dsepost.web.app/jihoona51hyundai-s5kQF4zF4zld07r9sonW1
199.36.158.100301 Moved Permanently 0 B URL HTTP/1.1 dsepost.web.app/jihoona51hyundai-s5kQF4zF4zld07r9sonW1
IP 199.36.158.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /jihoona51hyundai-s5kQF4zF4zld07r9sonW1 HTTP/1.1
Host: dsepost.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://dsepost.web.app/jihoona51hyundai-s5kQF4zF4zld07r9sonW1
Accept-Ranges: bytes
Date: Sun, 18 Dec 2022 08:40:49 GMT
X-Served-By: cache-bma1644-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1671352849.377781,VS0,VE0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9f3cf7e36f17a535e53e5213c02cf2b4
e65acbc03135ce135b9e91b4f74b3e1439faa6f6
a2317476862acd0a92fe523454c3991752b07ba14e7667f421dd9624e0233758
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2317476862ACD0A92FE523454C3991752B07BA14E7667F421DD9624E0233758"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4920
Expires: Sun, 18 Dec 2022 10:02:49 GMT
Date: Sun, 18 Dec 2022 08:40:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 460af93786e1eaa666f135e6c3fdc634
bc8aeba36225c79718f5de73d79928fe817c5490
471f4e7ae29bcf6ba1f749c0f5d4ab446cebfac5aa80c3e19c6edf21be456eb5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471F4E7AE29BCF6BA1F749C0F5D4AB446CEBFAC5AA80C3E19C6EDF21BE456EB5"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3286
Expires: Sun, 18 Dec 2022 09:35:35 GMT
Date: Sun, 18 Dec 2022 08:40:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 18 Dec 2022 07:45:26 GMT
content-type: application/json
age: 3323
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash bcade8542361774f13ecd22557ff8fb8
5e67a3753b0856c765f3b17f1742d3ed684ffb6d
647f8d9d3d1170e60a60e15fdfd9b59445feb56a6ce9d9bb2fa4720f0bfc3a14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "647F8D9D3D1170E60A60E15FDFD9B59445FEB56A6CE9D9BB2FA4720F0BFC3A14"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4408
Expires: Sun, 18 Dec 2022 09:54:17 GMT
Date: Sun, 18 Dec 2022 08:40:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wirKbjw7NvV8qAlZuC6qv1j7OVneQZsiHcliPxqThefRny4w1HDrFt/XnhJEd5mvN/gjZSw/9Qw=
x-amz-request-id: WK0R8KQAXJWTA24H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 18 Dec 2022 07:52:07 GMT
age: 2922
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
dsepost.web.app/jihoona51hyundai-s5kQF4zF4zld07r9sonW1
199.36.158.100404 Not Found 9.1 kB URL HTTP/2 dsepost.web.app/jihoona51hyundai-s5kQF4zF4zld07r9sonW1
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1101)
Hash 1a4d324f5b57cda4dce7dca42fbd60e1
cef7810a0e4c1e024973fb51a56ee69ea59e756f
aedd9a82dd4ea6dcd15ca36c1200bfdb193fce148911cb896c0cff2663a213d8
Analyzer Verdict Alert fortinet Phishing
GET /jihoona51hyundai-s5kQF4zF4zld07r9sonW1 HTTP/1.1
Host: dsepost.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
cache-control: max-age=3600
content-encoding: gzip
content-type: text/html; charset=utf-8
etag: "aedd9a82dd4ea6dcd15ca36c1200bfdb193fce148911cb896c0cff2663a213d8"
last-modified: Sun, 27 Nov 2022 09:20:08 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 18 Dec 2022 08:40:49 GMT
x-served-by: cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671352850.684613,VS0,VE56
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9127
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/8EklPeV1cd0
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/8EklPeV1cd0
IP 216.58.211.3:0
Hash f75a2e800ffad7b0f51353cf0c924774
d973d99ca9a076b15bb37042368ecbed22ec8aee
4090d9d1c52a06806955852ea39f37c5235e3eb89b3164c05f99fadbf1a36d93
POST /s/gts1d4int/8EklPeV1cd0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 18 Dec 2022 08:40:49 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_kfhrfyfy-sm2tmkm5ficcw2.css
152.199.23.37200 OK 20 kB URL HTTP/2 aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_kfhrfyfy-sm2tmkm5ficcw2.css
IP 152.199.23.37:0
File type ASCII text, with very long lines (61177)
Hash d0ed87f63b8660bd339337185abd0d22
eab58f2ada552aaaa64115714a53911b808e9960
7de61e0e2dc500867def43564fd1e74e44e81659d37017f4a2805de625b0ec0d
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_kfhrfyfy-sm2tmkm5ficcw2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dsepost.web.app
Connection: keep-alive
Referer: https://dsepost.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 6537582
cache-control: public, max-age=31536000
content-md5: 0O2H9juGYL0zkzcYWr0NIg==
content-type: text/css
date: Sun, 18 Dec 2022 08:40:50 GMT
etag: 0x8D982C8F03AF4D4
last-modified: Tue, 28 Sep 2021 21:42:58 GMT
server: ECAcc (ska/F769)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: c56d37c1-b01e-0053-3746-d76e6f000000
x-ms-version: 2009-09-19
content-length: 19877
X-Firefox-Spdy: h2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en-gb.min_-hjcgqxfzfu0cwzblacdqq2.js
152.199.23.37200 OK 13 kB URL HTTP/2 aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en-gb.min_-hjcgqxfzfu0cwzblacdqq2.js
IP 152.199.23.37:0
File type Unicode text, UTF-8 text, with very long lines (32002)
Hash 1986d215d2c4f176fda42cd283b709e8
84d1de151fdccfc0d79291df554d284f79797f9a
19ea4555f2964e2375d07b1fd46e7e655ca5acbea84ade244bbe415ba9c4f416
GET /ests/2.1/content/cdnbundles/ux.converged.login.strings-en-gb.min_-hjcgqxfzfu0cwzblacdqq2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dsepost.web.app
Connection: keep-alive
Referer: https://dsepost.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 4694370
cache-control: public, max-age=31536000
content-md5: GYbSFdLE8Xb9pCzSg7cJ6A==
content-type: application/x-javascript
date: Sun, 18 Dec 2022 08:40:50 GMT
etag: 0x8D992B5E417004E
last-modified: Tue, 19 Oct 2021 04:06:56 GMT
server: ECAcc (ska/F73C)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 503482f5-501e-0089-330a-e8ffe2000000
x-ms-version: 2009-09-19
content-length: 12608
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/js/oneDs_472fa3a12b65cf387ccd.js
152.199.23.37200 OK 26 kB URL HTTP/2 aadcdn.msftauth.net/shared/1.0/content/js/oneDs_472fa3a12b65cf387ccd.js
IP 152.199.23.37:0
File type ASCII text, with very long lines (49529)
Hash c4099527852bb570136a02c3d2d0d7a1
b07b674fb73ddddc9bff08b48b6b147505cb2965
a3c764080babe34837f4141640fa646aa98a6963a2dcf0abfb482b6007c9fa5b
GET /shared/1.0/content/js/oneDs_472fa3a12b65cf387ccd.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dsepost.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 4722117
cache-control: public, max-age=31536000
content-md5: xAmVJ4UrtXATagLD0tDXoQ==
content-type: application/x-javascript
date: Sun, 18 Dec 2022 08:40:50 GMT
etag: 0x8D9942E72241B02
last-modified: Thu, 21 Oct 2021 01:02:25 GMT
server: ECAcc (ska/F6E6)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: f8241864-001e-000b-50c9-e70aca000000
x-ms-version: 2009-09-19
content-length: 26117
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_12dabd9245715d165757.js
152.199.23.37200 OK 5.4 kB URL HTTP/2 aadcdn.msftauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_12dabd9245715d165757.js
IP 152.199.23.37:0
File type ASCII text, with very long lines (14442)
Hash fa5651ac32c6a7c1a9fe1511c36697c9
192e13ecd4892c62f4c01deb684759620812d152
dd4ea852b98a6e5085f81a4b34914684c0d700180c1bbeec08e37bc953ea22ed
GET /shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_12dabd9245715d165757.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dsepost.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 16895555
cache-control: public, max-age=31536000
content-md5: +lZRrDLGp8Gp/hURw2aXyQ==
content-type: application/x-javascript
date: Sun, 18 Dec 2022 08:40:50 GMT
etag: 0x8D99FD65BAB30A3
last-modified: Thu, 04 Nov 2021 21:02:05 GMT
server: ECAcc (ska/F7BE)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: d636d6ac-c01e-000a-7c12-79f4c7000000
x-ms-version: 2009-09-19
content-length: 5386
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
152.199.23.37200 OK 673 B URL HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
IP 152.199.23.37:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators
Hash 0e176276362b94279a4492511bfcbd98
389fe6b51f62254bb98939896b8c89ebeffe2a02
9a2c174ae45cac057822844211156a5ed293e65c5f69e1d211a7206472c5c80c
GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dsepost.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 10654294
cache-control: public, max-age=31536000
content-md5: DhdidjYrlCeaRJJRG/y9mA==
content-type: image/svg+xml
date: Sun, 18 Dec 2022 08:40:50 GMT
etag: 0x8D7B007297AE131
last-modified: Wed, 12 Feb 2020 22:01:50 GMT
server: ECAcc (ska/F795)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 82e0eb20-701e-0011-72d5-b19fa0000000
x-ms-version: 2009-09-19
content-length: 673
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 18 Dec 2022 08:33:23 GMT
age: 447
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
13.107.246.53200 OK 17 kB URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dsepost.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 17174
content-type: image/x-icon
content-md5: EuPayFgGHQiAI7K9SOL6lg==
last-modified: Sun, 18 Oct 2020 03:02:03 GMT
etag: 0x8D8731230C851A6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 626edff6-901e-007a-0c3c-0fcb66000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 02wSZYwAAAABjAOqsTR6jSIjhOQbHMJ43QU1TMDRFREdFMTgxMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0EtKeYwAAAAACVJZotTxARKWASP8ApXUoU1ZHMjBFREdFMDUwNwAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Sun, 18 Dec 2022 08:40:49 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2d1752cd6eb7f48e7494373911a5b996
43d9c23c4d03cccce0fc478f0e12c0874dc762fd
aded7fd1d638c001b0b462fdfeee0549d2ed61b51ced88eb83690e2e20ed36d8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6482
Cache-Control: max-age=94443
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:50 GMT
Etag: "639d86ab-1d7"
Expires: Mon, 19 Dec 2022 10:54:53 GMT
Last-Modified: Sat, 17 Dec 2022 09:06:51 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
login.live.com/Me.htm?v=3
20.190.160.23200 OK 1.1 kB URL HTTP/1.1 login.live.com/Me.htm?v=3
IP 20.190.160.23:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (2345), with CRLF line terminators
Hash 9c08f0f5b411918572bb176b56d4b747
12814f1ffd1c414337cfc57da7561f4386ec8b67
d9f196403747ff4bbf6c3d61c7319f51e33be05825ac3b5200665e6e5ee26c0e
GET /Me.htm?v=3 HTTP/1.1
Host: login.live.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dsepost.web.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=315360000
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Wed, 15 Dec 2032 08:40:50 GMT
Vary: Accept-Encoding
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: R3_BL2
x-ms-request-id: 3d8805f8-494c-4d45-8e93-e8e2a5e8ed95
PPServer: PPV: 30 H: BL02EPF00006849 V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=8203dc83a5814b8693e5d6f4ad5e45c3; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
MSPRequ=id=N<=1671352850&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Sun, 18 Dec 2022 08:40:50 GMT
Content-Length: 1132
push.services.mozilla.com/
44.242.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: exj+QWka97pdhLozMDZjZA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: seUgoI/2WzLXHtfeQ3pkXFnSDVk=
eaglelodgealaska.com/wp-xmlrpc.php?url=https://dsepost.web.app/jihoona51hyundai-s5kQF4zF4zld07r9sonW1
69.194.236.160302 Found 0 B URL HTTP/1.1 eaglelodgealaska.com/wp-xmlrpc.php?url=https://dsepost.web.app/jihoona51hyundai-s5kQF4zF4zld07r9sonW1
IP 69.194.236.160:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-xmlrpc.php?url=https://dsepost.web.app/jihoona51hyundai-s5kQF4zF4zld07r9sonW1 HTTP/1.1
Host: eaglelodgealaska.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dsepost.web.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 18 Dec 2022 08:40:51 GMT
Server: Apache
Location: https://sign.wj-asys.com/?username=jihoon@hyundai-steel.com#/docusign/oauth/authorize?client_id=0.35182301763064-0ff1-0.027825351351791&auth=10.40739335045563-0.74539070378309
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8a1199ea71faf5569b6ba6d54c90f1b6
eaec33feb970c93a9aa0cea8e756258839db0d50
b2bf6556e8441db0e0e491c3955577e93e2b4a3a9e837cfe1c4833dc47a00973
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2BF6556E8441DB0E0E491C3955577E93E2B4A3A9E837CFE1C4833DC47A00973"
Last-Modified: Sun, 18 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21591
Expires: Sun, 18 Dec 2022 14:40:42 GMT
Date: Sun, 18 Dec 2022 08:40:51 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6f92efca1751f9a111440f5c9b15b05a
a81e74b895c4ae53ba94c15befcc40db31e88131
71edea46729fab52d0741cabb15621f904fe1bf0fb809239f7daed789bf73978
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5896
Cache-Control: max-age=152232
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:52 GMT
Etag: "639e6ab4-1d7"
Expires: Tue, 20 Dec 2022 02:58:04 GMT
Last-Modified: Sun, 18 Dec 2022 01:19:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
23.46.126.143200 OK 7.6 kB URL HTTP/2 postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
IP 23.46.126.143:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3074), with CRLF, LF line terminators
Hash 9ee5a7dd1f361c311169f524cdaa4682
98228114d9739588e84dadbd5e68b2d862bdb968
f34474ad02b3eba1606bbe28b7cbd26b90f829bb0d74fc57871468bf1de1d30b
GET /postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsepost.web.app/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: nginx
last-modified: Sun, 18 Dec 2022 07:18:39 GMT
etag: "639ebecf-5756"
strict-transport-security: max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7623
cache-control: max-age=2757
expires: Sun, 18 Dec 2022 09:26:49 GMT
date: Sun, 18 Dec 2022 08:40:52 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8024
Expires: Sun, 18 Dec 2022 10:54:36 GMT
Date: Sun, 18 Dec 2022 08:40:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8024
Expires: Sun, 18 Dec 2022 10:54:36 GMT
Date: Sun, 18 Dec 2022 08:40:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8024
Expires: Sun, 18 Dec 2022 10:54:36 GMT
Date: Sun, 18 Dec 2022 08:40:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8024
Expires: Sun, 18 Dec 2022 10:54:36 GMT
Date: Sun, 18 Dec 2022 08:40:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8024
Expires: Sun, 18 Dec 2022 10:54:36 GMT
Date: Sun, 18 Dec 2022 08:40:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed374d0c34e8b2e15f08a6479a4f45e7
5db9e59699048998f0685e940640eae19ef11c8e
9933854830be796a87cfe44b6b8336294e2d3dbbe3205f267720aca6968c3a21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c81bdf4-0a78-472d-ba75-80092016f334.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12125
x-amzn-requestid: e44faa15-1dfd-4bc0-bdfb-307c3de2755d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2QPFZAIAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3734-33d636210a1e24742ee71187;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:40:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DmeWRYIlUMCR8Nds0-n0a9ju0ySR7ZuTAS82Lu8sZxPXQpBJkqzvww==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:52:21 GMT
age: 38911
etag: "5db9e59699048998f0685e940640eae19ef11c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12c4c2232b6d09e9085f0214b3260c1e
a24f8e949a2f2a973fe2dd5af994cd970d37f13a
000475ed7d0aab9a7dab3e25f0a29f82552739fea99f98cbf5131282d0db7d63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e098e9f-4d93-4282-beb5-b37a17658134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10670
x-amzn-requestid: d72e1904-caf4-4c72-a811-d1bde023f4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT11JGCsIAMFRDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3687-7789040d71253d00378f9162;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8qqSQbj22k16ApKTT8y5BQItInb8EjZuACdWcsW_FnMysvnDADbLxQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:11 GMT
age: 39821
etag: "a24f8e949a2f2a973fe2dd5af994cd970d37f13a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf66930-95e3-4a55-8010-b1b6ca56bb72.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf66930-95e3-4a55-8010-b1b6ca56bb72.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72e6e854c47d50c6eb07f491ac9ecc3b
067e0a350aaf1a509e8263f38191394e2fa1ee8f
cc6c3dff5dd6da8b61a4891a4c8ebb441fb37bd45af06520bc32d025d276a0f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf66930-95e3-4a55-8010-b1b6ca56bb72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11961
x-amzn-requestid: 58d907ec-0831-48ff-bd18-92b1f364190f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2PeF__oAMF2lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e372f-1c97663c43ee7c5552e3a6f9;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:39:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uzlYcLMD0Q7UOHq2PSorqX5sCd-EuxB1LIKHLQeD5CusFroqIUVNRA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:54:10 GMT
age: 38802
etag: "067e0a350aaf1a509e8263f38191394e2fa1ee8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c80a9fa-2fa0-4eaa-8573-26bcb62a1728.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c80a9fa-2fa0-4eaa-8573-26bcb62a1728.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 455fac45ae0c53d1597a541eaf497576
591202053dde2e39766bb8d58898dd58bac94b64
567510fec1be57dc02c7daf4aa2b6ecdfd79c218e02dbab9319ad8cee75034db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c80a9fa-2fa0-4eaa-8573-26bcb62a1728.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12988
x-amzn-requestid: 98254e1f-8c22-46db-9eb3-6dd85a657173
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT2Z2FG3IAMFlmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3772-2aa92ecb7ea390b82c1c2665;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:41:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ctRdi7t-KHO1QuclQGGeDghvY-dPCBmNTG03wzwi8Tf7kCcBNgnIjA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:54:07 GMT
age: 38805
etag: "591202053dde2e39766bb8d58898dd58bac94b64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KyEMrUTeuVTPJ3EIkrH1DLYqa4bHK7fe6dApTAFP4XY0G4airnflGA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 39826
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada04738696f861648635c9ba98841e4
ce644cd4349d88aa7c24b2503b0b18b444061639
e5cee777efbf1d8a0f95f6cce71199e5f016a91f90cf0afe38bc86654b9d730d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667002-4518-4b30-baaa-3a4eab2bdc1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8696
x-amzn-requestid: c897aeed-a082-46a1-965f-39e8c763cb05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10ZH3jIAMF0gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-548ac80840737a20743980f5;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JecluZu8ExMmP-UHM8QbK-bjm_yqULU1tl2QQDfKMea8NHM6y2JI7g==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Dec 2022 21:37:06 GMT
age: 39826
etag: "ce644cd4349d88aa7c24b2503b0b18b444061639"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
postsign.docusign.com/static/css/all.min.css?gcb=1665382805034
23.46.126.143200 OK 11 kB URL HTTP/2 postsign.docusign.com/static/css/all.min.css?gcb=1665382805034
IP 23.46.126.143:0
File type ASCII text, with very long lines (59699)
Hash 6493c0186dab899c9efea22fb25acb16
2e35af87a47a7f34348ae9119c145d6aff4059e5
76577fc3f6c3a346d5093ae1d5730a5311140805daa7d6745cc0cde076c339f5
GET /static/css/all.min.css?gcb=1665382805034 HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Thu, 09 Dec 2021 00:04:19 GMT
etag: "61b14803-eae6"
strict-transport-security: max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11018
cache-control: max-age=1332
expires: Sun, 18 Dec 2022 09:03:04 GMT
date: Sun, 18 Dec 2022 08:40:52 GMT
X-Firefox-Spdy: h2
postsign.docusign.com/static/css/skins/post_signing/main-2021.css?gcb=1665382805034
23.46.126.143200 OK 1.3 kB URL HTTP/2 postsign.docusign.com/static/css/skins/post_signing/main-2021.css?gcb=1665382805034
IP 23.46.126.143:0
File type ASCII text, with very long lines (4347), with no line terminators
Hash 85311c4a5a7155802665a832c7c7aa61
3bd884196177bef8256962bb5e8796b05366056a
d1d6d668b74326c96644c5b6e97845c2c5a6f14802ff0314e6e535f772ac649e
GET /static/css/skins/post_signing/main-2021.css?gcb=1665382805034 HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Thu, 09 Dec 2021 00:01:53 GMT
etag: "61b14771-10fb"
strict-transport-security: max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1269
cache-control: max-age=2929
expires: Sun, 18 Dec 2022 09:29:41 GMT
date: Sun, 18 Dec 2022 08:40:52 GMT
X-Firefox-Spdy: h2
postsign.docusign.com/static/css/skins/organic/psuedofooter-2021.css?gcb=1665382805034
23.46.126.143200 OK 424 B URL HTTP/2 postsign.docusign.com/static/css/skins/organic/psuedofooter-2021.css?gcb=1665382805034
IP 23.46.126.143:0
File type Unicode text, UTF-8 text, with very long lines (1184), with no line terminators
Hash 76427d2f2d814ce4b789f698a2943871
3d7ca22df0e52b11dde18d63d1f34b1b17933a5d
ce1ddf76c34cbda099519e48efdedcc652f75c69e921a853e930ba754c45fa69
GET /static/css/skins/organic/psuedofooter-2021.css?gcb=1665382805034 HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: nginx
last-modified: Thu, 09 Dec 2021 00:01:49 GMT
etag: "61b1476d-4a2"
strict-transport-security: max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 424
cache-control: max-age=1466
expires: Sun, 18 Dec 2022 09:05:18 GMT
date: Sun, 18 Dec 2022 08:40:52 GMT
X-Firefox-Spdy: h2
postsign.docusign.com/media/img/Logo_DS_W_180w.png
23.46.126.143200 OK 2.2 kB URL HTTP/2 postsign.docusign.com/media/img/Logo_DS_W_180w.png
IP 23.46.126.143:0
File type PNG image data, 180 x 40, 8-bit colormap, non-interlaced\012- data
Hash 3d766e8b01b62bac6270a0cd2f85a1a4
1503f18826025fbf5c9f07a637188a39e71d7a93
b4a3a88b3ce6c0e652268f759c9d29de4e5f1c18bcc48565f5b52f8d51fc109a
GET /media/img/Logo_DS_W_180w.png HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2162
server: nginx
last-modified: Sat, 08 Jun 2019 23:07:26 GMT
etag: "5cfc3fae-872"
strict-transport-security: max-age=31536000
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=1042
expires: Sun, 18 Dec 2022 08:58:14 GMT
date: Sun, 18 Dec 2022 08:40:52 GMT
X-Firefox-Spdy: h2
postsign.docusign.com/static/jsaddons/no_accesstoken.js?gcb=1665382805034
23.46.126.143200 OK 88 B URL HTTP/2 postsign.docusign.com/static/jsaddons/no_accesstoken.js?gcb=1665382805034
IP 23.46.126.143:0
File type ASCII text, with no line terminators
Hash b646167c7d9bd85a21c90c442f86dfc2
edbdd012f17408ce18f773f773be14f2b81c743b
fe0e0ec35966518d926b84db01b89a343917d8993a7de9c46f0bd21288eeda06
GET /static/jsaddons/no_accesstoken.js?gcb=1665382805034 HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Thu, 09 Dec 2021 00:04:15 GMT
etag: "61b147ff-47"
strict-transport-security: max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 88
cache-control: max-age=958
expires: Sun, 18 Dec 2022 08:56:50 GMT
date: Sun, 18 Dec 2022 08:40:52 GMT
X-Firefox-Spdy: h2
postsign.docusign.com/static/js/all.min.js?gcb=1665382805034
23.46.126.143200 OK 9.8 kB URL HTTP/2 postsign.docusign.com/static/js/all.min.js?gcb=1665382805034
IP 23.46.126.143:0
File type ASCII text, with very long lines (32057), with no line terminators
Hash f17df63203c7bfbd598246b4d3305206
5a48a1408b4766c5c08a608050dde1e3023af404
d177d02bfa96c3a356d7bb368442e656f5b3eb5c07692cb77c50b59bec297148
GET /static/js/all.min.js?gcb=1665382805034 HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Wed, 20 Apr 2022 23:06:44 GMT
etag: "62609204-7d39"
strict-transport-security: max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9799
cache-control: max-age=1042
expires: Sun, 18 Dec 2022 08:58:14 GMT
date: Sun, 18 Dec 2022 08:40:52 GMT
X-Firefox-Spdy: h2
postsign.docusign.com/static/jsaddons/post_signing_version.js?gcb=1665382805034
23.46.126.143200 OK 309 B URL HTTP/2 postsign.docusign.com/static/jsaddons/post_signing_version.js?gcb=1665382805034
IP 23.46.126.143:0
File type ASCII text, with very long lines (577), with no line terminators
Hash 40f37c9cebbcf217ed1d004e95fecda7
227f0585c0dfa3a58a8066cc8a51ec40fefc9320
64f4af5e48fd3956d5f8d0499007e7e373d2706606d633ba4d3c93916f90c519
GET /static/jsaddons/post_signing_version.js?gcb=1665382805034 HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Thu, 20 Jan 2022 01:02:20 GMT
etag: "61e8b49c-241"
strict-transport-security: max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 309
cache-control: max-age=1042
expires: Sun, 18 Dec 2022 08:58:14 GMT
date: Sun, 18 Dec 2022 08:40:52 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 10a3a852ef62dc4d4ccbbf6ff396688b
953e40775326102f6c3fc09a18a7039239df656f
30872c631302c914fc93b789892b200beb6284a3ba6753e1ee7f909a1231f2dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.go-mpulse.net/boomerang/UV92T-EV53A-D8NH6-P4W4Y-3JCA5
23.38.200.138200 OK 50 kB URL HTTP/2 s.go-mpulse.net/boomerang/UV92T-EV53A-D8NH6-P4W4Y-3JCA5
IP 23.38.200.138:0
File type C source, ASCII text, with very long lines (65103)
Hash 8991c3ec80ec8fbc41382a55679e3911
8cc8cee91d671038acd9e3ae611517d6801b0909
f55bacd4a20fef96f5c736a912d1947be85c268df18003395e511c1e860e8800
GET /boomerang/UV92T-EV53A-D8NH6-P4W4Y-3JCA5 HTTP/1.1
Host: s.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=604800
content-encoding: br
last-modified: Thu, 01 Dec 2022 16:42:52 GMT
timing-allow-origin: *
vary: Accept-Encoding
x-n: S
content-length: 50393
date: Sun, 18 Dec 2022 08:40:53 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WPK6FN5
172.217.21.168200 OK 126 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WPK6FN5
IP 172.217.21.168:0
File type Unicode text, UTF-8 text, with very long lines (46768)
Size 126 kB (125537 bytes)
Hash c5daea790e0ac9e498b76152ac88680a
17e46d7cfb0a4bce648359c1fbd3c4a00f8e0cc4
3076e997958b5126f14656797612dd2131580af55e61d9cd05f84ab040407605
GET /gtm.js?id=GTM-WPK6FN5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 18 Dec 2022 08:40:53 GMT
expires: Sun, 18 Dec 2022 08:40:53 GMT
cache-control: private, max-age=900
last-modified: Sun, 18 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 125537
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 10a3a852ef62dc4d4ccbbf6ff396688b
953e40775326102f6c3fc09a18a7039239df656f
30872c631302c914fc93b789892b200beb6284a3ba6753e1ee7f909a1231f2dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
docucdn-a.akamaihd.net/olive/fonts/2.5.0/DSIndigo-Medium.woff2
23.36.77.32200 OK 32 kB URL HTTP/2 docucdn-a.akamaihd.net/olive/fonts/2.5.0/DSIndigo-Medium.woff2
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 31644, version 1.0\012- data
Hash 89c979cff1ebcbd06171dcd15927eb3a
ddfb17da64f896ea2682bec12499ed9d8f65f69d
f2c05d1d723bd31646c2c5adb65c29f317feab778a02511fbdcbc180853ca042
GET /olive/fonts/2.5.0/DSIndigo-Medium.woff2 HTTP/1.1
Host: docucdn-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: AkamaiGHost
mime-version: 1.0
unused62: 8096267
accept-ranges: bytes
content-type: font/woff2
etag: "89c979cff1ebcbd06171dcd15927eb3a:1594058353.45857"
last-modified: Wed, 01 Jul 2020 17:42:39 GMT
content-length: 31644
cache-control: max-age=3628800
date: Sun, 18 Dec 2022 08:40:53 GMT
access-control-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.docusign.com/optimizely-edge/20917322951
151.101.66.133200 OK 42 kB URL HTTP/2 www.docusign.com/optimizely-edge/20917322951
IP 151.101.66.133:0
Hash b99febe5a93e25ed07cf888dafafda93
d14e3afdb2b1c5f59d1bcc531c530e1154d5cd3a
f886c3cbbe82ba71b304302e7a2945d7d54c324611e55a7a09244a74f178ac12
GET /optimizely-edge/20917322951 HTTP/1.1
Host: www.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
age: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
cf-ray: 77b698a20b61b169-ATL
content-encoding: gzip
content-type: application/javascript
server: Netlify
x-nf-request-id: 01GMJ6989S88CF08WF1TMB18G1
accept-ranges: bytes
date: Sun, 18 Dec 2022 08:40:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1661-BMA
x-cache: MISS
x-cache-hits: 0
vary: X-Original-Host
strict-transport-security: max-age=31557600; includeSubDomains; preload
X-Firefox-Spdy: h2
docucdn-a.akamaihd.net/olive/fonts/2.5.0/DSIndigo-Regular.woff2
23.36.77.32200 OK 30 kB URL HTTP/2 docucdn-a.akamaihd.net/olive/fonts/2.5.0/DSIndigo-Regular.woff2
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 29516, version 1.0\012- data
Hash 5d66c3d97d4f69a2b3527e3997cbb66b
94ef4f31c1a1cd780a172edfbf9e3de61697ef5a
1bf53b33743c5c45d6c944815f74cbf58b228806858fb6e3a0b86c1204f4be06
GET /olive/fonts/2.5.0/DSIndigo-Regular.woff2 HTTP/1.1
Host: docucdn-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: AkamaiGHost
mime-version: 1.0
unused62: 8096267
last-modified: Wed, 01 Jul 2020 17:42:39 GMT
etag: "5d66c3d97d4f69a2b3527e3997cbb66b:1594058353.76061"
accept-ranges: bytes
content-type: font/woff2
content-length: 29516
cache-control: max-age=3628800
date: Sun, 18 Dec 2022 08:40:53 GMT
access-control-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cdn.optimizely.com/public/275532918/20917322951/4051_2f2c7f980aeaeb29d063e2ac1299c617d441632820b563091b291c94abbff230_edge_helper.js
23.38.200.155200 OK 97 kB URL HTTP/2 cdn.optimizely.com/public/275532918/20917322951/4051_2f2c7f980aeaeb29d063e2ac1299c617d441632820b563091b291c94abbff230_edge_helper.js
IP 23.38.200.155:0
File type ASCII text, with very long lines (65468)
Hash 7ff722d8480b271f937879f8b885bb53
1c6a012e7dacfd4736720b9416ddd8b535130fa9
6f670604836f0466719b2e8e8cc98b8c459933a246f276f64f303f84fdb286e0
GET /public/275532918/20917322951/4051_2f2c7f980aeaeb29d063e2ac1299c617d441632820b563091b291c94abbff230_edge_helper.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9b/o2jObs9B64fyI56zKOJjzaHiR0ndS8gXSVqrhzZMvt/UBo+etyx4h9CjZjhgFPDilwfdcN0E=
x-amz-request-id: VVD22NBRM80895CC
x-amz-replication-status: PENDING
last-modified: Fri, 16 Dec 2022 19:21:40 GMT
etag: "7ff722d8480b271f937879f8b885bb53"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 4051
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: YtEp.7oMVL_FPkobEo4.GbcYo6BdKIrQ
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 96595
vary: Accept-Encoding
cache-control: public, max-age=315360000, immutable
date: Sun, 18 Dec 2022 08:40:53 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="23.38.200.155";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
postsign.docusign.com/static/img/favicon.ico
23.46.126.143200 OK 5.4 kB URL HTTP/2 postsign.docusign.com/static/img/favicon.ico
IP 23.46.126.143:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 43d7327e77890e1b69ca10ff46771d38
c11fb194825777976b9e7ea1edc77d8f107d16c0
d80dd4b39f1b5b117376f9b28201b036f3eb42e713e3a6087bb11301a46e965c
GET /static/img/favicon.ico HTTP/1.1
Host: postsign.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d
Cookie: optimizelyEndUserId=oeu1671352852813r0.4025279396214174
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 5430
server: nginx
last-modified: Thu, 09 Dec 2021 00:04:15 GMT
etag: "61b147ff-1536"
strict-transport-security: max-age=31536000
accept-ranges: bytes
cache-control: max-age=3600
expires: Sun, 18 Dec 2022 09:40:53 GMT
date: Sun, 18 Dec 2022 08:40:53 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash e3e36ca2ac084fc82948b6e03f9c7272
c97d21c0ce7986e98cb86aa4621b68f71eacee84
c194bb68e3cf35b752e932fc7aa3d37f1448995f0f60ccdcf040cae5b300b1c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1277
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:53 GMT
Last-Modified: Sun, 18 Dec 2022 08:19:36 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 280
cdn.cookielaw.org/consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/otSDKStub.js
104.16.148.64200 OK 7.1 kB URL HTTP/2 cdn.cookielaw.org/consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (534)
Hash c8efa563ffc7e0577796c1e0a5b88300
d26ed7d07c81b3afef1b17ad82c9b08d5c85324f
a553d4614f72bb19decd557e17072702b34755d60ec2c3bbf83751c2628b31c0
GET /consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: application/x-javascript
content-length: 7129
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: yO+lY//H4Fd3lsHgpbiDAA==
last-modified: Wed, 23 Nov 2022 18:56:06 GMT
etag: 0x8DACD8460921D37
x-ms-request-id: b38c5617-401e-001e-3d6d-ff020b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 45374
expires: Mon, 19 Dec 2022 08:40:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77b698a5e80c0b41-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/f9d8335b-1f5b-415d-923b-2daa2d0de9bd.json
104.16.148.64200 OK 3.7 kB URL HTTP/2 cdn.cookielaw.org/consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/f9d8335b-1f5b-415d-923b-2daa2d0de9bd.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (17710), with no line terminators
Hash 22d804b7e8e72ced747ada20b6327d24
13cdcf8478a60d44760fc1704064da7a088ff18e
7e9f0d09dd090b6f63162467a01bd1ef8e7c099adc3a57665fa8a4f26a06b626
GET /consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/f9d8335b-1f5b-415d-923b-2daa2d0de9bd.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: application/x-javascript
content-length: 3727
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: ItgEt+jnLO10etogtjJ9JA==
last-modified: Wed, 23 Nov 2022 18:56:01 GMT
etag: 0x8DACD845D8AA037
x-ms-request-id: 82b5b951-201e-0041-696d-fff0f5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 45374
expires: Mon, 19 Dec 2022 08:40:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77b698a6181d0b41-OSL
X-Firefox-Spdy: h2
c.go-mpulse.net/api/config.json?key=UV92T-EV53A-D8NH6-P4W4Y-3JCA5&d=postsign.docusign.com&t=5571176&v=1.720.0&if=&sl=0&si=58e6d46e-d801-4764-99dc-e01bf1357750-rn2w3z&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=511582
23.38.200.138200 OK 1.1 kB URL HTTP/1.1 c.go-mpulse.net/api/config.json?key=UV92T-EV53A-D8NH6-P4W4Y-3JCA5&d=postsign.docusign.com&t=5571176&v=1.720.0&if=&sl=0&si=58e6d46e-d801-4764-99dc-e01bf1357750-rn2w3z&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=511582
IP 23.38.200.138:0
File type JSON data\012- , ASCII text, with very long lines (3288), with no line terminators
Hash 2b3ae2ce97a7a8204782a2c4a5eba5ae
f1f59c7c6a2fd820c3212b159c20a9ad2ed0509a
8e30d8a90631e7087939f4fc528280836b22b3afcb8ffbe3857fa5360fb5be7c
GET /api/config.json?key=UV92T-EV53A-D8NH6-P4W4Y-3JCA5&d=postsign.docusign.com&t=5571176&v=1.720.0&if=&sl=0&si=58e6d46e-d801-4764-99dc-e01bf1357750-rn2w3z&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=511582 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=300, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 18 Dec 2022 08:40:53 GMT
Content-Length: 1057
Connection: keep-alive
Content-Type: application/json
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 3514df631dd1d0818de66d2357469c80
24f2dfda5b0c5f132ab4b91cf31e3d96db2685f8
1c49f229365c23aac2fbea93ced46394545f6b4a4da2f6cad1a2e24b52147c15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5886
Cache-Control: max-age=164412
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:53 GMT
Etag: "639e9a53-116"
Expires: Tue, 20 Dec 2022 06:21:05 GMT
Last-Modified: Sun, 18 Dec 2022 04:42:59 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 278
cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js
104.16.148.64200 OK 90 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash 669fc272b6662bb850d92e9cfedf53a7
e573ee887b0ca01445457cc338f510c559a092f4
e77f0bfe908a1ee2181992bad85721333d192528c2a00aac42077549f7d377ba
GET /scripttemplates/6.39.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: application/javascript
content-length: 90454
content-encoding: gzip
content-md5: Zp/CcrZmK7hQ2S6c/t9Tpw==
last-modified: Fri, 26 Aug 2022 16:31:04 GMT
etag: 0x8DA87805EB35DE2
x-ms-request-id: 0dd904cb-801e-0080-396d-ff7b4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 45374
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77b698a6c8800b41-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/432fe209-bbe4-4458-a2ca-2d63dfd2b951/en-us.json
104.16.148.64200 OK 20 kB URL HTTP/2 cdn.cookielaw.org/consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/432fe209-bbe4-4458-a2ca-2d63dfd2b951/en-us.json
IP 104.16.148.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65506), with no line terminators
Hash a5082fbcb952a89dc6401bc5d8712140
f4cb57c86b9a8c52e768ff477ebc163efaae2d95
80bdfb97b8857c2b4c113e30ccad34af3d77304d32fbef48be95604c418b469f
GET /consent/f9d8335b-1f5b-415d-923b-2daa2d0de9bd/432fe209-bbe4-4458-a2ca-2d63dfd2b951/en-us.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://postsign.docusign.com/
Origin: https://postsign.docusign.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: application/x-javascript
content-length: 20513
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: pQgvvLlSqJ3GQBvF2HEhQA==
last-modified: Wed, 23 Nov 2022 18:56:44 GMT
etag: 0x8DACD8477106696
x-ms-request-id: 8337058a-c01e-00a5-496d-ffe3ff000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 84886
expires: Mon, 19 Dec 2022 08:40:53 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77b698a748cf0b41-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCenterRounded.json
104.16.148.64200 OK 2.6 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCenterRounded.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (7679)
Hash 41fe878fe29ffaedd823565a99791c3b
457046cc59e4e8cf5b343f237d3a3700e56433ee
a3063d7a7e4642ecf26d395c20af89a0825b0f70f98cf5284f4188b729489b57
GET /scripttemplates/6.39.0/assets/otCenterRounded.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://postsign.docusign.com/
Origin: https://postsign.docusign.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: application/json
content-length: 2612
content-encoding: gzip
content-md5: Qf6Hj+Kf+u3YI1ZamXkcOw==
last-modified: Fri, 26 Aug 2022 16:30:56 GMT
etag: 0x8DA878059EDB228
x-ms-request-id: 5fea28f7-001e-00b3-696d-ff2261000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 45373
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77b698a7b9150b41-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.39.0/assets/v2/otPcCenter.json
104.16.148.64200 OK 13 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/v2/otPcCenter.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (51284)
Hash e38e21a3f78685674dede8fb4425b6cf
4fc5bbca760240c8f6af81f84da717685d3c666e
bec50fe766a7d19c4d0ef16b963b606b2aa69a011acd94028cbea471a463744d
GET /scripttemplates/6.39.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://postsign.docusign.com/
Origin: https://postsign.docusign.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: application/json
content-length: 13253
content-encoding: gzip
content-md5: 444ho/eGhWdN7ej7RCW2zw==
last-modified: Fri, 26 Aug 2022 16:30:57 GMT
etag: 0x8DA87805AD77A2D
x-ms-request-id: 8adde1a2-e01e-00b2-146d-ff239c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 45373
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77b698a7b9160b41-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/fb186a2c-cd0e-4526-943d-54aad18159e5/76dee559-644e-4622-be18-987f1bc1a911/770f04f9-c48b-4284-91f1-c258cc97bf02/DocuSign_Logo_White.png
104.16.148.64200 OK 7.0 kB URL HTTP/2 cdn.cookielaw.org/logos/fb186a2c-cd0e-4526-943d-54aad18159e5/76dee559-644e-4622-be18-987f1bc1a911/770f04f9-c48b-4284-91f1-c258cc97bf02/DocuSign_Logo_White.png
IP 104.16.148.64:0
File type PNG image data, 260 x 58, 8-bit/color RGBA, interlaced\012- data
Hash 134ffdea58eba0b8298447733cb0bfc3
0f9de2d151a76eb4616cc7a51525bf42bc0ec6dc
d11fc753ab97e65539d1fe3869abce65fed5bd5331ba848d60e9f1df646b232a
GET /logos/fb186a2c-cd0e-4526-943d-54aad18159e5/76dee559-644e-4622-be18-987f1bc1a911/770f04f9-c48b-4284-91f1-c258cc97bf02/DocuSign_Logo_White.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: image/png
content-length: 6975
content-md5: E0/96ljroLgphEdzPLC/ww==
last-modified: Sat, 30 Oct 2021 20:05:34 GMT
etag: 0x8D99BE0A26EC9A5
x-ms-request-id: 277ba5b0-b01e-012d-062e-eb1d73000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 65170
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77b698a809460b41-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f880759100d00fcaa489d8f40f38e158
42d0bb52d59278a53a400ac225cd87c28e4854b7
beb1468e5b9dedad3f5cf8b04128a2d37b45b407ceaa6948f61f0934d912d806
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2471
Cache-Control: max-age=100548
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:53 GMT
Etag: "639dae32-1d7"
Expires: Mon, 19 Dec 2022 12:36:41 GMT
Last-Modified: Sat, 17 Dec 2022 11:55:30 GMT
Server: ECS (amb/6BC2)
X-Cache: HIT
Content-Length: 471
cdn.cookielaw.org/logos/static/powered_by_logo.svg
104.16.148.64200 OK 3.3 kB URL HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP 104.16.148.64:0
Hash e4dd7f768476fb2126f50ef58d00fe22
9c97e846bf4bff70bdc70e15c35bffbb67c62e94
2a61b506e04cdba837d1263cc88ebd4997c40cf182b917cf6dba688ababeb0c1
GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: image/svg+xml
content-md5: nvsqHj63Mt+zbyhgtmGw4w==
last-modified: Thu, 15 Dec 2022 13:30:09 GMT
x-ms-request-id: 72a855b3-101e-0085-3cfa-108f33000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 164
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77b698a809470b41-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
trial-eum-clienttons-s.akamaihd.net/eum/getdns.txt?c=pd0wiwzp7
23.33.119.11302 Moved Temporarily 0 B URL HTTP/1.1 trial-eum-clienttons-s.akamaihd.net/eum/getdns.txt?c=pd0wiwzp7
IP 23.33.119.11:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eum/getdns.txt?c=pd0wiwzp7 HTTP/1.1
Host: trial-eum-clienttons-s.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://91-90-42-154_s-23-33-119-11_ts-1671352853-clienttons-s.akamaihd.net/eum/results.txt
Date: Sun, 18 Dec 2022 08:40:53 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
trial-eum-clientnsv4-s.akamaihd.net/eum/getdns.txt?c=pd0wiwzp7
95.101.10.33302 Moved Temporarily 0 B URL HTTP/1.1 trial-eum-clientnsv4-s.akamaihd.net/eum/getdns.txt?c=pd0wiwzp7
IP 95.101.10.33:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eum/getdns.txt?c=pd0wiwzp7 HTTP/1.1
Host: trial-eum-clientnsv4-s.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://lnncvgs7mufccy462ikq-pd0wiw-da7e51998-clientnsv4-s.akamaihd.net/eum/results.txt
Date: Sun, 18 Dec 2022 08:40:53 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
91-90-42-154_s-23-33-119-11_ts-1671352853-clienttons-s.akamaihd.net/eum/results.txt
23.33.119.11200 OK 8 B URL HTTP/1.1 91-90-42-154_s-23-33-119-11_ts-1671352853-clienttons-s.akamaihd.net/eum/results.txt
IP 23.33.119.11:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 402e7a087747cb56c718bde84651f96a
7ce01f6381463362cf6aef2f843a59261e8f5587
662efaf46c617ddbcb8ff4a2a8f64cffd3d93630f1003f8e66511f369b87730f
GET /eum/results.txt HTTP/1.1
Host: 91-90-42-154_s-23-33-119-11_ts-1671352853-clienttons-s.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://postsign.docusign.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
ETag: "402e7a087747cb56c718bde84651f96a:1367999472"
Last-Modified: Wed, 08 May 2013 07:51:12 GMT
Server: AkamaiNetStorage
Content-Length: 8
Date: Sun, 18 Dec 2022 08:40:54 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
a.docusign.com/f
54.69.60.30200 OK 47 B IP 54.69.60.30:0
File type JSON data\012- , ASCII text, with no line terminators
Hash beade5868e20f1d6c126db820f389e1a
b8b98841afbac5edcff2359a9ded1340f7e7f3cc
6f428b401322733f13b4c50bf1843297f280f1f3a0ea11b92761ee3473571bb5
GET /f HTTP/1.1
Host: a.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://postsign.docusign.com/
Origin: https://postsign.docusign.com
Connection: keep-alive
Cookie: optimizelyEndUserId=oeu1671352852813r0.4025279396214174
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:54 GMT
content-type: application/json
content-length: 47
server: DS-Arya
expires: Mon, 19 Dec 2022 08:40:54 GMT
cache-control: max-age=86400
access-control-allow-origin: https://postsign.docusign.com
access-control-allow-methods: GET, OPTIONS
access-control-allow-credentials: true
access-control-max-age: 86400
vary: Origin
set-cookie: ds_a=255b3852-bbbe-4405-b9ee-cfa0f42e7866;Domain=.docusign.com;Max-Age=63072000;SameSite=None;Secure;Path=/;HttpOnly
X-Firefox-Spdy: h2
geo.docusign.com/country
35.80.211.138200 OK 16 B IP 35.80.211.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 452880c1a375b8fba8c9499f0930d05f
ffe5484a23512c2a574d837fe2d3267b134e48c8
8b3383aa4c71f1d816bfaf33e3ef2e8ded067698a7798b9f306204d5777b140d
GET /country HTTP/1.1
Host: geo.docusign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://postsign.docusign.com/
Origin: https://postsign.docusign.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:54 GMT
content-type: application/json
content-length: 16
server: DS-Carmen
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-max-age: 86400
vary: Origin
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 3678c5342a3531674497fcd352df920f
09b27f9ff55b24fcfeec5b40eda7f7241bed4744
ab7010b756af09494729823f35fdcc785a969ef991fa7a98b4b35db4bb11cb31
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163104
Date: Sun, 18 Dec 2022 08:40:54 GMT
Etag: "639e9335-1d7"
Expires: Tue, 20 Dec 2022 05:59:18 GMT
Last-Modified: Sun, 18 Dec 2022 04:12:37 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hJbpWV-Fgn2Bel1QwXIVSw0t7Oi3jyyO4CLBx3iR31fLlsWvzkH8NQ==
Age: 6401
lnncvgs7mufccy462ikq-pd0wiw-da7e51998-clientnsv4-s.akamaihd.net/eum/results.txt
95.101.10.33200 OK 8 B URL HTTP/1.1 lnncvgs7mufccy462ikq-pd0wiw-da7e51998-clientnsv4-s.akamaihd.net/eum/results.txt
IP 95.101.10.33:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 402e7a087747cb56c718bde84651f96a
7ce01f6381463362cf6aef2f843a59261e8f5587
662efaf46c617ddbcb8ff4a2a8f64cffd3d93630f1003f8e66511f369b87730f
GET /eum/results.txt HTTP/1.1
Host: lnncvgs7mufccy462ikq-pd0wiw-da7e51998-clientnsv4-s.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://postsign.docusign.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
ETag: "402e7a087747cb56c718bde84651f96a:1367999472"
Last-Modified: Wed, 08 May 2013 07:51:12 GMT
Server: AkamaiNetStorage
Content-Length: 8
Date: Sun, 18 Dec 2022 08:40:54 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
tags.srv.stackadapt.com/events.js
54.243.239.236301 Moved Permanently 65 B URL HTTP/1.1 tags.srv.stackadapt.com/events.js
IP 54.243.239.236:0
File type HTML document, ASCII text
Hash f80e89783ec551e69632712d99fd2224
a760361995b52b09f655a2bb469d7dd464619692
c052ddf9a69031b36e27713dfc2ca1d3494de9e0436c5bb35d17d92dac2c61bd
GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Date: Sun, 18 Dec 2022 08:40:54 GMT
Location: https://qvdt3feo.com/events.js
Content-Length: 65
Connection: keep-alive
684dd32e.akstat.io/
23.38.200.138204 No Content 0 B IP 23.38.200.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 684dd32e.akstat.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 5686
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://postsign.docusign.com
x-xss-protection: 0
access-control-allow-credentials: true
timing-allow-origin: *
content-type: image/gif
expires: Sun, 18 Dec 2022 08:40:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 18 Dec 2022 08:40:54 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash a3cc76a8b2b38d5f74679e928839f0e8
4437ee175e3ac9507f65484ef3f100b917351960
05eb5f5be1d32fc6486c656198c10f57973965a39c9ce807944e58605e6cd33b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145669
Date: Sun, 18 Dec 2022 08:40:54 GMT
Etag: "639e5582-1d7"
Expires: Tue, 20 Dec 2022 01:08:43 GMT
Last-Modified: Sat, 17 Dec 2022 23:49:22 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LzCw9Wvau2haIJcZ8d2F-LDZp1FdG-ga2eNnsvcnxG4i_uH8jgqL0Q==
Age: 4761
qvdt3feo.com/events.js
44.194.94.225200 OK 5.3 kB IP 44.194.94.225:0
Hash 7c6b99473a94ad1ea6e9432fc246a977
7b265caadc55562d60ac2b44e4f9d88d6a0329ee
feb20294c330f050abbc3742e2b2fe138dc8796ff67d60695eee7709e26f6af9
GET /events.js HTTP/1.1
Host: qvdt3feo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://postsign.docusign.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:54 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: max-age=5
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 974c1d5ca1e461eb744b9988a104697a
9ddabb62a86d2afe7eedfa29c9c000c9cd7de3b1
1faf9cb6a522379fd2e631c1fa6a87d2d1899feb9d07e214c5b1f1efd1fb2e0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=86163
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:55 GMT
Etag: "639d7faa-1d7"
Expires: Mon, 19 Dec 2022 08:36:58 GMT
Last-Modified: Sat, 17 Dec 2022 08:36:58 GMT
Server: nginx
Content-Length: 471
tags.srv.stackadapt.com/sa.jpeg
54.243.239.236200 OK 651 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.jpeg
IP 54.243.239.236:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3\012- data
Hash 314b3de05b8c37f0f33eda2794ba7680
b4bbe43ada89f15942da546334cec737d3320c83
99f3b96d8d5e6ad525d7990f2efc175e747f3f845a1dc96869390078b8c20152
GET /sa.jpeg HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://postsign.docusign.com/
Origin: https://postsign.docusign.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: image/jpeg
Date: Sun, 18 Dec 2022 08:40:55 GMT
Content-Length: 651
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 974c1d5ca1e461eb744b9988a104697a
9ddabb62a86d2afe7eedfa29c9c000c9cd7de3b1
1faf9cb6a522379fd2e631c1fa6a87d2d1899feb9d07e214c5b1f1efd1fb2e0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=86163
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:55 GMT
Etag: "639d7faa-1d7"
Expires: Mon, 19 Dec 2022 08:36:58 GMT
Last-Modified: Sat, 17 Dec 2022 08:36:58 GMT
Server: nginx
Content-Length: 471
telemetry.docusign.net/api/v1/TelemetryWrapper
185.81.101.85200 OK 0 B URL HTTP/1.1 telemetry.docusign.net/api/v1/TelemetryWrapper
IP 185.81.101.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/TelemetryWrapper HTTP/1.1
Host: telemetry.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://postsign.docusign.com/
Origin: https://postsign.docusign.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: authorization,content-type
X-AspNet-Version: 4.0.30319
X-DocuSign-Node: AM2FE28
Date: Sun, 18 Dec 2022 08:40:55 GMT
Content-Length: 0
telemetry.docusign.net/api/v1/TelemetryWrapper
185.81.101.85200 OK 0 B URL HTTP/1.1 telemetry.docusign.net/api/v1/TelemetryWrapper
IP 185.81.101.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v1/TelemetryWrapper HTTP/1.1
Host: telemetry.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Authorization: kazmon 7dce65c3-c28a-453a-8be5-760c68cba4fa
Content-Length: 2046
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
X-DocuSign-Node: FR2FE29
Date: Sun, 18 Dec 2022 08:40:55 GMT
Content-Length: 0
tags.srv.stackadapt.com/saq_pxl?uid=lfPdMw05TS1QTnyEaKtDBA&is_js=true&landing_url=https%3A%2F%2Fpostsign.docusign.com%2Fpostsigning%2Fen%2Ffinish-viewing%3Fdsmktparam%3D%257b%2522AccountId%2522%253a%2522db83ae5d-77c1-47d4-ad43-760edb74a319%2522%252c%2522AccountIdHash%2522%253a%25220744b78301b3c29e57cbbb03448431b625cf6f89%2522%252c%2522UserId%2522%253a%25221856c367-5ffb-433b-bedf-d4fb4ec69666%2522%252c%2522UserIdHash%2522%253a%252251ae55c1900bde64d245464d571dc42dd7a15494%2522%252c%2522PaymentMethod%2522%253a%2522Freemium%2522%252c%2522AccountType%2522%253a%2522Corporate%2522%252c%2522DistributorCode%2522%253a%2522DocuSignIt%2522%252c%2522AccountCreateDate%2522%253a%2522%2522%252c%2522CurrencyCode%2522%253a%2522USD%2522%252c%2522MemberActivationDate%2522%253a%25221%252f26%252f2018%2522%252c%2522CanManageAccount%2522%253a%2522true%2522%252c%2522UserType%2522%253a%2522CompanyUser%2522%252c%2522Industry%2522%253a%2522%2522%252c%2522PgpId%2522%253a%252243057692-368a-433d-a12d-3c15fcb83fb5%2522%252c%2522PlanClass%2522%253a%2522Free%2522%252c%2522SenderAccountId%2522%253a%25224087d51a-388e-46ce-b606-8afd44560482%2522%252c%2522CanCreateAccount%2522%253afalse%252c%2522SigningVersion%2522%253a2%252c%2522HasActiveAccount%2522%253atrue%257d%23%2Fcommon%2Foauth2%2Fauthorize%3Fclient_id%3D0.3883080461008-0ff1-0.2315246584972%26auth%3D1-0.72870787220481&t=Sign%20Anywhere%2C%20Anytime%20%7C%20DocuSign&tip=5Rp-CbDHIrjLmPQtGaDVznIwyTc358LaRnlsYV0P2KU&host=https://postsign.docusign.com&sa_conv_data_css_value=%27%27&sa_conv_data_image_value=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&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
54.243.239.236200 OK 94 B URL HTTP/1.1 tags.srv.stackadapt.com/saq_pxl?uid=lfPdMw05TS1QTnyEaKtDBA&is_js=true&landing_url=https%3A%2F%2Fpostsign.docusign.com%2Fpostsigning%2Fen%2Ffinish-viewing%3Fdsmktparam%3D%257b%2522AccountId%2522%253a%2522db83ae5d-77c1-47d4-ad43-760edb74a319%2522%252c%2522AccountIdHash%2522%253a%25220744b78301b3c29e57cbbb03448431b625cf6f89%2522%252c%2522UserId%2522%253a%25221856c367-5ffb-433b-bedf-d4fb4ec69666%2522%252c%2522UserIdHash%2522%253a%252251ae55c1900bde64d245464d571dc42dd7a15494%2522%252c%2522PaymentMethod%2522%253a%2522Freemium%2522%252c%2522AccountType%2522%253a%2522Corporate%2522%252c%2522DistributorCode%2522%253a%2522DocuSignIt%2522%252c%2522AccountCreateDate%2522%253a%2522%2522%252c%2522CurrencyCode%2522%253a%2522USD%2522%252c%2522MemberActivationDate%2522%253a%25221%252f26%252f2018%2522%252c%2522CanManageAccount%2522%253a%2522true%2522%252c%2522UserType%2522%253a%2522CompanyUser%2522%252c%2522Industry%2522%253a%2522%2522%252c%2522PgpId%2522%253a%252243057692-368a-433d-a12d-3c15fcb83fb5%2522%252c%2522PlanClass%2522%253a%2522Free%2522%252c%2522SenderAccountId%2522%253a%25224087d51a-388e-46ce-b606-8afd44560482%2522%252c%2522CanCreateAccount%2522%253afalse%252c%2522SigningVersion%2522%253a2%252c%2522HasActiveAccount%2522%253atrue%257d%23%2Fcommon%2Foauth2%2Fauthorize%3Fclient_id%3D0.3883080461008-0ff1-0.2315246584972%26auth%3D1-0.72870787220481&t=Sign%20Anywhere%2C%20Anytime%20%7C%20DocuSign&tip=5Rp-CbDHIrjLmPQtGaDVznIwyTc358LaRnlsYV0P2KU&host=https://postsign.docusign.com&sa_conv_data_css_value=%27%27&sa_conv_data_image_value=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&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
IP 54.243.239.236:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2d12c1129f6ff37622d03db4a2a5949e
bc44653c4a06e671ce423600755fed86fad8ec24
078f3dd88e751c3c421b2007e1cb27bcb65a95daf278bd25de81ba7b2bf3c4e4
GET /saq_pxl?uid=lfPdMw05TS1QTnyEaKtDBA&is_js=true&landing_url=https%3A%2F%2Fpostsign.docusign.com%2Fpostsigning%2Fen%2Ffinish-viewing%3Fdsmktparam%3D%257b%2522AccountId%2522%253a%2522db83ae5d-77c1-47d4-ad43-760edb74a319%2522%252c%2522AccountIdHash%2522%253a%25220744b78301b3c29e57cbbb03448431b625cf6f89%2522%252c%2522UserId%2522%253a%25221856c367-5ffb-433b-bedf-d4fb4ec69666%2522%252c%2522UserIdHash%2522%253a%252251ae55c1900bde64d245464d571dc42dd7a15494%2522%252c%2522PaymentMethod%2522%253a%2522Freemium%2522%252c%2522AccountType%2522%253a%2522Corporate%2522%252c%2522DistributorCode%2522%253a%2522DocuSignIt%2522%252c%2522AccountCreateDate%2522%253a%2522%2522%252c%2522CurrencyCode%2522%253a%2522USD%2522%252c%2522MemberActivationDate%2522%253a%25221%252f26%252f2018%2522%252c%2522CanManageAccount%2522%253a%2522true%2522%252c%2522UserType%2522%253a%2522CompanyUser%2522%252c%2522Industry%2522%253a%2522%2522%252c%2522PgpId%2522%253a%252243057692-368a-433d-a12d-3c15fcb83fb5%2522%252c%2522PlanClass%2522%253a%2522Free%2522%252c%2522SenderAccountId%2522%253a%25224087d51a-388e-46ce-b606-8afd44560482%2522%252c%2522CanCreateAccount%2522%253afalse%252c%2522SigningVersion%2522%253a2%252c%2522HasActiveAccount%2522%253atrue%257d%23%2Fcommon%2Foauth2%2Fauthorize%3Fclient_id%3D0.3883080461008-0ff1-0.2315246584972%26auth%3D1-0.72870787220481&t=Sign%20Anywhere%2C%20Anytime%20%7C%20DocuSign&tip=5Rp-CbDHIrjLmPQtGaDVznIwyTc358LaRnlsYV0P2KU&host=https://postsign.docusign.com&sa_conv_data_css_value=%27%27&sa_conv_data_image_value=ffd8ffe000104a46494600010101006000600000ffdb004300080606070605080707070909080a0c140d0c0b0b0c1912130f141d1a1f1e1d1a1c1c20242e2720222c231c1c2837292c30313434341f27393d38323c2e333432ffdb0043010909090c0b0c180d0d1832211c213232323232323232323232323232323232323232323232323232323232323232323232323232323232323232323232323232ffc00011080001000103012200021101031101ffc4001f0000010501010101010100000000000000000102030405060708090a0bffc400b5100002010303020403050504040000017d01020300041105122131410613516107227114328191a1082342b1c11552d1f02433627282090a161718191a25262728292a3435363738393a434445464748494a535455565758595a636465666768696a737475767778797a838485868788898a92939495969798999aa2a3a4a5a6a7a8a9aab2b3b4b5b6b7b8b9bac2c3c4c5c6c7c8c9cad2d3d4d5d6d7d8d9dae1e2e3e4e5e6e7e8e9eaf1f2f3f4f5f6f7f8f9faffc4001f0100030101010101010101010000000000000102030405060708090a0bffc400b51100020102040403040705040400010277000102031104052131061241510761711322328108144291a1b1c109233352f0156272d10a162434e125f11718191a262728292a35363738393a434445464748494a535455565758595a636465666768696a737475767778797a82838485868788898a92939495969798999aa2a3a4a5a6a7a8a9aab2b3b4b5b6b7b8b9bac2c3c4c5c6c7c8c9cad2d3d4d5d6d7d8d9dae2e3e4e5e6e7e8e9eaf2f3f4f5f6f7f8f9faffda000c03010002110311003f00f7fa28a2803fffd9e9be98ba0d31440c5e92d46403d55e7a5b5a2a9a&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://postsign.docusign.com
Content-Type: text/plain; charset=utf-8
Date: Sun, 18 Dec 2022 08:40:55 GMT
Set-Cookie: sa-user-id=s%3A0-18fa1aef-bf82-4c12-6299-b33669acd26a.aZ1qpf1QwNvqXPoT0YeM%2FDmpRobwMw1kKbnK6fSuSy4; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AGPoa77-CTBJimbM2aazSaltaKpo.XARmuUm79LBk4uh%2FFpyTsSgQV6crH9YtoNwrDFoMpRA; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 94
Connection: keep-alive
684dd32e.akstat.io/
23.38.200.138204 No Content 0 B IP 23.38.200.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 684dd32e.akstat.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2757
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://postsign.docusign.com
x-xss-protection: 0
access-control-allow-credentials: true
timing-allow-origin: *
content-type: image/gif
expires: Sun, 18 Dec 2022 08:40:58 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 18 Dec 2022 08:40:58 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f11d12be45a989a847629ef4394b15e3
f403b2504394ef4a92f088e5588e181373998062
230390bedda89b208bd63ead794f2dee12aec2779e61f9b72b65235533eed8bd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5167
Cache-Control: max-age=143896
Content-Type: application/ocsp-response
Date: Sun, 18 Dec 2022 08:40:58 GMT
Etag: "639e4d03-117"
Expires: Tue, 20 Dec 2022 00:39:14 GMT
Last-Modified: Sat, 17 Dec 2022 23:13:07 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_a6PeIgafSneuouox-qU5OA2.js
152.199.23.37200 OK 0 B URL HTTP/2 aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_a6PeIgafSneuouox-qU5OA2.js
IP 152.199.23.37:0
GET /shared/1.0/content/js/ConvergedLogin_PCore_a6PeIgafSneuouox-qU5OA2.js HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dsepost.web.app
Connection: keep-alive
Referer: https://dsepost.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 3508642
cache-control: public, max-age=31536000
content-md5: e+GEpArZIh9idGnWSOj0zg==
content-type: application/x-javascript
date: Sun, 18 Dec 2022 08:40:50 GMT
etag: 0x8D99FD6608B3F3E
last-modified: Thu, 04 Nov 2021 21:02:14 GMT
server: ECAcc (ska/F7A6)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: ee0683d1-f01e-0014-0cd3-f28a01000000
x-ms-version: 2009-09-19
content-length: 128665
X-Firefox-Spdy: h2
sign.wj-asys.com/?username=jihoon@hyundai-steel.com
31.172.83.62302 Found 0 B URL HTTP/2 sign.wj-asys.com/?username=jihoon@hyundai-steel.com
IP 31.172.83.62:0
ASN #44066 diva-e Datacenters GmbH
GET /?username=jihoon@hyundai-steel.com HTTP/1.1
Host: sign.wj-asys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dsepost.web.app/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 18 Dec 2022 08:40:51 GMT
content-type: text/html; charset=utf-8
location: https://postsign.docusign.com/postsigning/en/finish-viewing?dsmktparam=%7b%22AccountId%22%3a%22db83ae5d-77c1-47d4-ad43-760edb74a319%22%2c%22AccountIdHash%22%3a%220744b78301b3c29e57cbbb03448431b625cf6f89%22%2c%22UserId%22%3a%221856c367-5ffb-433b-bedf-d4fb4ec69666%22%2c%22UserIdHash%22%3a%2251ae55c1900bde64d245464d571dc42dd7a15494%22%2c%22PaymentMethod%22%3a%22Freemium%22%2c%22AccountType%22%3a%22Corporate%22%2c%22DistributorCode%22%3a%22DocuSignIt%22%2c%22AccountCreateDate%22%3a%22%22%2c%22CurrencyCode%22%3a%22USD%22%2c%22MemberActivationDate%22%3a%221%2f26%2f2018%22%2c%22CanManageAccount%22%3a%22true%22%2c%22UserType%22%3a%22CompanyUser%22%2c%22Industry%22%3a%22%22%2c%22PgpId%22%3a%2243057692-368a-433d-a12d-3c15fcb83fb5%22%2c%22PlanClass%22%3a%22Free%22%2c%22SenderAccountId%22%3a%224087d51a-388e-46ce-b606-8afd44560482%22%2c%22CanCreateAccount%22%3afalse%2c%22SigningVersion%22%3a2%2c%22HasActiveAccount%22%3atrue%7d#/common/oauth2/authorize?client_id=0.3883080461008-0ff1-0.2315246584972&auth=1-0.72870787220481
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.26.85200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.26.85:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://postsign.docusign.com
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 18 Dec 2022 08:40:53 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77b698a689a7b52d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 0 B URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://postsign.docusign.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 18 Dec 2022 06:41:08 GMT
expires: Sun, 18 Dec 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 7190
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2