r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12826
Expires: Thu, 01 Dec 2022 06:00:30 GMT
Date: Thu, 01 Dec 2022 02:26:44 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash accd140b7197c4ac348a416968aef0be
a3e66c4c766b61ad6ea1a0b7133c39f736f54f0a
e9c92beab1ca7c66810ca520c1687be8e33c898579a1b633fffe598f95d02aef
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E9C92BEAB1CA7C66810CA520C1687BE8E33C898579A1B633FFFE598F95D02AEF"
Last-Modified: Wed, 30 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7972
Expires: Thu, 01 Dec 2022 04:39:36 GMT
Date: Thu, 01 Dec 2022 02:26:44 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 283
Cache-Control: max-age=115758
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 02:26:44 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 10:36:02 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15835
Expires: Thu, 01 Dec 2022 06:50:39 GMT
Date: Thu, 01 Dec 2022 02:26:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 02:19:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 419
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: V2c7esFlxOR8LGp5Cbw1cQtufRVTXXyEtGGpzQiijrTx/hBXjHYAcqw/Xi8HvfAvJWTQdt1xxq4=
x-amz-request-id: 9WZD72E5G04RGXTX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 01:46:05 GMT
age: 2439
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash accd140b7197c4ac348a416968aef0be
a3e66c4c766b61ad6ea1a0b7133c39f736f54f0a
e9c92beab1ca7c66810ca520c1687be8e33c898579a1b633fffe598f95d02aef
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E9C92BEAB1CA7C66810CA520C1687BE8E33C898579A1B633FFFE598F95D02AEF"
Last-Modified: Wed, 30 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7972
Expires: Thu, 01 Dec 2022 04:39:36 GMT
Date: Thu, 01 Dec 2022 02:26:44 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 02:26:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 02:26:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.106200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32065)
Hash 6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlglobalconnectdelivery.pages.dev/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 10:09:16 GMT
expires: Wed, 29 Nov 2023 10:09:16 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 145048
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 02:26:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/lib/zocial/zocial.css?v=2.4.0
104.110.12.26200 OK 23 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/lib/zocial/zocial.css?v=2.4.0
IP 104.110.12.26:0
File type ASCII text, with very long lines (23706)
Hash 91c48ad770af61bcb70a4be5316d0484
07de7222f2f079e43c2bfc8b2389a1040c29a42f
f4fe69dc6b88939713a050a240fd462cba8c50a480b09c8f442ea451c0e79ad3
GET /auth/resources/spogr/login/mydhli-portal/lib/zocial/zocial.css?v=2.4.0 HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlglobalconnectdelivery.pages.dev/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
x-xss-protection: 1; mode=block
referrer-policy: no-referrer
x_request_id: f27664a17ffa47e0ba1f90174061d73c
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: text/css;charset=UTF-8
content-length: 22562
cache-control: max-age=71717
expires: Thu, 01 Dec 2022 22:22:02 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
dhlglobalconnectdelivery.pages.dev/
172.66.44.224200 OK 37 kB URL HTTP/2 dhlglobalconnectdelivery.pages.dev/
IP 172.66.44.224:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (929), with CRLF line terminators
Hash 2ef3b594f6b93672c84dc59af540f988
6976a610fa0c44ec320120eaf637d70f06e338bc
0fbb07f8660dac94b9319e83e7841e4e1f959bcee17956f965054c6d2baedde5
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET / HTTP/1.1
Host: dhlglobalconnectdelivery.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 01 Dec 2022 02:26:44 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"9e375854b63f092d3a61fd678c32f79f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Aq9yxGSLAqQavHh4UGIUPX4NPLN2yabBtOvy1ix1DTnZiDWQmLuIYrq0N4xo4XN6GCbjXXGH%2BMftrQschFYYQONrKqw0Htpid7GV4XRZrf35gfkPxRbDDmQC8Vakn0Uh6sGDh%2B29wnoMF2ywBDPpNew88lcf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77286134ac47b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/css/patternfly-additions.css?v=2.4.0
104.110.12.26200 OK 34 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/css/patternfly-additions.css?v=2.4.0
IP 104.110.12.26:0
File type assembler source, Unicode text, UTF-8 text
Hash 1ff3042735980aee9eab34cc2e9d904b
216e017c741264ab00b7b602a596f310e9a4ee03
cb6fa955590fde79d3d3433eb1c01596667464d0e98269a17e918c3d9abfb2f4
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/css/patternfly-additions.css?v=2.4.0 HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlglobalconnectdelivery.pages.dev/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
x-xss-protection: 1; mode=block
referrer-policy: no-referrer
x_request_id: 705b5f73001e46228950eab8881d34f9
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: text/css;charset=UTF-8
content-length: 34218
cache-control: max-age=71735
expires: Thu, 01 Dec 2022 22:22:20 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/css/styles.css?v=2.4.0
104.110.12.26200 OK 4.5 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/css/styles.css?v=2.4.0
IP 104.110.12.26:0
Hash f317aa31d541960028055becdb92d12f
37f6e0ea8e072a36bcb2fb00eb324dbff36b41a6
f5d6363a571d4940cb7242e07fb5ea58abaf9aedebc7e51cf7472b0fa544cef9
GET /auth/resources/spogr/login/mydhli-portal/css/styles.css?v=2.4.0 HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlglobalconnectdelivery.pages.dev/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
x-xss-protection: 1; mode=block
referrer-policy: no-referrer
x_request_id: 29e52f2ca7f847f48b3ec70c2f104474
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: text/css;charset=UTF-8
content-length: 4547
cache-control: max-age=58688
expires: Thu, 01 Dec 2022 18:44:53 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/img/bg-login.jpg
104.110.12.26200 OK 48 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/img/bg-login.jpg
IP 104.110.12.26:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1250x1200, components 3\012- data
Hash bb6b114e3cad064848509711cd0da84e
8697988aeac7e028c7e82c7e43d408f8fdcb845c
0ccfbfeb715ec5990cb233658f966dcde83526c5626c302b67eb18d6984c3ae8
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/img/bg-login.jpg HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
referrer-policy: no-referrer
x_request_id: 44185199c78b41bf8814eab32deda428
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: image/jpeg
content-length: 47664
cache-control: max-age=300532
expires: Sun, 04 Dec 2022 13:55:37 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/img/dhl-logo.svg
104.110.12.26200 OK 1.2 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/img/dhl-logo.svg
IP 104.110.12.26:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text
Hash 861ffbbf7345e751b9ab3b4b05c27a18
d2ada1bc47b80eade9ab0af8886d0a0cc98d7561
ac14fce6146b0603e24e45a48d85a37edf81ad5dc633ab5b3e57f4c6e84aeffd
GET /auth/resources/spogr/login/mydhli-portal/img/dhl-logo.svg HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
x-xss-protection: 1; mode=block
referrer-policy: no-referrer
x_request_id: 468782d1ab48444cb9035b90f577df47
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: image/svg+xml
content-length: 1228
cache-control: max-age=295495
expires: Sun, 04 Dec 2022 12:31:40 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/fonts/Delivery_W_Bd.woff
104.110.12.26200 OK 41 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/fonts/Delivery_W_Bd.woff
IP 104.110.12.26:0
File type Web Open Font Format, TrueType, length 41328, version 1.66\012- data
Hash 97f8b06224b4b7883bae70b30635ac98
f356783f658e54185188a5e2fdf057658036a89b
1e3eb7cd53a28272ff889192f406b828ec8fbc40833e74a40f6150004c58cde9
GET /auth/resources/spogr/login/mydhli-portal/fonts/Delivery_W_Bd.woff HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: d39a85f265a64167a06c7519087200e8
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
content-length: 41267
cache-control: max-age=295487
expires: Sun, 04 Dec 2022 12:31:32 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtRpid;desc="-756971719", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/img/background-pic@2x.jpg
104.110.12.26200 OK 771 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/img/background-pic@2x.jpg
IP 104.110.12.26:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 2400x1600, components 3\012- data
Size 771 kB (771116 bytes)
Hash ce2425e1e5155d1e44fedcacec522c73
f475fc65e81f96d229af0a251a2dbdd8b9825dd7
6ed00afe62833909e3371137aa6024732fe3b65da0c3001093267823b2770649
GET /auth/resources/spogr/login/mydhli-portal/img/background-pic@2x.jpg HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
referrer-policy: no-referrer
x_request_id: 6325857cce3d436d9ef1d3fb5955e28a
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: image/jpeg
content-length: 771116
cache-control: max-age=295528
expires: Sun, 04 Dec 2022 12:32:13 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=8
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Bold-webfont.woff
104.110.12.26200 OK 214 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Bold-webfont.woff
IP 104.110.12.26:0
File type Web Open Font Format, TrueType, length 98780, version 1.1\012- data
Size 214 kB (214538 bytes)
Hash b96e5fb1b59aee0c0f5c031c002e6a97
6f17a3d265a53b4876e3a84bbe3685d71b504b9a
285098522bf1bba021d704f65b3cabb3475088a53af6d3a3eda5054ff8fc8847
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Bold-webfont.woff HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: 1143a6a7586c454ea139e81e6aebb5dd
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
vary: Accept-Encoding
cache-control: private, max-age=395800
expires: Mon, 05 Dec 2022 16:23:25 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtRpid;desc="1346420512", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.woff
104.110.12.26200 OK 212 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.woff
IP 104.110.12.26:0
File type Web Open Font Format, TrueType, length 98492, version 1.1\012- data
Size 212 kB (212479 bytes)
Hash 6ae9413cd6531c1c561c5ad1391f2b25
ece39eee87107ea1a293a4f37051027238b18390
8034ca24dfd9801984083b6c8d3db4a2e5cfb11340eb02c521a35c39fcbcb246
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.woff HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: 24f5ad4400884a33b28183b325f6236b
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
vary: Accept-Encoding
cache-control: private, max-age=395822
expires: Mon, 05 Dec 2022 16:23:47 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtRpid;desc="1916241845", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Light-webfont.woff
104.110.12.26200 OK 215 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Light-webfont.woff
IP 104.110.12.26:0
File type Web Open Font Format, TrueType, length 97924, version 1.1\012- data
Size 215 kB (214575 bytes)
Hash 3f89983285809efd6abe11a8ed741fe5
d7f81ec1bd226264e990de2f7fb18b55041103da
64ac2162170a0040db6bcdc0e8e82f777eda93d73f3d14d1a39b48d9ba86f6bb
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Light-webfont.woff HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: 65838714a20b4608b68ceeeb4819f4fc
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
vary: Accept-Encoding
cache-control: private, max-age=395808
expires: Mon, 05 Dec 2022 16:23:33 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtRpid;desc="1787477474", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.ttf
104.110.12.26200 OK 116 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.ttf
IP 104.110.12.26:0
File type TrueType Font data, digitally signed, 19 tables, 1st "DSIG", 30 names, Macintosh, Digitized data copyright \251 2011, Google Corporation.Open Sans ExtraboldRegularAscender - Open\012- data
Size 116 kB (116199 bytes)
Hash 5d08f2b399fe958c2335ea32056bc249
2be512304ae6805457886d89b1f993eb00fcfd78
49f7805ecf00cbccb24701f723efca9a80dd2ee776df8023da34550491e31e33
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.ttf HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: 84a074af728041c386d831f167054cf2
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
content-length: 116199
cache-control: private, max-age=395833
expires: Mon, 05 Dec 2022 16:23:58 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=3, dtRpid;desc="-246792688", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Regular-webfont.woff2
104.110.12.26200 OK 158 kB URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Regular-webfont.woff2
IP 104.110.12.26:0
File type Web Open Font Format (Version 2), TrueType, length 61980, version 1.6554\012- data
Size 158 kB (158425 bytes)
Hash 656aaede291997a91d2d0f1327b34556
33a848894a44a0d21eccf2199193258747853096
6586cf36e217a2528b9fd5064687cae914a8312ed1b130a0adb8d97323dc92a1
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Regular-webfont.woff2 HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: 94cdf0ce89f14696add4ca7dd51a6830
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
vary: Accept-Encoding
cache-control: private, max-age=395958
expires: Mon, 05 Dec 2022 16:26:03 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtRpid;desc="610272500", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2
ziemaco.com/jquery.min.v2.js
88.135.37.139404 Not Found 708 B URL HTTP/2 ziemaco.com/jquery.min.v2.js
IP 88.135.37.139:0
ASN #48715 Sefroyek Pardaz Engineering Co. LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
Analyzer Verdict Alert fortinet Phishing
GET /jquery.min.v2.js HTTP/1.1
Host: ziemaco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlglobalconnectdelivery.pages.dev/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Thu, 01 Dec 2022 02:26:45 GMT
vary: User-Agent
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 287
Cache-Control: max-age=110693
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 02:26:45 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:11:38 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
keycloak.mydhli.com/auth/resources/8y1gc/login/mydhli-portal/img/favicon.ico
104.110.12.26404 Not Found 0 B URL HTTP/2 keycloak.mydhli.com/auth/resources/8y1gc/login/mydhli-portal/img/favicon.ico
IP 104.110.12.26:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /auth/resources/8y1gc/login/mydhli-portal/img/favicon.ico HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dhlglobalconnectdelivery.pages.dev/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
x-xss-protection: 1; mode=block
referrer-policy: no-referrer
x_request_id: 98a5034260c346839b3e026555a2d577
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-length: 0
cache-control: private, max-age=604800
expires: Thu, 08 Dec 2022 02:26:45 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
set-cookie: dtCookie=v_4_srv_4_sn_24D61B017BBDA1332CF24B0C76F61E0F_perc_100000_ol_0_mul_1_app-3A81de07ed5659ab10_1; Path=/; Domain=.mydhli.com
9098e0d51d5c006aa714420aaf766a52=6d74b5bc04675c2971440fdf2fc57930; path=/; HttpOnly; Secure; SameSite=None
BIGipServerpl_keycloak.dhl.com_443=205782018.47873.0000; path=/; Httponly; Secure
TS0136675b=012d4839b398cbbe9f64f77670a55342ceb9966860c52c068b59aaaf531015c8ccb4e7f358791954627f501c97f4b05faa7dfd7e41; Path=/; Secure; HTTPOnly
TS01f53376=012d4839b398cbbe9f64f77670a55342ceb9966860c52c068b59aaaf531015c8ccb4e7f358791954627f501c97f4b05faa7dfd7e41; path=/; domain=.mydhli.com; HTTPonly; Secure
server-timing: cdn-cache; desc=MISS, edge; dur=65, origin; dur=45
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.189.139.67101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.139.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nSOi9FrwF/WXUObTUdD/zQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LWsUo9GT75MEJL3vyYCKyL3m2CQ=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7471
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 02:26:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7471
Expires: Thu, 01 Dec 2022 04:31:18 GMT
Date: Thu, 01 Dec 2022 02:26:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fd5f7a9e04d27654062b3e18b8aecca
07fafbd614cdb49f20bceea29d5e684725d3bdf6
0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4199
x-amzn-requestid: d7983896-c4a5-4133-9b0e-51ac412cf732
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZttXFcZIAMFmJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386f655-139cd6a82eaa934d5d411029;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 06:21:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91_Pv2sUA4286BEZXTKFctgZOrzWy6VWFDGiUV3_p_QnyckRDFb-lw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:29 GMT
age: 16518
etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8802d5080eb35e4052ef31cf7658650
1e78566f2e69268c5f753fb49112ab07aae3eccf
9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: dc9ccdbf-a051-49ce-a535-c100b8ee6f12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81EHdoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-0b06c368156b828e0c663081;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UsYYNMsulshDYcUC9N2Q3fnxjdZd5ki-0_LlXRchIsNSq0FruNhFqw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:09 GMT
age: 16718
etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac125ad4-8001-4f7b-a27e-5f3c4f979358.png
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac125ad4-8001-4f7b-a27e-5f3c4f979358.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83e8a8c500dbcb636ad4a57a10de8adf
4593bb86a0a61eccab43063cb3c0c797abea5b46
fd9bc5cfa9db9999ceba780a3c801663ae3a9d115fc968f633800da2a680d49c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac125ad4-8001-4f7b-a27e-5f3c4f979358.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6036
x-amzn-requestid: 9867bb66-8624-4fe5-943f-2752e038cd22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YoE3YoAMFSWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-1710e0052c8bf19c06b6011e;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RXKIjgAm-fxCv0Wadim_1BwhuUkcAmZRPXUB9gT_qnEkREplaGZpkg==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:30 GMT
age: 16877
etag: "4593bb86a0a61eccab43063cb3c0c797abea5b46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:21:34 GMT
age: 47113
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 10:53:00 GMT
age: 56027
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 16874
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.woff2
104.110.12.26200 OK 0 B URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.woff2
IP 104.110.12.26:0
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-ExtraBold-webfont.woff2 HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: 33b2be473dc2401a8fd3cfef5425eb13
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
vary: Accept-Encoding
cache-control: private, max-age=395892
expires: Mon, 05 Dec 2022 16:24:57 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtRpid;desc="-1751198044", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Light-webfont.woff2
104.110.12.26200 OK 0 B URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Light-webfont.woff2
IP 104.110.12.26:0
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Light-webfont.woff2 HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: d773b0a331974c54a1ecba0d16adc7d9
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
vary: Accept-Encoding
cache-control: private, max-age=395947
expires: Mon, 05 Dec 2022 16:25:52 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtRpid;desc="-1436361395", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2
keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Bold-webfont.woff2
104.110.12.26200 OK 0 B URL HTTP/2 keycloak.mydhli.com/auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Bold-webfont.woff2
IP 104.110.12.26:0
GET /auth/resources/spogr/login/mydhli-portal/node_modules/patternfly/dist/fonts/OpenSans-Bold-webfont.woff2 HTTP/1.1
Host: keycloak.mydhli.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhlglobalconnectdelivery.pages.dev
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-xss-protection: 1; mode=block
timing-allow-origin: *
referrer-policy: no-referrer
x_request_id: 420edff20a1b42a9a727bec4fbbedff8
x-oneagent-js-injection: true
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
content-type: application/octet-stream
vary: Accept-Encoding
cache-control: private, max-age=492155
expires: Tue, 06 Dec 2022 19:09:20 GMT
date: Thu, 01 Dec 2022 02:26:45 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtRpid;desc="-880418232", dtTao;desc="1", dtSInfo;desc="0"
X-Firefox-Spdy: h2