POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4605
Expires: Thu, 02 Feb 2023 16:09:53 GMT
Date: Thu, 02 Feb 2023 14:53:08 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3612
Expires: Thu, 02 Feb 2023 15:53:20 GMT
Date: Thu, 02 Feb 2023 14:53:08 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9525
Expires: Thu, 02 Feb 2023 17:31:53 GMT
Date: Thu, 02 Feb 2023 14:53:08 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 14:43:31 GMT
age: 577
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: L+cpNspubrE1xHZWcJEGyWMDLkOCye8Gwbw4Xo+LYTziNvSa7/anEg7GI1XrvEj4uE7/pFaaigk=
x-amz-request-id: GMMJGVGQKPZMHJHK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 14:23:08 GMT
age: 1800
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Thu, 02 Feb 2023 14:53:08 GMT
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /i?u=https://redstrongfoundation.org/F4zduvalla51kyc0h3nW1f0h3rtd07c0h3nW1 HTTP/1.1
Host: googleweblight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
142.250.74.97
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 02 Feb 2023 14:53:09 GMT
Location: https://googleweblight.com/i?u=https://redstrongfoundation.org/F4zduvalla51kyc0h3nW1f0h3rtd07c0h3nW1
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=511=KISriEd25MNhcCngS6j5nEhYdMUdx4AUny3A6l-PLYlapVr8CLeuauydnUc-BDlmqB9KWnZKZ2uGKyK42AuMQ4a8nQAnLZGBtM_ydpT985IyqRm670J0bdrCZRlWmO3R7D3xZKiCDH2Qm4AWSxQtB3kWHGSDMv1cLdOvMKW-LPM; expires=Fri, 04-Aug-2023 14:53:09 GMT; path=/; domain=.googleweblight.com; HttpOnly
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 14:53:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 14:07:19 GMT
age: 2750
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3857
Expires: Thu, 02 Feb 2023 15:57:26 GMT
Date: Thu, 02 Feb 2023 14:53:09 GMT
Connection: keep-alive
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: SaFQlivvgCQ1vEuYv8Cskg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
54.200.107.47
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uEhvRfHoRxeoQBaHySv17feJGu0=
|
GET /i?u=https://redstrongfoundation.org/F4zduvalla51kyc0h3nW1f0h3rtd07c0h3nW1 HTTP/1.1
Host: googleweblight.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
142.250.74.97
HTTP/2 301 Moved Permanently
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 14:53:09 GMT
location: https://redstrongfoundation.org/F4zduvalla51kyc0h3nW1f0h3rtd07c0h3nW1
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/WebLightSmartphoneHttp/cspreport, script-src 'nonce-GcN4Zl028C-3eIUMxIp9Eg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/WebLightSmartphoneHttp/cspreport;worker-src 'self', script-src 'nonce-GcN4Zl028C-3eIUMxIp9Eg' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://pagead2.googlesyndication.com https://adservice.google.com https://partner.googleadservices.com https://tpc.googlesyndication.com https://fundingchoicesmessages.google.com;report-uri /_/WebLightSmartphoneHttp/cspreport
cross-origin-resource-policy: same-site
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy-report-only: script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://pagead2.googlesyndication.com https://adservice.google.com https://partner.googleadservices.com https://tpc.googlesyndication.com https://fundingchoicesmessages.google.com;report-uri /_/WebLightSmartphoneHttp/cspreport/allowlist
report-to: {"group":"WebLightSmartphoneHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/WebLightSmartphoneHttp/external"}]}
cross-origin-opener-policy: unsafe-none; report-to="WebLightSmartphoneHttp"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=KMEr-FpazncdSG-G56RqzTcLYtE4t29I41AXvlkrOj66xw15h_TOJBn77oDnWQ9BOgBddiE4jHKrJ5EcaEwGmN8dkA_1ZuRY9ZYqS_mZQLWuggvHrQ8gnMKTfs5ETR-eJ1t_Hv1DYLn1uEw6yiZU_DMJFGILgkf0MLHo-8b7I6k; expires=Fri, 04-Aug-2023 14:53:09 GMT; path=/; domain=.googleweblight.com; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 14:53:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "16C03849C42E8A1554E85E8BAC96AB36BE645CD3EE0C42D366F0D5D8DD05DC2C"
Last-Modified: Thu, 02 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4396
Expires: Thu, 02 Feb 2023 16:06:26 GMT
Date: Thu, 02 Feb 2023 14:53:10 GMT
Connection: keep-alive
|
GET /F4zduvalla51kyc0h3nW1f0h3rtd07c0h3nW1 HTTP/1.1
Host: redstrongfoundation.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
192.185.96.196
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 14:53:10 GMT
server: nginx/1.23.2
content-length: 264
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://redstrongfoundation.org/wp-json/>; rel="https://api.w.org/"
x-tec-api-version: v1
x-tec-api-root: https://redstrongfoundation.org/wp-json/tribe/events/v1/
x-tec-api-origin: https://redstrongfoundation.org
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17433
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 14:53:10 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17433
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 14:53:10 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17433
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 14:53:10 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 59655
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 60853
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 15656
x-amzn-requestid: 6723d22f-8b16-4fb2-af92-9b3257fc2a1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIHpRoAMFRYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-03b1c6646f63ba716a6298e1;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: alMHzjwJbGegz4F76t9-EhIhCUHgQngtgiZgMo2_MxAIrXqsNxWxBg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 14:27:10 GMT
etag: "b89eebf2b8adac69487262100b07da8bc171ecf7"
age: 1560
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5061
x-amzn-requestid: a266acae-8f1e-4cd7-b93b-e40aa5393521
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUpGcmoAMF16Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1d-1fbae7785fccc58f71c1b3e9;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PevXZz9rkBo3Cy6EooCVOpSoHyeKHMoYFjKRrvDld34WFWXzOmpANQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:11:31 GMT
age: 60099
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 59279
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 11552
x-amzn-requestid: 611f63cb-f058-493b-ac86-7e268b866fd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTvG9VIAMFgPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc17-78de7563537b111924100346;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lHLm3IkJRn59US_8SXKXQnNDUiCLIWnQ7QN-DWB3jkot9Ub3b6FUgA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:01:11 GMT
age: 60719
etag: "5d6309502ffd0c33f6199d46f0d14d0a22e3c752"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /wp-xml.php?url=https://redstrongfoundation.org/F4zduvalla51kyc0h3nW1f0h3rtd07c0h3nW1 HTTP/1.1
Host: redstrongfoundation.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://redstrongfoundation.org/F4zduvalla51kyc0h3nW1f0h3rtd07c0h3nW1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
|
search
192.185.96.196
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 14:53:10 GMT
server: nginx/1.23.2
content-length: 0
location: https://wwwofc.rufophg.com/?username=eduvall@kycomfort.com#/common/oauth2/authorize?client_id=0.90595954046862-0ff1-0.84331375306626&auth=1-0.4985065527719
x-server-cache: true
x-proxy-cache: MISS
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "B5042F4B931C50E17BF759312A6F61A30AA53CADB6B90BE3B1C28A206C675031"
Last-Modified: Tue, 31 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4340
Expires: Thu, 02 Feb 2023 16:05:31 GMT
Date: Thu, 02 Feb 2023 14:53:11 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6358
Cache-Control: max-age=130333
Date: Thu, 02 Feb 2023 14:53:12 GMT
Etag: "63db0f9f-1d7"
Expires: Sat, 04 Feb 2023 03:05:25 GMT
Last-Modified: Thu, 02 Feb 2023 01:19:27 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 2547
Cache-Control: max-age=109203
Date: Thu, 02 Feb 2023 14:53:12 GMT
Etag: "63dacbf8-1d7"
Expires: Fri, 03 Feb 2023 21:13:15 GMT
Last-Modified: Wed, 01 Feb 2023 20:30:48 GMT
Server: ECS (amb/6BBA)
X-Cache: HIT
Content-Length: 471
|
GET /Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://redstrongfoundation.org/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
search
162.248.184.27
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Cache-Control: private
Transfer-Encoding: chunked
Location: /Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: pv=SE5FE50_8812; path=/; secure; HttpOnly; SameSite=None
AspxAutoDetectCookieSupport=1; path=/; secure; SameSite=None
BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; path=/; Httponly; Secure; Samesite=None
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:11 GMT
|
GET /Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1 HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://redstrongfoundation.org/
Connection: keep-alive
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: br
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
Set-Cookie: pv=SE5FE50_8812; path=/; secure; HttpOnly; SameSite=None
ssid=dhk4ov4bxvnhvw30idlyimnj; path=/; secure; HttpOnly; SameSite=None
MemberConsoleMobile=; path=/; secure; SameSite=None
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 14324
|
GET /Signing/StyleSheets/Framework.css HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1
Connection: keep-alive
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: text/css
Cache-Control: max-age=2592000
Content-Encoding: gzip
ETag: "03c8467b32bd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 1339
|
GET /Signing/StyleSheetsDev/ErrorExpired.css HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1
Connection: keep-alive
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: text/css
Cache-Control: max-age=2592000
ETag: "1b9c5e8bae2bd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 2048
|
GET /Signing/SigningApp/latest/css/font-faces.css?cs=35a886aa8 HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1
Connection: keep-alive
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: text/css
Cache-Control: max-age=2592000
ETag: "5027a0d8fcfd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 1560
|
GET /Signing/client_scripts/jQuery/jquery-1.12.3.min.js HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1
Connection: keep-alive
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: application/javascript
Cache-Control: max-age=2592000
Content-Encoding: gzip
ETag: "804e918bae2bd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 33900
|
GET /Signing/Images/controls/btn_arrow_u.png HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1
Connection: keep-alive
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: image/png
Cache-Control: max-age=2592000
ETag: "185e18bae2bd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 2961
|
GET /Signing/Images/logo_docusign_new_white.png HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1
Connection: keep-alive
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: image/png
Cache-Control: max-age=2592000
ETag: "ba27258bae2bd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 4010
|
GET /Signing/Image.aspx?i=logo&l=8d686f4f-d339-43ac-83ae-36b2103ccc83 HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f&AspxAutoDetectCookieSupport=1
Connection: keep-alive
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: image/png
Cache-Control: private
ETag: 133390f4-8a76-4b70-b5a9-3f0de7dcf61c
X-XSS-Protection: 1; mode=block
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: pv=SE5FE50_8812; path=/; secure; HttpOnly; SameSite=None
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 17550
|
GET /v/static/mixpanel-2-2-1b.js HTTP/1.1
Host: docucdn-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
23.36.76.243
HTTP/2 200 OK
content-type: application/x-javascript
accept-ranges: bytes
etag: "ece7a224f69ab2205d90900589ae1d05:1527120741"
last-modified: Thu, 24 May 2018 00:08:49 GMT
server: AkamaiNetStorage
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Fri, 02 Feb 2024 14:53:13 GMT
date: Thu, 02 Feb 2023 14:53:13 GMT
content-length: 26533
access-control-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
GET /Signing/SigningApp/latest/fonts/helvetica-neue/HelveticaNeue-Bold.woff HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.docusign.net/Signing/SigningApp/latest/css/font-faces.css?cs=35a886aa8
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: application/font-woff
Cache-Control: max-age=2592000
ETag: "5027a0d8fcfd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 37560
|
GET /Signing/SigningApp/latest/fonts/helvetica-neue/HelveticaNeue.woff HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.docusign.net/Signing/SigningApp/latest/css/font-faces.css?cs=35a886aa8
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: application/font-woff
Cache-Control: max-age=2592000
ETag: "5027a0d8fcfd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 47748
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6320
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 14:53:13 GMT
Last-Modified: Thu, 02 Feb 2023 13:07:53 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
GET /Signing/SigningApp/latest/fonts/maven-pro/MavenPro-Regular.woff HTTP/1.1
Host: www.docusign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.docusign.net/Signing/SigningApp/latest/css/font-faces.css?cs=35a886aa8
Cookie: pv=SE5FE50_8812; AspxAutoDetectCookieSupport=1; BIGipDocuSign_NA1_Signing=!lHWiH1Fk2lKMhEW0bOlB09wl7VsgfwAJxlVUkn80xqZf0AdmNEVvv3FzjylZJQ6MOEm93AdGy3JruQ==; ssid=dhk4ov4bxvnhvw30idlyimnj; MemberConsoleMobile=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
|
search
162.248.184.27
HTTP/1.1 200 OK
Content-Type: application/font-woff
Cache-Control: max-age=2592000
ETag: "5027a0d8fcfd91:0"
X-DocuSign-Node: SE5FE50
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Date: Thu, 02 Feb 2023 14:53:12 GMT
Content-Length: 34820
|
GET /olive/images/2.15.0/favicons/android-chrome-512x512.png HTTP/1.1
Host: docucdn-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
23.36.76.243
HTTP/2 200 OK
content-type: image/png
server: AkamaiGHost
mime-version: 1.0
unused62: 8096267
accept-ranges: bytes
etag: "19afd5a33a141c1a34505a1d90d24c72:1584027770.130477"
last-modified: Thu, 12 Mar 2020 15:40:31 GMT
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=3628800
date: Thu, 02 Feb 2023 14:53:13 GMT
content-length: 2185
access-control-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
GET /olive/images/2.15.0/favicons/favicon-16x16.png HTTP/1.1
Host: docucdn-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
23.36.76.243
HTTP/2 200 OK
content-type: image/png
server: AkamaiGHost
mime-version: 1.0
unused62: 8096267
accept-ranges: bytes
etag: "ab07127e18c443a7dba6879192584ec2:1584027770.440594"
last-modified: Thu, 12 Mar 2020 15:40:31 GMT
content-length: 592
cache-control: max-age=3628800
date: Thu, 02 Feb 2023 14:53:13 GMT
access-control-allow-origin: *
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
GET /track/?data=eyJldmVudCI6ICJtcF9wYWdlX3ZpZXciLCJwcm9wZXJ0aWVzIjogeyIkb3MiOiAiV2luZG93cyIsIiRicm93c2VyIjogIkZpcmVmb3giLCIkcmVmZXJyaW5nX2RvbWFpbiI6ICJyZWRzdHJvbmdmb3VuZGF0aW9uLm9yZyIsIiRzY3JlZW5faGVpZ2h0IjogMTAyNCwiJHNjcmVlbl93aWR0aCI6IDEyODAsIm1wX2xpYiI6ICJ3ZWIiLCJkaXN0aW5jdF9pZCI6ICJGRDQwOUM3RkQ1QjJFMkQyQ0E4N0UxQkZGMjE5QkM2QUQxRDU2MjU4IiwiJGluaXRpYWxfcmVmZXJyaW5nX2RvbWFpbiI6ICJyZWRzdHJvbmdmb3VuZGF0aW9uLm9yZyIsIm1wX3BhZ2UiOiAid3d3LmRvY3VzaWduLm5ldCIsIm1wX3JlZmVycmVyIjogInJlZHN0cm9uZ2ZvdW5kYXRpb24ub3JnIiwibXBfYnJvd3NlciI6ICJGaXJlZm94IiwibXBfcGxhdGZvcm0iOiAiV2luZG93cyIsInRva2VuIjogIjMwNGNjYmRlMjRkM2IxNWZmZTJkNWRlMzBjMTBkYWIyIn19&ip=1&_=1675349620202 HTTP/1.1
Host: api.mixpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.docusign.net/
Origin: https://www.docusign.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
35.186.241.51
HTTP/2 200 OK
content-type: application/json
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://www.docusign.net
access-control-expose-headers: X-MP-CE-Backoff
access-control-max-age: 1728000
cache-control: no-cache, no-store
strict-transport-security: max-age=604800; includeSubDomains
date: Thu, 02 Feb 2023 14:53:13 GMT
content-length: 1
x-envoy-upstream-service-time: 0
server: envoy
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /?username=eduvall@kycomfort.com HTTP/1.1
Host: wwwofc.rufophg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://redstrongfoundation.org/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
search
 79.137.202.226
HTTP/2 302 Found
content-type: text/html; charset=utf-8
server: nginx
date: Thu, 02 Feb 2023 14:53:11 GMT
location: https://www.docusign.net/Signing/Error.aspx?e=ef8758e9-7611-4d41-a4b3-f75dbce853fe&scope=157ad94e-6b42-44c5-86da-aab6ee1dda6f
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
--- Additional Info ---
|