r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6683
Expires: Tue, 22 Nov 2022 12:36:12 GMT
Date: Tue, 22 Nov 2022 10:44:49 GMT
Connection: keep-alive
webmail.olsenelectric.com/
173.201.193.148301 Moved Permanently 281 B URL HTTP/1.1 webmail.olsenelectric.com/
IP 173.201.193.148:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 665a22b5271a24682348d99119ab8558
3d4268b73c4d02f1c5f8ecef25467e7e99769210
33dc73d2757e222f286007a653e40566e5cefd1b94eaf21c3c22984a55cc66b2
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: webmail.olsenelectric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 22 Nov 2022 10:44:49 GMT
Server: Apache
Via: p3plgemwbe18-05
Location: https://email.secureserver.net/login.php?domain=webmail.olsenelectric.com
Content-Length: 281
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4903
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 10:44:49 GMT
Last-Modified: Tue, 22 Nov 2022 09:23:06 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4453
Expires: Tue, 22 Nov 2022 11:59:02 GMT
Date: Tue, 22 Nov 2022 10:44:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 10:09:22 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2127
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1U8u6sbx9CibGAZn3/hms7QCqdtjsBPuAhBGEuyGnCzc5EjQaSWN59e9+zjmVHsJz/ylwMLZHbwxaWLkrqP0nA==
x-amz-request-id: W2GV652N4XP2QT89
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 10:42:32 GMT
age: 137
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 10:44:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 37b6f9b26953b5bbb5f595aea36b0f71
9d472d66d7c583603b20e1c65ad73d1d3c78ab37
b86312437c80956e7a870c1bc2db88bcc439eaf248cb2632832aa2fad3eddb99
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 22 Nov 2022 10:44:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 21 Nov 2022 19:20:47 GMT
Expires: Tue, 22 Nov 2022 19:20:47 GMT
ETag: "9d472d66d7c583603b20e1c65ad73d1d3c78ab37"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 10:08:47 GMT
cache-control: public,max-age=3600
age: 2163
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
email.secureserver.net/login.php?domain=webmail.olsenelectric.com
173.201.193.133302 Found 0 B URL HTTP/1.1 email.secureserver.net/login.php?domain=webmail.olsenelectric.com
IP 173.201.193.133:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login.php?domain=webmail.olsenelectric.com HTTP/1.1
Host: email.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Date: Tue, 22 Nov 2022 10:44:50 GMT
Server: Apache
location: https://sso.secureserver.net/login?app=o365&realm=pass
content-length: 0
content-type: application/json
Via: p3plgemwbe17-03, 1.1 email.secureserver.net
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5864
Cache-Control: max-age=86388
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 10:44:50 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 10:44:38 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
sso.secureserver.net/login?app=o365&realm=pass
104.110.14.92200 OK 39 kB URL HTTP/1.1 sso.secureserver.net/login?app=o365&realm=pass
IP 104.110.14.92:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (54439)
Hash 1401c1cbbf909eb0038d9ffd30f17500
f3cda89f636dd21b2b9779a3f20b514e4ee77e44
46294e9d866bd7481a58d824df4098e1179d506309ee3190361ccae32d6d62a8
GET /login?app=o365&realm=pass HTTP/1.1
Host: sso.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: nginx/1.22.0
Strict-Transport-Security: max-age=31536000;
X-XSS-Protection: 1; mode=block
X-Request-Id: NpPCsND9CBojyse2dZKo24
X-Amzn-Trace-Id: Root=1-637ca822-4f6b4b125904131a44a17252
APM-Trace-Id: 25ef5b0f7460580a8541eb2bcc455768
Content-Security-Policy: frame-ancestors 'none'
X-Frame-Options: deny
Content-Language: en_US
Vary: Accept-Language, Accept-Encoding
Content-Encoding: gzip
Expires: Tue, 22 Nov 2022 10:44:50 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 22 Nov 2022 10:44:50 GMT
Content-Length: 39408
Connection: keep-alive
Set-Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; Domain=secureserver.net; Path=/
pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; Domain=secureserver.net; expires=Tue, 22 Nov 2022 11:04:50 GMT; Path=/
fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; Domain=secureserver.net; expires=Tue, 22 Nov 2022 11:04:50 GMT; Path=/
visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; Domain=secureserver.net; expires=Wed, 22 Nov 2023 10:44:50 GMT; Path=/
sso.secureserver.net/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/p.js
104.110.14.92200 OK 62 kB URL HTTP/1.1 sso.secureserver.net/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/p.js
IP 104.110.14.92:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8418a4c60d63154f9c958eea8f7589be
42649d0a78ad8a10cfaad9bb7d1296723d09fcdf
7e327bf27cf5c7e03b63f77620aea05ee79c8f145a4c803c04c5412950fd74e9
GET /149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/p.js HTTP/1.1
Host: sso.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/login?app=o365&realm=pass
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Encoding: br
Content-Type: application/javascript; charset=utf-8
Content-Length: 62258
Cache-Control: public, max-age=49
Expires: Tue, 22 Nov 2022 10:45:39 GMT
Date: Tue, 22 Nov 2022 10:44:50 GMT
Connection: keep-alive
img6.wsimg.com/wrhs/7c4a123069c201ce75da66eda7f84144/uxcore2.min.css
23.36.79.43200 OK 24 kB URL HTTP/2 img6.wsimg.com/wrhs/7c4a123069c201ce75da66eda7f84144/uxcore2.min.css
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 3f7ef4f31b19aa8f0b8e55eae4c1464a
9828d13e8cd14a385f438915b7bb2dafc90488b3
2b76a95c1bc1f4b1adfeba440f29ada165b415597355c0cc6d251b06b0a2f1ab
GET /wrhs/7c4a123069c201ce75da66eda7f84144/uxcore2.min.css HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
etag: "5d1957ac324416a4182d601710634bfa"
last-modified: Mon, 22 Aug 2022 19:16:59 GMT
vary: Accept-Encoding
x-amz-id-2: Z8uisexJrVtlwidXodjNs/C6Re7YYSX1TelTOgmnXAtqtWHy00F1lwl0Ga41aDg+pVNac6jQums=
x-amz-request-id: XWWHW7G3EBDC0NX4
x-amz-server-side-encryption: AES256
x-amz-version-id: vE3fFVJSbLrQBYG0Ytex6GB3K9Vm4K6b
content-length: 24301
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js
23.36.79.43200 OK 1.1 kB URL HTTP/2 img6.wsimg.com/wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2513)
Hash 9952df62c7de1874228d188a98340128
87736ead3b422d0f5ff3a828651c706a30346509
be2911a7ec305f60395806ad4d345b639a93710dd727145290e030c611ac6f4f
GET /wrhs-next/0a3c9ed73591ea11f77b51a04edf210f/heartbeat.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "0a3c9ed73591ea11f77b51a04edf210f"
last-modified: Wed, 18 May 2022 22:47:51 GMT
vary: Accept-Encoding
x-amz-id-2: aMj8TiOe9ZHkHMBl7+D79Tk3urszUftxyUUNMsLqvBtzMzzkAkH8Sdx2jGZRMPP5wryKOL4z/Uw=
x-amz-request-id: TQF2MMDRR7Y3E189
x-amz-server-side-encryption: AES256
x-amz-version-id: FzRQzzocPGwGQeIpdbfTJTNFUZkhGnos
content-length: 1060
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/a1ec4030e9dc43d22a343bffd99b8514/vendor~uxcore2.min.js
23.36.79.43200 OK 65 kB URL HTTP/2 img6.wsimg.com/wrhs/a1ec4030e9dc43d22a343bffd99b8514/vendor~uxcore2.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65464)
Hash ba86bd8e24b982eac94d0587fc32ec45
8ba79ced054aa1bb0c5a31546bf333d729441581
16f2e3b98ded7afb34d43f620b307efcbf52525446a5c9af2429df4aaf74f8e7
GET /wrhs/a1ec4030e9dc43d22a343bffd99b8514/vendor~uxcore2.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "a1ec4030e9dc43d22a343bffd99b8514"
last-modified: Mon, 22 Aug 2022 19:27:19 GMT
vary: Accept-Encoding
x-amz-id-2: R5B/pooN2M0dAFv/+RkAmjhUDs8guurRqIw8qezaBnPyjfisXcXfoWwN2ZSoMab8hOKWx20znvs=
x-amz-request-id: 9XKY7Z3FKQ9KGDWW
x-amz-server-side-encryption: AES256
x-amz-version-id: ttGpfVpj.G2mN.RDPPZI8OWmmArIEI1b
content-length: 65105
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/ae339c79bdde0255080976dd1538b62b/utilityheader.min.js
23.36.79.43200 OK 38 kB URL HTTP/2 img6.wsimg.com/wrhs/ae339c79bdde0255080976dd1538b62b/utilityheader.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (11223)
Hash 01aa082578d43540b94e62fdb48d60c5
ef968dec0b8c3de39f712718dcea3545cd2f2d0e
d11d404e3c6974d0e065d6ab4767c94d40f93bfdef5d578861d49b41810dc9bf
GET /wrhs/ae339c79bdde0255080976dd1538b62b/utilityheader.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ae339c79bdde0255080976dd1538b62b"
last-modified: Mon, 17 Oct 2022 18:35:46 GMT
vary: Accept-Encoding
x-amz-id-2: nf+eDyLuOECz2/dF/FoMIPq9QGWF/t2cvxImwHI0BdCmvheGsGBZzuCPsNStNacC9suGBLxv+hOIm05vRtEdkg==
x-amz-request-id: A8X7YESWMSBDVCZM
x-amz-server-side-encryption: AES256
x-amz-version-id: TbL42ZHMy31cMk8J3Sbqq3_2w464iLQR
content-length: 37604
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/fe8b24892f96760c9dd36b9e6673e085/utilityheader.min.css
23.36.79.43200 OK 11 kB URL HTTP/2 img6.wsimg.com/wrhs/fe8b24892f96760c9dd36b9e6673e085/utilityheader.min.css
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 33ae376cd6cac51840371ab224afe4d1
d56e51e6b22a75068f4bd6ba30a7b74f59aa015c
ac19e4f6f1a9f09dda62a21fdabca009aed4f8e40de9c7cbe43442ffdd5693bf
GET /wrhs/fe8b24892f96760c9dd36b9e6673e085/utilityheader.min.css HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
etag: "02fc06fbf92f87daf3dd028d66b696cd"
last-modified: Tue, 06 Sep 2022 22:23:01 GMT
vary: Accept-Encoding
x-amz-id-2: uCm9/raTyrAqhwfGSwNYWWGD4iKMcjvZcVFtzMbMfD7Tr48YWF+W3QqcCVtQvM/dZN+AGa0diuk=
x-amz-request-id: A9BNT316WYJKSFRY
x-amz-server-side-encryption: AES256
x-amz-version-id: CjoF9PIpu7KOLHemKIh3fNN2gOBU6Cb_
content-length: 10984
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +uCmXBHct6FZ+lNwC8KCaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AUq4I+FJa8QZZXb9IY7coy71Klw=
img6.wsimg.com/wrhs/1687c97b5e8ae39cdd00f0da2764d8a7/tcc.min.js
23.36.79.43200 OK 26 kB URL HTTP/2 img6.wsimg.com/wrhs/1687c97b5e8ae39cdd00f0da2764d8a7/tcc.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2063e6f427ff08060df2ad2249813e8c
1790c9f3747dcc8767e15e9a4a7284edef9979ff
0596e9a17ebf19c140d85876ab7a09103495c8267b8c622034128dacd28c0501
GET /wrhs/1687c97b5e8ae39cdd00f0da2764d8a7/tcc.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "1687c97b5e8ae39cdd00f0da2764d8a7"
last-modified: Sat, 19 Nov 2022 00:13:00 GMT
vary: Accept-Encoding
x-amz-id-2: ikoyxJzFDtDFNPSAwDlsvleeOcve1yyzSvMGcF44of1ItbQO47JPfdPSll3WUsfNVcS6jeawDUo=
x-amz-request-id: K2A1VJJGFRD0PZDF
x-amz-server-side-encryption: AES256
x-amz-version-id: Ys_AsvILEklLfFsXETGp0g4DutFIRJdr
content-length: 26463
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated
23.36.79.43200 OK 94 B URL HTTP/2 img6.wsimg.com/poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
Hash eb8b0ba88b3acfb11ea81d5c02be9108
4b7f14cc2db25abdbe25472934b7469b2488f9d4
7237f15a97fe102c6ed13eadc0f7980da03cd06a20dfb7c7b8050e60dada617d
GET /poly/v3/polyfill.min.js?features=Promise,Promise.prototype.finally,Intl.~locale.en-US&rum=0&unknown=polyfill&flags=gated HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-methods: GET,HEAD,OPTIONS
content-type: text/javascript; charset=utf-8
accept-ranges: bytes
last-modified: Fri, 18 Nov 2022 10:54:37 GMT
content-encoding: br
useragent_normaliser: firefox/105.0.0
cache-control: public, max-age=172800, s-maxage=31536000
expires: Thu, 24 Nov 2022 10:44:50 GMT
date: Tue, 22 Nov 2022 10:44:50 GMT
content-length: 94
server-timing: cdn-cache; desc=HIT, edge; dur=1, PASS, fastly;desc="Edge time";dur=184, cache-osl6523
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/12263c72ff7a15ea28d22a713a26c1c9/uxcore2.min.js
23.36.79.43200 OK 31 kB URL HTTP/2 img6.wsimg.com/wrhs/12263c72ff7a15ea28d22a713a26c1c9/uxcore2.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6c62339e9f11a76e3fe72bdbd5473a47
3140594e79a94987c730ca360d99c2d37d105871
695b3adf214d360010929708eb36119531b57fbfca28f837da311a347759b2a0
GET /wrhs/12263c72ff7a15ea28d22a713a26c1c9/uxcore2.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "12263c72ff7a15ea28d22a713a26c1c9"
last-modified: Mon, 22 Aug 2022 19:22:52 GMT
vary: Accept-Encoding
x-amz-id-2: hhTtc/X+7MmhFG8Al+kMwY9Tc07L+zg2d8xO3TcjYnLBGmwUrShODnHd3zD2RxVaBLmajrR4bRg=
x-amz-request-id: BZNCXCYVCEHK6MGY
x-amz-server-side-encryption: AES256
x-amz-version-id: iDhCpgcqJp1h7KoX_4WQPUilCp.TBzKS
content-length: 30995
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/36d260a9dfd3c942120af8d91cef9acc/browser-deprecation-banner.header-chunk.min.js
23.36.79.43200 OK 6.3 kB URL HTTP/2 img6.wsimg.com/wrhs/36d260a9dfd3c942120af8d91cef9acc/browser-deprecation-banner.header-chunk.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (20437)
Hash e5784fb4d8f2992b3eb2840f9646adc6
66c38c62a3b39e83d0350521ef7217da0b6e0d1d
73923e9dc888c9de37683f64f4695374913d4631dc808ccb0661031192e3db29
GET /wrhs/36d260a9dfd3c942120af8d91cef9acc/browser-deprecation-banner.header-chunk.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "36d260a9dfd3c942120af8d91cef9acc"
last-modified: Mon, 17 Oct 2022 18:43:58 GMT
vary: Accept-Encoding
x-amz-id-2: AbjucC+YIUqaG88Oz/VQm/H/dVE/KNSNX4585VBGaXGTiX9z8t+7OaYK5AOKnkGQLZIrbsV4HBU=
x-amz-request-id: 40MQG2PEJJNXTB2Y
x-amz-server-side-encryption: AES256
x-amz-version-id: Bc22NvtG0XwT.aKXB639l456S.MHOzE1
content-length: 6265
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
gui.secureserver.net/pcjson/salesheader?plId=3153&shopperId=&sid=
104.110.14.92200 OK 368 B URL HTTP/1.1 gui.secureserver.net/pcjson/salesheader?plId=3153&shopperId=&sid=
IP 104.110.14.92:0
File type JSON data\012- , ASCII text, with very long lines (368), with no line terminators
Hash 51ac16850161fd5d40cb247effd2bd88
219a589bb89697c64db5b145b56cc76a1a876039
d2eb333c83b13b0ab5a97dc501b05ad32ed63df4d24ee4182c16d18d415cdcc4
GET /pcjson/salesheader?plId=3153&shopperId=&sid= HTTP/1.1
Host: gui.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sso.secureserver.net/
Origin: https://sso.secureserver.net
Connection: keep-alive
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: no-store, must-revalidate, no-cache, max-age=0
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ARR/2.5
P3P: policyref="/w3c/p3p.xml", CP="COM CNT DEM FIN GOV INT NAV ONL PHY PRE PUR STA UNI IDC CAO OTI DSP COR CUR OUR IND", policyref="/w3c/p3p.xml", CP="COM CNT DEM FIN GOV INT NAV ONL PHY PRE PUR STA UNI IDC CAO OTI DSP COR CUR i OUR IND"
Content-Length: 368
Date: Tue, 22 Nov 2022 10:44:51 GMT
Connection: keep-alive
Set-Cookie: market=en-US; domain=secureserver.net; expires=Wed, 22-Nov-2023 10:44:50 GMT; path=/
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: x-requested-with, content-type, accept, origin, authorization, x-csrftoken
Access-Control-Allow-Methods: GET,POST,PUT,PATCH,DELETE
Access-Control-Allow-Origin: https://sso.secureserver.net
Timing-Allow-Origin: *
sdk.split.io/api/mySegments/0c71ae8e-cff5-44d2-824f-383dffb47910
151.101.87.9200 OK 37 B URL HTTP/2 sdk.split.io/api/mySegments/0c71ae8e-cff5-44d2-824f-383dffb47910
IP 151.101.87.9:0
File type ASCII text, with no line terminators
Hash cff5df264681aee1441dbe7f02eb70fa
66b2b43ff47f35bdee82fe3aeeb65781cbc62fe0
1b5003b6b3f46e92d81121b4c176ebe36113f9ebc9e22eb5ed8dbfd14c39c51e
OPTIONS /api/mySegments/0c71ae8e-cff5-44d2-824f-383dffb47910 HTTP/1.1
Host: sdk.split.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,splitsdkversion
Referer: https://sso.secureserver.net/
Origin: https://sso.secureserver.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
allow: HEAD,GET,OPTIONS,POST,PUT,DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept, Authorization, Content-Length, X-User-Token, X-Request-ID, SplitSDKMachineName, SplitSDKMachineIP, SplitSDKVersion, Cache-Control
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-max-age: 7200
accept-ranges: bytes
date: Tue, 22 Nov 2022 10:44:51 GMT
via: 1.1 varnish
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1669113891.079189,VS0,VE0
vary: Cookie
access-control-allow-origin: https://sso.secureserver.net
content-length: 37
X-Firefox-Spdy: h2
img6.wsimg.com/auth-assets/0f6f9f8334dd6807c3ffc05d7a61c18730640a15/pass-header-template.js
23.36.79.43200 OK 37 kB URL HTTP/2 img6.wsimg.com/auth-assets/0f6f9f8334dd6807c3ffc05d7a61c18730640a15/pass-header-template.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 437f347fe95530cb3719882255f20abd
dd66e81ba04c875203a22dbd8bd0c813880c757d
6973ed586c1b6349f3bd8b672efb58784e30dd62e51440a2ce3fb3c530a37339
GET /auth-assets/0f6f9f8334dd6807c3ffc05d7a61c18730640a15/pass-header-template.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "4d3b05784b55a5b4898846ba9657453c"
last-modified: Fri, 18 Nov 2022 04:55:38 GMT
vary: Accept-Encoding
x-amz-request-id: tx000000000000134cb6204-006377104a-25ef30696-default
x-rgw-object-type: Normal
content-length: 36750
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:51 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
sdk.split.io/api/splitChanges?since=-1
151.101.87.9200 OK 37 B URL HTTP/2 sdk.split.io/api/splitChanges?since=-1
IP 151.101.87.9:0
File type ASCII text, with no line terminators
Hash cff5df264681aee1441dbe7f02eb70fa
66b2b43ff47f35bdee82fe3aeeb65781cbc62fe0
1b5003b6b3f46e92d81121b4c176ebe36113f9ebc9e22eb5ed8dbfd14c39c51e
OPTIONS /api/splitChanges?since=-1 HTTP/1.1
Host: sdk.split.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,splitsdkversion
Referer: https://sso.secureserver.net/
Origin: https://sso.secureserver.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Varnish
retry-after: 0
allow: HEAD,GET,OPTIONS,POST,PUT,DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept, Authorization, Content-Length, X-User-Token, X-Request-ID, SplitSDKMachineName, SplitSDKMachineIP, SplitSDKVersion, Cache-Control
access-control-allow-methods: GET,PUT,POST,PATCH,DELETE,OPTIONS
access-control-max-age: 7200
accept-ranges: bytes
date: Tue, 22 Nov 2022 10:44:51 GMT
via: 1.1 varnish
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1669113891.146804,VS0,VE0
vary: Cookie
access-control-allow-origin: https://sso.secureserver.net
content-length: 37
X-Firefox-Spdy: h2
sdk.split.io/api/mySegments/0c71ae8e-cff5-44d2-824f-383dffb47910
151.101.87.9200 OK 37 B URL HTTP/2 sdk.split.io/api/mySegments/0c71ae8e-cff5-44d2-824f-383dffb47910
IP 151.101.87.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 58a9c452f775aaea72d029a238336709
0904cf0a7fd57407dc3ab57b670f9bba15ca5d1c
7c30e48576438c7a60b8abbc10b22035c262dcf7f32599f04f6c1e184b2523e7
GET /api/mySegments/0c71ae8e-cff5-44d2-824f-383dffb47910 HTTP/1.1
Host: sdk.split.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sso.secureserver.net/
Content-Type: application/json
Authorization: Bearer 9tfg12pl92flpn7c0g1dk3jj7ohavn1qio1m
SplitSDKVersion: javascript-10.21.1
Origin: https://sso.secureserver.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-expose-headers: Access-Control-Allow-Origin,X-Request-ID
strict-transport-security: max-age=15770000; includeSubDomains
etag: "1000002--gzip"
cache-control: no-transform, max-age=60, s-maxage=60
x-request-id: 2de76m9zpew
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
trace: cache-iad-kiad7000129-IAD-21eca94f-bc42-46c8-a39e-2d1624fe5792; cache-bma1660-BMA-46aa1827-8e12-4891-afbf-dbd155e1ce3f
accept-ranges: bytes
date: Tue, 22 Nov 2022 10:44:51 GMT
age: 0
x-served-by: cache-iad-kiad7000129-IAD, cache-bma1660-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1669113891.092808,VS0,VE102
vary: Origin, Accept-Encoding, Authorization
access-control-allow-origin: *
content-length: 37
X-Firefox-Spdy: h2
sso.secureserver.net/v1/api/pass/o365/header?marketid=en-US
104.110.14.92200 OK 66 B URL HTTP/1.1 sso.secureserver.net/v1/api/pass/o365/header?marketid=en-US
IP 104.110.14.92:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5af79aefdb9a397bb6e6ad5f6bd95ebd
ac3b701a31ceea82d304626e14c630b9f7d7e158
38c9f368abb3f076e36884affc734d6596fcf9c682bcbafae15e1c4771d1a13b
GET /v1/api/pass/o365/header?marketid=en-US HTTP/1.1
Host: sso.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sso.secureserver.net/login?app=o365&realm=pass
Content-Type: application/json
Connection: keep-alive
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; market=en-US
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: application/json
Server: nginx/1.22.0
X-Request-Id: NuGJVezVti4uDq4A2NHHEJ
X-Amzn-Trace-Id: Root=1-637ca823-0af7ab7064e9166255b3385a
APM-Trace-Id: 73f89e0750613a2b1eef8a7b59452505
Content-Security-Policy: frame-ancestors 'none'
X-Frame-Options: deny
Content-Language: en_US
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 22 Nov 2022 10:44:51 GMT
Content-Length: 66
Connection: keep-alive
sso.secureserver.net/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp
104.110.14.92429 Too Many Requests 75 kB URL HTTP/1.1 sso.secureserver.net/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp
IP 104.110.14.92:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (52643)
Hash 02d5bcedbf07568510dd221ce145d856
f9bb992f117cfeaab4c79d3ced92df27b593bffa
8960438f6b7532f045e9101e2a543413a1a84ea60920b5830c5f441c3908a0d0
GET /149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp HTTP/1.1
Host: sso.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/login?app=o365&realm=pass
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; market=en-US
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 429 Too Many Requests
Content-Encoding: br
Content-Type: text/html; charset=utf-8
p3p: CP="This site does not specify a policy in the P3P header"
x-kpsdk-ct: 0bLdxj13Jcu27DNFwUvcILGNiEdo85OkJPNqa8jevD2If18miSfxCrHBpCwZ9Ys9kdc3O8Dy45Z3D0PkOoUuC7gbGZtOeax5sgQ3jNU9D39tABOMkhVQ6mudSoGVWa8qRDDTnlYTnCCQGrQJBXdXSE8K
Content-Length: 74558
Expires: Tue, 22 Nov 2022 10:44:51 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 22 Nov 2022 10:44:51 GMT
Connection: keep-alive
Set-Cookie: akm_Imprb-ssn=0bLdxj13Jcu27DNFwUvcILGNiEdo85OkJPNqa8jevD2If18miSfxCrHBpCwZ9Ys9kdc3O8Dy45Z3D0PkOoUuC7gbGZtOeax5sgQ3jNU9D39tABOMkhVQ6mudSoGVWa8qRDDTnlYTnCCQGrQJBXdXSE8K; Max-Age=86400; Path=/; Expires=Wed, 23 Nov 2022 10:44:51 GMT; HttpOnly; Secure; SameSite=None
akm_Imprb=0bLdxj13Jcu27DNFwUvcILGNiEdo85OkJPNqa8jevD2If18miSfxCrHBpCwZ9Ys9kdc3O8Dy45Z3D0PkOoUuC7gbGZtOeax5sgQ3jNU9D39tABOMkhVQ6mudSoGVWa8qRDDTnlYTnCCQGrQJBXdXSE8K; Max-Age=86400; Path=/; Expires=Wed, 23 Nov 2022 10:44:51 GMT; HttpOnly
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5384
Expires: Tue, 22 Nov 2022 12:14:35 GMT
Date: Tue, 22 Nov 2022 10:44:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5384
Expires: Tue, 22 Nov 2022 12:14:35 GMT
Date: Tue, 22 Nov 2022 10:44:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5384
Expires: Tue, 22 Nov 2022 12:14:35 GMT
Date: Tue, 22 Nov 2022 10:44:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5384
Expires: Tue, 22 Nov 2022 12:14:35 GMT
Date: Tue, 22 Nov 2022 10:44:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5384
Expires: Tue, 22 Nov 2022 12:14:35 GMT
Date: Tue, 22 Nov 2022 10:44:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 06:05:40 GMT
age: 16751
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed6b76d15fc8d6295acdb6fb47461d3
b8c928f93a8d82b48491448d811a95ad99dc6aef
de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 45982
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f3fad7453f45dfa617243c8beac64e1
56414a905340e1b1478a0a40a52b25365a724524
7befcfbedac5652eb04bc675b67f7b642631d4e918f7aaee17b0b594e26854d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6031
x-amzn-requestid: f59b04c5-4955-4847-9a7f-d9d53b47ca52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3cV0GC-oAMF5hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637940f1-0425b3cf6a4650b60936feba;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 20:47:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VabInML1mfcQLIp29OWRNsixwfSWt0Wv9l7I-Ak7TdUHlNt2ZEVtPg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 15:21:36 GMT
age: 69795
etag: "56414a905340e1b1478a0a40a52b25365a724524"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8365a642-a490-4221-8f9f-867864b12d62.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8365a642-a490-4221-8f9f-867864b12d62.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 528d729159d8b08ed1fe05472dc65ce4
b7d570a7a095e127fd408b8272b93a52c5038b46
d6404764bcc3f2e7c4462b6b31fbc0e315c9cbf51b7424194c2bc6f4a21a33de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8365a642-a490-4221-8f9f-867864b12d62.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9862
x-amzn-requestid: 02281c2f-2a42-4891-97af-8d21a4cd0d2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrJEdYIAMFijQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee47-7c96415239d22bfc219f53f6;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: s7D3KMWB4GWn_ocJfzzb71Btbh8DE--DsUnwH9PkWptl7CXfqh3CXA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:48:12 GMT
age: 46599
etag: "b7d570a7a095e127fd408b8272b93a52c5038b46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dafd9e17dc0023e71ae513c6025e4b80
12e2654db1f384bb04f5c5042848b25dda86b710
e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4639
x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oELooAMFWFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bmrDryUp_4bvIikGkppa36e9isEfvK0gjunV6xmU5ApJtxlLR_GYkA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:05:18 GMT
age: 45573
etag: "12e2654db1f384bb04f5c5042848b25dda86b710"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4db9b106-0a0e-4fae-92b6-a8812d365210.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4db9b106-0a0e-4fae-92b6-a8812d365210.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ccd43a87165914b33d3d0abf4daac17
495bc194d9cf043cad38e9aab650a3e74a542c68
3e95928493b984c636a5fa77b22c29b3245ba4bba7d730a8545145b17a5986f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4db9b106-0a0e-4fae-92b6-a8812d365210.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8075
x-amzn-requestid: 5d8d5076-abee-484e-98e6-e2f8641133e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IqUGXnIAMF4gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee41-3c973b4d2d40cbaa2c5df221;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 72klCXzOuoI65Ga5GmG59pLPjzQwLo2Y6bj-IZIBQQU29LU7GM14Rw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:40:14 GMT
age: 43477
etag: "495bc194d9cf043cad38e9aab650a3e74a542c68"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
reporting.cdndex.io/error
54.230.111.12200 OK 2 B URL HTTP/2 reporting.cdndex.io/error
IP 54.230.111.12:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
OPTIONS /error HTTP/1.1
Host: reporting.cdndex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://sso.secureserver.net/
Origin: https://sso.secureserver.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 2
server: CloudFront
date: Tue, 22 Nov 2022 10:44:52 GMT
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
access-control-expose-headers: *
access-control-allow-methods: GET,POST,OPTIONS
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _E_CF64iziuSNdeYTmNdy476F82pLVWUpLn88jIX4kq6hOXqYFe-jw==
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
23.36.79.43200 OK 7.5 kB URL HTTP/2 img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (24676)
Hash b8a5a228a358454084c34dd1cf431c61
37aa5fe6e083b8147156ca66a1993a7bd74e8a61
06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Mon, 17 Jan 2022 17:21:37 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 8
x-edgeconnect-origin-mex-latency: 357
x-amz-id-2: nldPfdb2FYbpxPRfMYRSd83AOL7ZmlBdZQSm5hguJELKdfn8+sza0oLEpTYjiKd2JeD3gDplFHw=
x-amz-request-id: RJ3J3PMANG6125DE
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:52 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
reporting.cdndex.io/error
54.230.111.12200 OK 8 B URL HTTP/2 reporting.cdndex.io/error
IP 54.230.111.12:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d223c6f7f2f41d4e382d8a46737f4ff3
259192b780cf8d009d6dccc3b2493fd980838b29
2cb69644d1877e6dfa38adcfddfc21208f12a43753394381a54587438db2e666
POST /error HTTP/1.1
Host: reporting.cdndex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 22127
Origin: https://sso.secureserver.net
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 8
server: CloudFront
date: Tue, 22 Nov 2022 10:44:52 GMT
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
access-control-allow-methods: GET,POST,OPTIONS
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: J0kA0OtWEVhl_HO1C7Poz3CTfwHeZRSmEupcCU2fpgM-Tyk03TQkJA==
X-Firefox-Spdy: h2
sso.secureserver.net/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/tl
104.110.14.92200 OK 0 B URL HTTP/1.1 sso.secureserver.net/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/tl
IP 104.110.14.92:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/tl HTTP/1.1
Host: sso.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/octet-stream
x-kpsdk-ct: 0bLdxj13Jcu27DNFwUvcILGNiEdo85OkJPNqa8jevD2If18miSfxCrHBpCwZ9Ys9kdc3O8Dy45Z3D0PkOoUuC7gbGZtOeax5sgQ3jNU9D39tABOMkhVQ6mudSoGVWa8qRDDTnlYTnCCQGrQJBXdXSE8K
x-kpsdk-dt: 174sy10y0g7z2jx51cz478y3fz61l
Content-Length: 11498
Origin: https://sso.secureserver.net
Connection: keep-alive
Referer: https://sso.secureserver.net/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; market=en-US; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D; akm_Imprb-ssn=0bLdxj13Jcu27DNFwUvcILGNiEdo85OkJPNqa8jevD2If18miSfxCrHBpCwZ9Ys9kdc3O8Dy45Z3D0PkOoUuC7gbGZtOeax5sgQ3jNU9D39tABOMkhVQ6mudSoGVWa8qRDDTnlYTnCCQGrQJBXdXSE8K; akm_Imprb=0bLdxj13Jcu27DNFwUvcILGNiEdo85OkJPNqa8jevD2If18miSfxCrHBpCwZ9Ys9kdc3O8Dy45Z3D0PkOoUuC7gbGZtOeax5sgQ3jNU9D39tABOMkhVQ6mudSoGVWa8qRDDTnlYTnCCQGrQJBXdXSE8K
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: text/plain
p3p: CP="This site does not specify a policy in the P3P header"
x-kpsdk-cr: false
x-kpsdk-ct: 08pnfvhwuyi8Flv2k1CutypA3ZyIpSz2A6QoD9M7fALNy4bVpjeBfB585vWC9m5I4tPlW6NinznT8SkeQnSk8forudh3ZaTWPf5OgZJJ2Xlk7OawQ7x1rjbk56TAaL3Cr3BYYkwSiLb4FPFQ83BCrcGV
x-kpsdk-st: 1669113892987
Content-Length: 0
Expires: Tue, 22 Nov 2022 10:44:53 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 22 Nov 2022 10:44:53 GMT
Connection: keep-alive
Set-Cookie: akm_Imprb-ssn=08pnfvhwuyi8Flv2k1CutypA3ZyIpSz2A6QoD9M7fALNy4bVpjeBfB585vWC9m5I4tPlW6NinznT8SkeQnSk8forudh3ZaTWPf5OgZJJ2Xlk7OawQ7x1rjbk56TAaL3Cr3BYYkwSiLb4FPFQ83BCrcGV; Max-Age=86400; Path=/; Expires=Wed, 23 Nov 2022 10:44:52 GMT; HttpOnly; Secure; SameSite=None
akm_Imprb=08pnfvhwuyi8Flv2k1CutypA3ZyIpSz2A6QoD9M7fALNy4bVpjeBfB585vWC9m5I4tPlW6NinznT8SkeQnSk8forudh3ZaTWPf5OgZJJ2Xlk7OawQ7x1rjbk56TAaL3Cr3BYYkwSiLb4FPFQ83BCrcGV; Max-Age=86400; Path=/; Expires=Wed, 23 Nov 2022 10:44:52 GMT; HttpOnly
events.api.secureserver.net/pageEvents.aspx?timestamp=1669113891110&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=524514929&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&eventdate=2022-11-22T10%3A44%3A51.111Z&eventtype=load&e_id=sso.login_panel.landing.page.load&hit_id=f91dac4c-3c82-54a5-856b-fcb23e26b587&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb
23.72.139.72200 OK 43 B URL HTTP/2 events.api.secureserver.net/pageEvents.aspx?timestamp=1669113891110&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=524514929&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&eventdate=2022-11-22T10%3A44%3A51.111Z&eventtype=load&e_id=sso.login_panel.landing.page.load&hit_id=f91dac4c-3c82-54a5-856b-fcb23e26b587&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb
IP 23.72.139.72:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pageEvents.aspx?timestamp=1669113891110&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=524514929&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&eventdate=2022-11-22T10%3A44%3A51.111Z&eventtype=load&e_id=sso.login_panel.landing.page.load&hit_id=f91dac4c-3c82-54a5-856b-fcb23e26b587&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sso.secureserver.net
Connection: keep-alive
Referer: https://sso.secureserver.net/
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; market=en-US; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://sso.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Tue, 22 Nov 2022 10:44:53 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/pageEvents.aspx?timestamp=1669113891106&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=131950446&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Csso.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22app%22%3A%22o365%22%2C%22realm%22%3A%22pass%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-11-22T10%3A44%3A51.106Z&eventtype=impression&e_id=uxp.hyd.int.utilityheader.sso.impression&hit_id=54c9fa62-a4ff-5ca8-b3ab-a8f17eff9e87&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb
23.72.139.72200 OK 43 B URL HTTP/2 events.api.secureserver.net/pageEvents.aspx?timestamp=1669113891106&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=131950446&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Csso.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22app%22%3A%22o365%22%2C%22realm%22%3A%22pass%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-11-22T10%3A44%3A51.106Z&eventtype=impression&e_id=uxp.hyd.int.utilityheader.sso.impression&hit_id=54c9fa62-a4ff-5ca8-b3ab-a8f17eff9e87&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb
IP 23.72.139.72:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pageEvents.aspx?timestamp=1669113891106&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=131950446&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&usrin=market%2Cen-US%5Esplit%2C%5Euxcore%2C2%5Ecurrency%2CUSD%5Ehostname%2Csso.secureserver.net%5Epath%2Cundefined%5Equery%2C%7B%22app%22%3A%22o365%22%2C%22realm%22%3A%22pass%22%7D%5Ecountry%2CUnited%20States%5Elang%2CEnglish&eventdate=2022-11-22T10%3A44%3A51.106Z&eventtype=impression&e_id=uxp.hyd.int.utilityheader.sso.impression&hit_id=54c9fa62-a4ff-5ca8-b3ab-a8f17eff9e87&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sso.secureserver.net
Connection: keep-alive
Referer: https://sso.secureserver.net/
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; market=en-US; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://sso.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Tue, 22 Nov 2022 10:44:53 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/image.aspx?referrer=×tamp=1669113891102&corrid=216364732&marketid=en-US&vs=visible&rand=1275472002&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fapp%3Do365%26realm%3Dpass&trace_id=a29a223e4d755117bf4b580deec279fb&hit_id=fa6a376f-7d5f-5d1c-a087-f8ed33bd5c84&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None
23.72.139.72200 OK 43 B URL HTTP/2 events.api.secureserver.net/image.aspx?referrer=×tamp=1669113891102&corrid=216364732&marketid=en-US&vs=visible&rand=1275472002&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fapp%3Do365%26realm%3Dpass&trace_id=a29a223e4d755117bf4b580deec279fb&hit_id=fa6a376f-7d5f-5d1c-a087-f8ed33bd5c84&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None
IP 23.72.139.72:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /image.aspx?referrer=×tamp=1669113891102&corrid=216364732&marketid=en-US&vs=visible&rand=1275472002&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&querystring=%3Fapp%3Do365%26realm%3Dpass&trace_id=a29a223e4d755117bf4b580deec279fb&hit_id=fa6a376f-7d5f-5d1c-a087-f8ed33bd5c84&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sso.secureserver.net
Connection: keep-alive
Referer: https://sso.secureserver.net/
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; market=en-US; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://sso.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Tue, 22 Nov 2022 10:44:53 GMT
set-cookie: tcc_refer=; domain=.secureserver.net; expires=Mon, 21 Nov 2022 10:44:52 GMT; path=/; samesite=None; secure;
fb_sessiontraffic=S_TOUCH=11/22/2022%2010:44:52.975&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=11/22/2022%2003:44:52.975&pc=1; max-age=1200; domain=.secureserver.net; path=/; samesite=None; secure;
pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; max-age=1200; domain=.secureserver.net; path=/; samesite=None; secure;
visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; max-age=31536000; domain=.secureserver.net; expires=Wed, 22 Nov 2023 10:44:52 GMT; path=/; samesite=None; secure;
traffic=; domain=.secureserver.net; path=/; samesite=None; secure;
X-Firefox-Spdy: h2
events.api.secureserver.net/pageEvents.aspx?timestamp=1669113891114&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=1413554481&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&eventdate=2022-11-22T10%3A44%3A51.114Z&eventtype=load&e_id=sso.login_panel.sso_landing.o365.page.load&hit_id=08b8dcf5-a947-58b5-9fa4-6dcd8a57aa9f&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb
23.72.139.72200 OK 43 B URL HTTP/2 events.api.secureserver.net/pageEvents.aspx?timestamp=1669113891114&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=1413554481&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&eventdate=2022-11-22T10%3A44%3A51.114Z&eventtype=load&e_id=sso.login_panel.sso_landing.o365.page.load&hit_id=08b8dcf5-a947-58b5-9fa4-6dcd8a57aa9f&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb
IP 23.72.139.72:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pageEvents.aspx?timestamp=1669113891114&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=1413554481&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.event&eventdate=2022-11-22T10%3A44%3A51.114Z&eventtype=load&e_id=sso.login_panel.sso_landing.o365.page.load&hit_id=08b8dcf5-a947-58b5-9fa4-6dcd8a57aa9f&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sso.secureserver.net
Connection: keep-alive
Referer: https://sso.secureserver.net/
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; market=en-US; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://sso.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Tue, 22 Nov 2022 10:44:53 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/b.aspx?timestamp=1669113892670&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=1473415771&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.log&eventdate=2022-11-22T10%3A44%3A52.670Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1669113890001&connectStart=1669113889984&domComplete=1669113892658&domContentLoadedEventEnd=1669113891090&domContentLoadedEventStart=1669113891081&domInteractive=1669113891044&domLoading=1669113890240&domainLookupEnd=1669113889983&domainLookupStart=1669113889968&fetchStart=1669113889967&navigationStart=1669113889029&requestStart=1669113890001&responseEnd=1669113890227&responseStart=1669113890225&loadEventStart=1669113892658&loadEventEnd=0&transferSize=40593&encodedBodySize=39408&decodedBodySize=174924&navigationType=navigate&fcp=1627&hit_id=5bcb8012-6943-5a6a-9436-72d2bf8a829a&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb
23.72.139.72200 OK 43 B URL HTTP/2 events.api.secureserver.net/b.aspx?timestamp=1669113892670&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=1473415771&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.log&eventdate=2022-11-22T10%3A44%3A52.670Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1669113890001&connectStart=1669113889984&domComplete=1669113892658&domContentLoadedEventEnd=1669113891090&domContentLoadedEventStart=1669113891081&domInteractive=1669113891044&domLoading=1669113890240&domainLookupEnd=1669113889983&domainLookupStart=1669113889968&fetchStart=1669113889967&navigationStart=1669113889029&requestStart=1669113890001&responseEnd=1669113890227&responseStart=1669113890225&loadEventStart=1669113892658&loadEventEnd=0&transferSize=40593&encodedBodySize=39408&decodedBodySize=174924&navigationType=navigate&fcp=1627&hit_id=5bcb8012-6943-5a6a-9436-72d2bf8a829a&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb
IP 23.72.139.72:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /b.aspx?timestamp=1669113892670&corrid=216364732&referrer=&marketid=en-US&vs=visible&rand=1473415771&sitename=sso.secureserver.net&page=%2Flogin&location=https%3A%2F%2Fsso.secureserver.net%2Flogin%3Fapp%3Do365%26realm%3Dpass&agent=false&delegated=false&salessite=false&loadSource=uxpHeader&page_level_properties=loadSource&event_type=page.log&eventdate=2022-11-22T10%3A44%3A52.670Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1669113890001&connectStart=1669113889984&domComplete=1669113892658&domContentLoadedEventEnd=1669113891090&domContentLoadedEventStart=1669113891081&domInteractive=1669113891044&domLoading=1669113890240&domainLookupEnd=1669113889983&domainLookupStart=1669113889968&fetchStart=1669113889967&navigationStart=1669113889029&requestStart=1669113890001&responseEnd=1669113890227&responseStart=1669113890225&loadEventStart=1669113892658&loadEventEnd=0&transferSize=40593&encodedBodySize=39408&decodedBodySize=174924&navigationType=navigate&fcp=1627&hit_id=5bcb8012-6943-5a6a-9436-72d2bf8a829a&visitor_guid=0c71ae8e-cff5-44d2-824f-383dffb47910&page_realm=pass&has_consent=1&cv=3.24.1&client_name=tcc&same_site=None&trace_id=a29a223e4d755117bf4b580deec279fb HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sso.secureserver.net
Connection: keep-alive
Referer: https://sso.secureserver.net/
Cookie: uxp-ns=%7B%22exp%22%3A%20%22ineligible%22%7D; pathway=0c71ae8e-cff5-44d2-824f-383dffb47910; fb_sessiontraffic=S_TOUCH=&pathway=0c71ae8e-cff5-44d2-824f-383dffb47910&V_DATE=&pc=0; visitor=vid=0c71ae8e-cff5-44d2-824f-383dffb47910; market=en-US; traffic=; _policy=%7B%22restricted_market%22:false,%22tracking_market%22:%22none%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://sso.secureserver.net
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Tue, 22 Nov 2022 10:44:53 GMT
X-Firefox-Spdy: h2
sdk.split.io/api/splitChanges?since=-1
151.101.87.9200 OK 0 B URL HTTP/2 sdk.split.io/api/splitChanges?since=-1
IP 151.101.87.9:0
GET /api/splitChanges?since=-1 HTTP/1.1
Host: sdk.split.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sso.secureserver.net/
Content-Type: application/json
Authorization: Bearer 9tfg12pl92flpn7c0g1dk3jj7ohavn1qio1m
SplitSDKVersion: javascript-10.21.1
Origin: https://sso.secureserver.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
strict-transport-security: max-age=15770000; includeSubDomains
etag: "1679690399--gzip"
last-modified: Tue, 22 Nov 2022 08:41:11 GMT
cache-control: no-transform, max-age=60, s-maxage=60
x-request-id: 2de2rn73qn0
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
trace: cache-iad-kiad7000096-IAD-c05ac467-1459-4c4d-8460-c74b8aa2e3c0; cache-bma1670-BMA-73e0faff-96d9-490e-b385-5f6171bf833f
accept-ranges: bytes
date: Tue, 22 Nov 2022 10:44:51 GMT
age: 7417
x-served-by: cache-iad-kiad7000096-IAD, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 4, 1
x-timer: S1669113891.163536,VS0,VE2
vary: Accept-Encoding, Authorization
access-control-allow-origin: *
content-length: 412121
X-Firefox-Spdy: h2
img6.wsimg.com/auth-assets/0f6f9f8334dd6807c3ffc05d7a61c18730640a15/login-panel.js
23.36.79.43200 OK 0 B URL HTTP/2 img6.wsimg.com/auth-assets/0f6f9f8334dd6807c3ffc05d7a61c18730640a15/login-panel.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
GET /auth-assets/0f6f9f8334dd6807c3ffc05d7a61c18730640a15/login-panel.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sso.secureserver.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "125af6e63997ba6ac5baf0e2a8024dda"
last-modified: Fri, 18 Nov 2022 06:26:21 GMT
vary: Accept-Encoding
x-amz-request-id: tx000000000000134f5a94b-0063772589-25ef75879-default
x-rgw-object-type: Normal
content-length: 115513
cache-control: max-age=31536000
date: Tue, 22 Nov 2022 10:44:50 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2