dcf855d669dd3ddef393d3e68e7384d85d89ede66d7eb4f6cad
GET /tim/fibra-promo/font/timSans/TIMSans-Regular.woff2 HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/css/lp/style.css?v=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad412f1-9b18-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 39704
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/plain
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 15:34:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 471 B IP
Hash 10b2b5e55e2569e809e45d5537c6cc52
65e6c71ab77bc5bde36617c9bdee3ae6babee8d1
0718c293f523ca2df6c855575159c21dab1e8103c6dd6c0e2c70280a9beb7cf8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 00:06:11 GMT
Expires: Tue, 14 Feb 2023 00:06:10 GMT
Etag: "65e6c71ab77bc5bde36617c9bdee3ae6babee8d1"
Cache-Control: max-age=375717,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796daaf409deb500-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 764f6498bfc9fce44fcfaca97119697f
d285cc1f81ca9f23891ff68c2380e0f9e9e96e0c
8d1b5c3b41446c6b296d3a8c96bfdfca8f1a68cc8aa2008ea1b86a8194281f5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 15:34:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
landing.offerteperte.net/tim/fibra-promo/img/visual.jpg
200 OK 80 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/visual.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 788x581, components 3\012- data
Hash 43e324863533d1a8860e1cb55543519d
718bb946d1cdd10ed9b21750b0a1cc2285dedf22
61ce88b04d95d3b964846f977e263739b07cdf4d5a2b2670caca112cce5b0180
GET /tim/fibra-promo/img/visual.jpg HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/css/lp/style.css?v=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad4131a-137dc-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 79836
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/jpeg
landing.offerteperte.net/tim/fibra-promo/img/img_disney.png
200 OK 61 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/img_disney.png
IP
File type PNG image data, 460 x 344, 8-bit colormap, non-interlaced\012- data
Hash 99e7c449fca3908ca8e534cbbac7a827
672ac92f66ee3ae5cd3903eeda6f13e9d3f7f36c
bee3151cd9b6de7a00921a0bd80f2a3356a6078ef8fcd86570e88dbf2610afb4
GET /tim/fibra-promo/img/img_disney.png HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad4130d-ed56-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 60758
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 15:34:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://landing.offerteperte.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 22:02:00 GMT
expires: Mon, 05 Feb 2024 22:02:00 GMT
cache-control: public, max-age=31536000
age: 322332
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.offerteperte.net/agenzia-digitale/tim-premium-fibra.htm?dl_landing=https%3A%2F%2Flanding.offerteperte.net%2Ftim%2Ffibra-promo%2Fa%2F%3Ftl_id_database%3D6063%26tl_track_code%3Dmm055jlp8zszzbyv8xfC106525872&tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
200 OK 9.8 kB URL HTTP/1.1 www.offerteperte.net/agenzia-digitale/tim-premium-fibra.htm?dl_landing=https%3A%2F%2Flanding.offerteperte.net%2Ftim%2Ffibra-promo%2Fa%2F%3Ftl_id_database%3D6063%26tl_track_code%3Dmm055jlp8zszzbyv8xfC106525872&tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (339), with CRLF, LF line terminators
Hash 71ab1a203be0f51b3893c85892d274aa
41d8f84dd0d2ba511d5535878078a52855c581f2
236e71994eed532bed818c23e49e7543f73c0b4815062d561155ca34eca50a0f
GET /agenzia-digitale/tim-premium-fibra.htm?dl_landing=https%3A%2F%2Flanding.offerteperte.net%2Ftim%2Ffibra-promo%2Fa%2F%3Ftl_id_database%3D6063%26tl_track_code%3Dmm055jlp8zszzbyv8xfC106525872&tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872 HTTP/1.1
Host: www.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:12 GMT
Server: Apache
X-Powered-By: PHP/5.4.13
Set-Cookie: PHPSESSID=ctfb9oninl93scfrojfdavntf4; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=2
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
landing.offerteperte.net/tim/fibra-promo/img/img_unipol.jpg
200 OK 60 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/img/img_unipol.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x637, components 3\012- data
Hash ee5b385cfc4b09ca0c4ada588e6f1f0d
e300a5f71ec6d358ac5c88e81784b36327518568
00f91d3cd550b89f023acb86bb613b73799159d980be798a3626b971c5266763
GET /tim/fibra-promo/img/img_unipol.jpg HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/css/lp/style.css?v=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:11 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad4130f-ea93-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 60051
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 15:34:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.offerteperte.net/stili/form-no-bootstrap/css/style-iframe.css
200 OK 2.5 kB URL HTTP/1.1 www.offerteperte.net/stili/form-no-bootstrap/css/style-iframe.css
IP
File type ASCII text, with very long lines (2467)
Hash db8347984e0fd6ce835a7d065f4dd45d
49370b9df0f027c71c9c92207515deb55247be13
6626006dd12d013b8f7d47006e12e73aff43104295042fe694a50f369c174493
GET /stili/form-no-bootstrap/css/style-iframe.css HTTP/1.1
Host: www.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offerteperte.net/agenzia-digitale/tim-premium-fibra.htm?dl_landing=https%3A%2F%2Flanding.offerteperte.net%2Ftim%2Ffibra-promo%2Fa%2F%3Ftl_id_database%3D6063%26tl_track_code%3Dmm055jlp8zszzbyv8xfC106525872&tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Cookie: PHPSESSID=ctfb9oninl93scfrojfdavntf4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:12 GMT
Server: Apache
Last-Modified: Tue, 27 Apr 2021 08:05:45 GMT
ETag: "bd41a55-9a4-5c0efbaaa6840"
Accept-Ranges: bytes
Content-Length: 2468
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/css
landing.offerteperte.net/tim/fibra-promo/css/iframe/style.css
200 OK 12 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/css/iframe/style.css
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (12041), with CRLF line terminators
Hash 83c29f33eee21518dd81d997abcac806
5ed1ef68cbc2ea93e3ae3e7223366aea14b1c5d7
bed8bd819970854f5b0dd89968df563a3661ff3ff1bfa96b1b7524b276ce4041
GET /tim/fibra-promo/css/iframe/style.css HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offerteperte.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:12 GMT
Server: Apache
Last-Modified: Fri, 27 Jan 2023 09:00:05 GMT
ETag: "ad412b7-2f10-5f33b176a0f40"
Accept-Ranges: bytes
Content-Length: 12048
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: text/css
landing.offerteperte.net/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 landing.offerteperte.net/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 0907c129d46ed23792b96f03a3cb5606
092cc971a5cf8d4307f2a9205314473b6038449a
655ff55b4978e19f8dee5d7dc99e884e3ca8cc93f6c02fe4874e8eff2696660e
GET /favicon.ico HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/tim/fibra-promo/a/?tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:12 GMT
Server: Apache
Last-Modified: Tue, 11 Oct 2022 15:21:33 GMT
ETag: "a1e2475-47e-5eac3d4c8b940"
Accept-Ranges: bytes
Content-Length: 1150
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: image/x-icon
www.offerteperte.net/js/richiesta.js
200 OK 7.1 kB URL HTTP/1.1 www.offerteperte.net/js/richiesta.js
IP
Hash b070d3a8a38d606d8c4e5c53974e3f1e
9ed08565c8669c539bed39d5847c96a47810ffd6
c2fabaa0177fee68f191d7c5df162be0d3ae59367f70a75de08deaec2f4fc43c
GET /js/richiesta.js HTTP/1.1
Host: www.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offerteperte.net/agenzia-digitale/tim-premium-fibra.htm?dl_landing=https%3A%2F%2Flanding.offerteperte.net%2Ftim%2Ffibra-promo%2Fa%2F%3Ftl_id_database%3D6063%26tl_track_code%3Dmm055jlp8zszzbyv8xfC106525872&tl_id_database=6063&tl_track_code=mm055jlp8zszzbyv8xfC106525872
Cookie: PHPSESSID=ctfb9oninl93scfrojfdavntf4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:12 GMT
Server: Apache
Last-Modified: Wed, 12 May 2021 09:02:13 GMT
ETag: "a2a0de9-1bd2-5c21e4439cf40"
Accept-Ranges: bytes
Content-Length: 7122
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: application/javascript
landing.offerteperte.net/tim/fibra-promo/font/timSans/TIMSans-Bold.eot
200 OK 151 kB URL HTTP/1.1 landing.offerteperte.net/tim/fibra-promo/font/timSans/TIMSans-Bold.eot
IP
File type Embedded OpenType (EOT), TIM Sans family\012- data
Size 151 kB (150858 bytes)
Hash 9ae44445363c1b6a378c0da5d4fe8364
82ea56d8edf4f1d21dda27af6387b7c1b0fe8368
3c66d6e2906345b80ada71bbac710f96484e438bf9be63db9a03bae61be14895
GET /tim/fibra-promo/font/timSans/TIMSans-Bold.eot HTTP/1.1
Host: landing.offerteperte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offerteperte.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:12 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 13:06:11 GMT
ETag: "ad412be-24d4a-5f2b1b6a5b6c0"
Accept-Ranges: bytes
Content-Length: 150858
Access-Control-Allow-Origin: https://www.offerteperte.net
Keep-Alive: timeout=2
Connection: Keep-Alive
Content-Type: application/vnd.ms-fontobject
g0t.eu/e7/cookie
200 OK 3.3 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8356)
Hash ac6ef83b67f981c4f7b689f17b0e1bd6
099a2a13402c86bc93f6c26de3a988d435c1ae06
c3cca60441ec6ec316fa037b210b0ff6493b6c0387191673d780249b07ad43a5
GET /e7/cookie HTTP/1.1
Host: g0t.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://landing.offerteperte.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 15:34:12 GMT
Server: Apache/2.4.53 (Unix) OpenSSL/1.1.1o PHP/7.4.28
X-Powered-By: PHP/7.4.28
Vary: Accept-Encoding
Content-Encoding: gzip
X-Robots-Tag: noindex
Content-Length: 3280
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html;charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f3432f91d02fa0459d523aa58e7cbefa
3f9ec4aad1e72a338155e7dd0637fa7757b1c76d
d0283c918be0b32f16472cce6270b9a9dfbb28b23858a8790e2cef1acc56d357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0283C918BE0B32F16472CCE6270B9A9DFBB28B23858A8790E2CEF1ACC56D357"
Last-Modified: Thu, 09 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21591
Expires: Thu, 09 Feb 2023 21:34:04 GMT
Date: Thu, 09 Feb 2023 15:34:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b11f9f70f5e8af4de6d9fc5b9f50ccbe
753cb08c3f8c7c0750d113253790a08db01986bc
d4b77ba995ea274fd169fc9bc66919b23e72a8edb88d6184bf3d7f3ab398c645
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e9ebfbd-8f55-4e32-8ea1-303aa280ea51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11036
x-amzn-requestid: 4bd4976c-9500-4d6d-a447-dd2873987d13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswexHCYIAMFzag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db612b-61d430202cbbf52823f38c49;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1mDt4mKlkZG2_zBPhwB_lbzJ0Im0FlnjmJMa7gcopuv14gwqtwlA2w==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:37 GMT
age: 64781
etag: "753cb08c3f8c7c0750d113253790a08db01986bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imgstore.ediscom.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 Feb 2023 15:34:12 GMT
date: Thu, 09 Feb 2023 15:34:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tr.sentianchetu.it/go/1675952783/1636382585/71697907fe64cf40d07e42f91080f51b/ln4wzjek/7/79
302 Found 0 B URL HTTP/2 tr.sentianchetu.it/go/1675952783/1636382585/71697907fe64cf40d07e42f91080f51b/ln4wzjek/7/79
IP
ASN #34081 INCUBATEC GmbH - Srl
GET /go/1675952783/1636382585/71697907fe64cf40d07e42f91080f51b/ln4wzjek/7/79 HTTP/1.1
Host: tr.sentianchetu.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Thu, 09 Feb 2023 15:34:10 GMT
content-type: text/html; charset=UTF-8
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, max-age=0
location: https://notizieveloci.com/v2/click/mm055jlp8zszzbyv8xf
strict-transport-security: max-age=15768000
x-content-type-options: nosniff
set-cookie: _backend=www3|Y+USd|Y+USd; path=/; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
185.249.183.231
3.134.125.175
23.33.119.27
93.184.220.29
192.46.236.54
104.17.24.14