13.57.132.227/axosap/login.php
13.57.132.227200 OK 9.0 kB URL HTTP/1.1 13.57.132.227/axosap/login.php
IP 13.57.132.227:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6409)
Hash 2ef7be17de6c6616c3d1daa6b7e240e0
58b6d85299b748f7256f7ba8552fa8cbab130782
9f92bc1e0bfb82601f7b7381511c696ab93c15a0777a9e3ef15ad428ab9dd798
Analyzer Verdict Alert quad9 Sinkholed
GET /axosap/login.php HTTP/1.1
Host: 13.57.132.227
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:42:34 GMT
Server: Apache/2.4.29 (Ubuntu)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9035
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10376
Expires: Sat, 28 Jan 2023 17:35:30 GMT
Date: Sat, 28 Jan 2023 14:42:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10271
Expires: Sat, 28 Jan 2023 17:33:45 GMT
Date: Sat, 28 Jan 2023 14:42:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4357
Expires: Sat, 28 Jan 2023 15:55:11 GMT
Date: Sat, 28 Jan 2023 14:42:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 14:35:30 GMT
content-type: application/json
age: 424
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: v0mHwNhILo3tx0b9/91djlXEKUNmBKzjpZGLozJ99u1ik0UeRnoAacWc6g3FgkhP9MW9iYZUMxopSQDcaOygpA==
x-amz-request-id: MQ67XN3J6TWTMP21
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 13:49:54 GMT
age: 3160
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:42:34 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.4.0/css/font-awesome.min.css
104.17.25.14200 OK 5.9 kB URL HTTP/1.1 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.4.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (26548)
Hash 051eaa0dfc588b4223ebe4941b87ed2a
88bf915aa4094c2bb2bbad91707ed5f0837835b6
743b4844a007f19665d2c121531a9117c84e2d92bb6f8abe77420e46c05e58ec
GET /ajax/libs/font-awesome/4.4.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.57.132.227/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:42:34 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 5936
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03e5f-6857"
Last-Modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 6196292
Expires: Thu, 18 Jan 2024 14:42:34 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VLzU16IEJGfvcLeN7Ar01Voe1%2BBTkHb97Oks%2BW5TOJMLJio5Cpcg%2B561c4SYAfBP%2FWJiWHgrnr1sKrLFmZ7MxZjtaGh6fpSomPECQj3OTSL9rAnqLq3zalv%2FwwRVxXOAOeGF6eDw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 790a7ed78fc4b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
13.57.132.227/verp/vmod_v1/ui/sap.sf.surj.shell/resources_1.2.2/sap/sf/surj/shell/themes/sap_belize/library.css
13.57.132.227404 Not Found 275 B URL HTTP/1.1 13.57.132.227/verp/vmod_v1/ui/sap.sf.surj.shell/resources_1.2.2/sap/sf/surj/shell/themes/sap_belize/library.css
IP 13.57.132.227:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d5db30519c8d079e58a2fd81240e363
ccbf23c1b85711322c9021a1fd80caf82ce36803
e18bc620bb72c279ebff44f7c152affc9055b477ffd73a896b3603fb2c589e4a
Analyzer Verdict Alert quad9 Sinkholed
GET /verp/vmod_v1/ui/sap.sf.surj.shell/resources_1.2.2/sap/sf/surj/shell/themes/sap_belize/library.css HTTP/1.1
Host: 13.57.132.227
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.57.132.227/axosap/login.php
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 14:42:34 GMT
Server: Apache/2.4.29 (Ubuntu)
Content-Length: 275
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
hcm19.sapsf.com/ui/uicore/css/revolutionfont-Icons_64a1fc36c4a3758358073815ce01a3a5.css
104.110.19.60200 OK 298 B URL HTTP/2 hcm19.sapsf.com/ui/uicore/css/revolutionfont-Icons_64a1fc36c4a3758358073815ce01a3a5.css
IP 104.110.19.60:0
File type Unicode text, UTF-8 text, with no line terminators
Hash ee25fe1247ba3f53f63d1407024890d5
6439f4be1b18e549b1f9584813944331f79e350f
d8c01ade747ee5b5df420642852278d243af055aed9f044dcf70a29a585d233e
GET /ui/uicore/css/revolutionfont-Icons_64a1fc36c4a3758358073815ce01a3a5.css HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 298
last-modified: Sat, 10 Dec 2022 04:41:30 GMT
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
accept-ranges: bytes
cache-control: public, max-age=311122458
expires: Tue, 07 Dec 2032 13:36:52 GMT
date: Sat, 28 Jan 2023 14:42:34 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/extlib/jshash_2.2/sha256.js
104.110.19.60200 OK 2.4 kB URL HTTP/2 hcm19.sapsf.com/ui/extlib/jshash_2.2/sha256.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (5411)
Hash 5a0888c09f2e84e7832b4ca55e63be4d
0976061d25630c56823f285c0d75849faeb7b931
f235f8568509b2315e1669bc32e38777d1565b827b85ffd6f593711c7850722d
GET /ui/extlib/jshash_2.2/sha256.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 10 Mar 2022 06:41:11 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
unused62: 8096267
content-length: 2403
cache-control: public, max-age=288067093
expires: Mon, 15 Mar 2032 17:20:47 GMT
date: Sat, 28 Jan 2023 14:42:34 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/surj/js/core/config-util_1f1411d7d63c13c9fff25c556f656cd6.js
104.110.19.60200 OK 771 B URL HTTP/2 hcm19.sapsf.com/ui/surj/js/core/config-util_1f1411d7d63c13c9fff25c556f656cd6.js
IP 104.110.19.60:0
File type C source, ASCII text, with very long lines (536)
Hash e80cef87bac573729946757b4f8c4576
79d84c3f77f0e7d804d374ef5932e490ad6d2ea1
496b626050d0be9014a1265944206a831c4e965e84744a036e4586b02a9d0402
GET /ui/surj/js/core/config-util_1f1411d7d63c13c9fff25c556f656cd6.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 22 Jan 2022 06:26:23 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 771
unused62: 8096267
cache-control: public, max-age=283475867
expires: Thu, 22 Jan 2032 14:00:21 GMT
date: Sat, 28 Jan 2023 14:42:34 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/layout/themes/sap_belize/library.css
104.110.19.60200 OK 23 kB URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/layout/themes/sap_belize/library.css
IP 104.110.19.60:0
File type ASCII text, with very long lines (65239)
Hash 1b42f0c616b710981e0802dabbf70fc6
0064a1269d55e5aead91e0accbf64ea2971e1b93
fe0905e6b897672d21e158cced90edc84bfdd5ef1d9ec3b30ef4494ee2604f2c
GET /verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/layout/themes/sap_belize/library.css HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 09 Aug 2022 21:17:42 GMT
etag: "f17ab6f1.gz"
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: b5cf8aaf8f08d607bcde1f84d4ef04c3
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 23141
cache-control: public, max-age=27298426
expires: Sun, 10 Dec 2023 13:36:20 GMT
date: Sat, 28 Jan 2023 14:42:34 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/extlib/jquery_3.5.1/jquery.js
104.110.19.60200 OK 34 kB URL HTTP/2 hcm19.sapsf.com/ui/extlib/jquery_3.5.1/jquery.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (65451)
Hash fb336178d323f5ea24e398a7fcf4fbe0
9b4f5cda1b475b6b46522ba4c1ec1a45218027a9
adae3b371e05c3bf57755da63790f02b87cd95d97e0bab533f1c134e439d49dd
GET /ui/extlib/jquery_3.5.1/jquery.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 22 Jan 2022 06:20:43 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 34459
unused62: 8096267
cache-control: public, max-age=283475775
expires: Thu, 22 Jan 2032 13:58:49 GMT
date: Sat, 28 Jan 2023 14:42:34 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/juic/js/InterstitialUtil_1f1a1807326bb0d8ceaa3c1c842340d9.js
104.110.19.60200 OK 392 B URL HTTP/2 hcm19.sapsf.com/ui/juic/js/InterstitialUtil_1f1a1807326bb0d8ceaa3c1c842340d9.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (457)
Hash e187fcd581a5a836936eed92c44380f5
f818ff35272168b0b260d8b107f6733ba7da8489
270389c574c65a37e96b26df12ef63099ab5c2c66f2f0c9899f91f89bdf00fe0
GET /ui/juic/js/InterstitialUtil_1f1a1807326bb0d8ceaa3c1c842340d9.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 05 Mar 2022 05:15:27 GMT
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
unused62: 8096267
content-length: 392
cache-control: public, max-age=287106314
expires: Thu, 04 Mar 2032 14:27:49 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/juic/js/GlobalFunctions_01fec693481e5b62b8281e3fc656dbb0.js
104.110.19.60200 OK 942 B URL HTTP/2 hcm19.sapsf.com/ui/juic/js/GlobalFunctions_01fec693481e5b62b8281e3fc656dbb0.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (512)
Hash 6b5c63c77030438f7f24d2db016e26f8
ea86b755ccd8134c82e8ed56e170a1c6c1ddf5d4
75411f3581cb8308306eca38847f85b73fc2db7de0d9fadadc95ed5a0bfbcee4
GET /ui/juic/js/GlobalFunctions_01fec693481e5b62b8281e3fc656dbb0.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 21 May 2022 05:32:47 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 942
cache-control: public, max-age=293578624
expires: Tue, 18 May 2032 12:19:39 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/perflog/js/perflog_6afbc835fd7bc8ec51a93324df511558.js
104.110.19.60200 OK 4.4 kB URL HTTP/2 hcm19.sapsf.com/ui/perflog/js/perflog_6afbc835fd7bc8ec51a93324df511558.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (540)
Hash f7f20d4e44b80e5415c21cd8999bbd3d
052cd5ee379230ae132c0aeb89f436531988836f
5582ca4776307f097ba5e7f36b23c85c7e628e1611704f3d47b57b7adb5f9af3
GET /ui/perflog/js/perflog_6afbc835fd7bc8ec51a93324df511558.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 21 May 2022 05:33:59 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 4421
cache-control: public, max-age=293576852
expires: Tue, 18 May 2032 11:50:07 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/uicore/img/successfactors-large_abf7640c2701d6e38bbb0fe0d0fa326b.gif
104.110.19.60200 OK 2.6 kB URL HTTP/2 hcm19.sapsf.com/ui/uicore/img/successfactors-large_abf7640c2701d6e38bbb0fe0d0fa326b.gif
IP 104.110.19.60:0
File type GIF image data, version 89a, 225 x 49\012- data
Hash abf7640c2701d6e38bbb0fe0d0fa326b
6ddf4c6981b3343cdfc9815009026104a2d1243b
15795c3d16c0217ac80226fb2a6408653f68a72b96cd17aa9d74be9b5355ae91
GET /ui/uicore/img/successfactors-large_abf7640c2701d6e38bbb0fe0d0fa326b.gif HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 2621
etag: "6067ee5c-a3d"
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
accept-ranges: bytes
cache-control: public, max-age=296934806
expires: Sat, 26 Jun 2032 08:36:01 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/login/css/bizx/BizXLogin_557598dfe414646ac0c1485d153116c4.css
104.110.19.60200 OK 2.7 kB URL HTTP/2 hcm19.sapsf.com/ui/login/css/bizx/BizXLogin_557598dfe414646ac0c1485d153116c4.css
IP 104.110.19.60:0
File type ASCII text, with very long lines (9317), with no line terminators
Hash 61e63415cc188e07fa42378b478b1dbe
7e0a932f4e48fa3ba7a0ccbea7daec95506ba912
cb32bac362c68c3d455adcdba655e3836abb51b6f5499bf0f500e60ac2b3a595
GET /ui/login/css/bizx/BizXLogin_557598dfe414646ac0c1485d153116c4.css HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 21 May 2022 05:32:57 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 2677
cache-control: public, max-age=293716584
expires: Thu, 20 May 2032 02:38:59 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/sfgrp/js/SURJUtil_c7f1827ef1a57c86998087c2bea081ee.js
104.110.19.60200 OK 10 kB URL HTTP/2 hcm19.sapsf.com/ui/sfgrp/js/SURJUtil_c7f1827ef1a57c86998087c2bea081ee.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (822)
Hash a1be51d7c7d6e8e59bcbcf534db1fc37
5b2fa0d6a5d608e028a9e84f851e97e95b5dd81f
94a2837664d88dd6de37e5f5c9c5496fd1485a97e4832241234220e2e63222a9
GET /ui/sfgrp/js/SURJUtil_c7f1827ef1a57c86998087c2bea081ee.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:40:04 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 10165
cache-control: public, max-age=311108608
expires: Tue, 07 Dec 2032 09:46:03 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/ajaxservice/js/AjaxService_cfa87537ceb376f03069d867f213cc5a.js
104.110.19.60200 OK 4.9 kB URL HTTP/2 hcm19.sapsf.com/ui/ajaxservice/js/AjaxService_cfa87537ceb376f03069d867f213cc5a.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (4257)
Hash f426452d9df6429953ee7265b944c93d
01bb5da47728862a9381253e231a46afd477d23f
575e0a0387ed5a570243e7e3cdb8b3ee598d86087516b849366f3c05af7e93de
GET /ui/ajaxservice/js/AjaxService_cfa87537ceb376f03069d867f213cc5a.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:28:37 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 4934
cache-control: public, max-age=311108539
expires: Tue, 07 Dec 2032 09:44:54 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/sfgrp/js/loginBizX_53f8efbff9edbc3b76146105c3a35804.js
104.110.19.60200 OK 9.1 kB URL HTTP/2 hcm19.sapsf.com/ui/sfgrp/js/loginBizX_53f8efbff9edbc3b76146105c3a35804.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (616)
Hash dbd1d2676f6739c9867c2f4b4984d752
5009c1a5d0a81bfa3df6dc3ec8edbd32bea79e41
c69b110fc481f8592cb69361032472fd364a2481301d69b31e7fe0d9416626f9
GET /ui/sfgrp/js/loginBizX_53f8efbff9edbc3b76146105c3a35804.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:40:05 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 9054
cache-control: public, max-age=311122457
expires: Tue, 07 Dec 2032 13:36:52 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/surj/js/LastPageVisitedUtil_0c5eb08867c40ac80c00973814a30e2c.js
104.110.19.60200 OK 1.7 kB URL HTTP/2 hcm19.sapsf.com/ui/surj/js/LastPageVisitedUtil_0c5eb08867c40ac80c00973814a30e2c.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (547)
Hash 48f4e2ccc6d7a78132dfc7dc7f2d6a5a
c9bbd3ad6670dd51e0830e9268c751134908b29e
2ee6dcf900c6e3ab9772d118cb064ebbcf7ff2fe6a0e8ec7b03fa3f79ae703f4
GET /ui/surj/js/LastPageVisitedUtil_0c5eb08867c40ac80c00973814a30e2c.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:40:49 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 1650
cache-control: public, max-age=311108624
expires: Tue, 07 Dec 2032 09:46:19 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/surj/js/core/surj-ui-config_d87ad16648be5901e6075ed07c448d2e.js
104.110.19.60200 OK 2.9 kB URL HTTP/2 hcm19.sapsf.com/ui/surj/js/core/surj-ui-config_d87ad16648be5901e6075ed07c448d2e.js
IP 104.110.19.60:0
File type C source, ASCII text, with very long lines (565)
Hash 0f4d2f2e1f0a9c3ac42f847b498ea1fb
42ef27470a3bb2187072cadbd27b6bce93830949
daf5d6ef784a4539258b61eb31fcb49af4b12af8755b3678ec55162d0cd201fb
GET /ui/surj/js/core/surj-ui-config_d87ad16648be5901e6075ed07c448d2e.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:40:50 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 2910
cache-control: public, max-age=311108599
expires: Tue, 07 Dec 2032 09:45:54 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/ajaxservice/js/engine_116e1015e98245eacd3e1336ebb5e951.js
104.110.19.60200 OK 6.8 kB URL HTTP/2 hcm19.sapsf.com/ui/ajaxservice/js/engine_116e1015e98245eacd3e1336ebb5e951.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (620)
Hash da0b7c569cc0680726286b6c5cc9a2b7
5908563a5f5f6ae5725c2db796b9733e1c7e7bf5
ae30460d22b4930a92b5d360f8b378f9b0a77e8b61b3634c62c6baa87acf472d
GET /ui/ajaxservice/js/engine_116e1015e98245eacd3e1336ebb5e951.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Sep 2022 04:23:45 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 6774
cache-control: public, max-age=303807620
expires: Mon, 13 Sep 2032 21:42:55 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/sfgrp/js/SURJStartup_4285842f44b902274864da6df953b07f.js
104.110.19.60200 OK 3.3 kB URL HTTP/2 hcm19.sapsf.com/ui/sfgrp/js/SURJStartup_4285842f44b902274864da6df953b07f.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (544)
Hash 061d8636dbc8605ce02e740c561b0f9f
4e21cf5140ebeaa26322fff287e58ac76b5681c3
53636e54be5cadc1b286c1bcc8f779a7cc0ff2ea041a70b225d525de4c0170d1
GET /ui/sfgrp/js/SURJStartup_4285842f44b902274864da6df953b07f.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:40:04 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 3322
cache-control: public, max-age=311108611
expires: Tue, 07 Dec 2032 09:46:06 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/surj/resources_1.4/lite/resources/sap-ui-core-nojQuery.js
104.110.19.60200 OK 67 B URL HTTP/2 hcm19.sapsf.com/ui/surj/resources_1.4/lite/resources/sap-ui-core-nojQuery.js
IP 104.110.19.60:0
File type ASCII text, with no line terminators
Hash d1d1e5e542ff9ac437e25ddcb3bc70ea
15ada8cf73be7f740718c31dab7b05317121e25f
75b8b03748ad7bfae5d03717a2f82041be8fafbfd2665ee520ca7848f71d884f
GET /ui/surj/resources_1.4/lite/resources/sap-ui-core-nojQuery.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 22 Jan 2022 06:26:24 GMT
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 67
unused62: 8096267
cache-control: public, max-age=283475841
expires: Thu, 22 Jan 2032 13:59:56 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/login/js/service/DataService_47865bd95a7101634808bd9d3e27dd84.js
104.110.19.60200 OK 265 B URL HTTP/2 hcm19.sapsf.com/ui/login/js/service/DataService_47865bd95a7101634808bd9d3e27dd84.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (527)
Hash c5f870f9c74ac988d47d9d99cc4e6488
fc13b8d3ba2d09649945e6b3c1274c45af32cf3f
0edf505cb41005e9e94e5dcd029a5cd1d34ccb83e43802b7f74f8a936641a435
GET /ui/login/js/service/DataService_47865bd95a7101634808bd9d3e27dd84.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 28 May 2022 05:24:24 GMT
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 265
cache-control: public, max-age=294597235
expires: Sun, 30 May 2032 07:16:30 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-2.js
104.110.19.60200 OK 226 kB URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-2.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (7029)
Size 226 kB (226156 bytes)
Hash 6d8c2ff1bd2a91e32c67447888a9ffa1
35cb813dc5d0912c35a0528cd5237d10ab8ffe72
3aaa20e3c171213e4c5ea369f273615462a4d4c4cb3c74d06302377e13b3ec11
GET /verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-2.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 07:25:10 GMT
etag: "231abe25.gz"
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: 9adda834947a2c47c137f70b4019b2af
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 226156
cache-control: public, max-age=27284596
expires: Sun, 10 Dec 2023 09:45:51 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-3.js
104.110.19.60200 OK 218 kB URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-3.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (13858)
Size 218 kB (217455 bytes)
Hash ff9647490d2d4fd7b1a7a3650d4755c4
063120256314679f43c952d48f17aed315acf6d9
fee805892b03dfb8b0204a092762e9f6b97276721579a87412e25c9fb216e9c4
GET /verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-3.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 07:25:10 GMT
etag: "839fb031.gz"
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: 56cb1354eae2cd32d18a28f508e120e9
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 217455
cache-control: public, max-age=27284584
expires: Sun, 10 Dec 2023 09:45:39 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-0.js
104.110.19.60200 OK 213 kB URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-0.js
IP 104.110.19.60:0
File type HTML document, ASCII text, with very long lines (23771)
Size 213 kB (212762 bytes)
Hash 34687e77dd018ea0f99e8dab349ed40a
fd3624fd89a8631a520f7d2eb74ce85e70e8e7e6
a899d2ee9b641c92cdf282d3ab87c468375ad6e45a3d06780819effc9ace181f
GET /verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-0.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 07:25:10 GMT
etag: "e3de6201.gz"
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: 2806b47acfee053242be303fadc56ede
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 212762
cache-control: public, max-age=27284618
expires: Sun, 10 Dec 2023 09:46:13 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-1.js
104.110.19.60200 OK 208 kB URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-1.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (13047)
Size 208 kB (208320 bytes)
Hash edda3ed6acb1a0ad8075f8053b365608
78b3cd93ec16d7cc7a170690259530fd43627724
1fd751e076818717b355fb4dee1222739d6c95daa0af9ccff39e9c3b561ee050
GET /verp/vmod_v1/ui/sapui5-bundles-main/resources_1.102.6-4/common-1.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 21 Sep 2022 07:25:10 GMT
etag: "38b7d97.gz"
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: 9272958b43b3d86a4b6e1cd0ac2a5d40
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 208320
cache-control: public, max-age=27284513
expires: Sun, 10 Dec 2023 09:44:28 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/extlib/XMLHttpRequest_1.0.5_sf.18/XMLHttpRequest.js
104.110.19.60200 OK 2.7 kB URL HTTP/2 hcm19.sapsf.com/ui/extlib/XMLHttpRequest_1.0.5_sf.18/XMLHttpRequest.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (520)
Hash d553809780f64914ccd1566a679a3ff8
29e5284d77df921c451148bc63b695cdc9b7ad6f
b0e88fe1475699c6df71d74b3509fab47b91c1cef1903d08536c483f9248a0b4
GET /ui/extlib/XMLHttpRequest_1.0.5_sf.18/XMLHttpRequest.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:35:10 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 2704
cache-control: public, max-age=311108473
expires: Tue, 07 Dec 2032 09:43:48 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/juic/js/deprecatedY/js/animation/animation_7b44ccf89baa29956d538d58baf1ea38.js
104.110.19.60200 OK 4.5 kB URL HTTP/2 hcm19.sapsf.com/ui/juic/js/deprecatedY/js/animation/animation_7b44ccf89baa29956d538d58baf1ea38.js
IP 104.110.19.60:0
File type ASCII text, with very long lines (754)
Hash 0543ba8be014cb5ab99c5c396fcb85b3
5d0124e7173ac6dfb5627d9374d536dc27ee65b6
d3f39af6f7797f46cd207392ac1154cd1ac619f2a8549d872e4b246bdf0380e5
GET /ui/juic/js/deprecatedY/js/animation/animation_7b44ccf89baa29956d538d58baf1ea38.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:36:48 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 4522
cache-control: public, max-age=311108591
expires: Tue, 07 Dec 2032 09:45:46 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 14:41:40 GMT
age: 55
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8678
Expires: Sat, 28 Jan 2023 17:07:13 GMT
Date: Sat, 28 Jan 2023 14:42:35 GMT
Connection: keep-alive
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/m/themes/sap_belize/library.css
104.110.19.60200 OK 275 B URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/m/themes/sap_belize/library.css
IP 104.110.19.60:0
Hash 5d5db30519c8d079e58a2fd81240e363
ccbf23c1b85711322c9021a1fd80caf82ce36803
e18bc620bb72c279ebff44f7c152affc9055b477ffd73a896b3603fb2c589e4a
GET /verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/m/themes/sap_belize/library.css HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 09 Aug 2022 21:17:52 GMT
etag: "9607ce32.gz"
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: 26e87580e4a4b102ddad9b5b6ad5e21a
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 136330
cache-control: public, max-age=27298406
expires: Sun, 10 Dec 2023 13:36:01 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.88.218.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.218.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: g4L5MZXQDahOxv67FoCtTQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ONJaKrQu5mfewfrt4EQc6kLapHQ=
hcm19.sapsf.com//public/theme-api/css/servicio02/*/ui/login/css/bizx/BizXLoginTheme.dcss
104.110.19.60302 Found 0 B URL HTTP/2 hcm19.sapsf.com//public/theme-api/css/servicio02/*/ui/login/css/bizx/BizXLoginTheme.dcss
IP 104.110.19.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET //public/theme-api/css/servicio02/*/ui/login/css/bizx/BizXLoginTheme.dcss HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
x-unique-id: 37bf472af2a80d4d336411d5fd38e621
x-event-id: EVENT-UNKNOWN-UNKNOWN-ob51abe0111-20230128144235-1235375
access-control-allow-origin: *
location: /public/ui-dcss/servicio02/_/3q!8e9884784b!!nXFfbr=!011VKLLTAT1BURYPLPTuires=3A301=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3D641.jpg!11uires=3A641=3Fmod=3Dff17c1f183657ce7e7acd4dba827f8ce=26name=3Dlogo=2520axo=252d05.png!0-1!PL3i!1QJPB1!!SD1zoq6YvnU14w82gDOI6MYfgDOIf1Uu1!!1S=PS-1!3g0011YLbOf3MY-1!-1!VvbVVvbVW=zEZ_vTTKHN8y8y7az!!1YLbOf3MYd667f3MYd667=vDV-1!f3MYd667tnlRViAF4Cg!YaI08EX!1l9rd-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!1cPcP-1!bPN8-1!-1!Yf3M__X=BHDm-1!1pCpCSL1f3MYd667-1!f3MY-1!d667lBpmd667!cPcP=vDVd667ViAF-1!ViAFSDSDSLSLf3MYVunBVvbVSD1WF-1!BURBPCPTuires=3A283=3Fmod=3Dd945bc577078b3b65a3f4c61b40f06d4=26name=3D642.jpg!172N!-1!AszSSL1x8=klBpmnbHCJJBn=IdAzdf_SpzbYJ99AXD6PcmESZJ6CaHXlBpmHXP2-1!oqpmQO0Mz8Oc1-1!0!8Xc!!!!1pCpC01Z_vTd667GWKHW=LHd667GWKH=vDVCH33QZfj0+0+1px+0!0113wQdBURBPLPTuires=3A461=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!NO0!SD1BUT1uires=3A621=3Fmod=3Da5b92a077702775e9e099ba5d0aeaca8=26name=3DSF=252d05.png!BC1j9_z-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!SL!1cPcPpCpC-1!0!a!AXvmx8=kQO0MUnIA9Tw!1BUuires=3A342=3Fmod=3Dc9464475a585e98f872924e9d4035432=26name=3D2firma=252dAxoGrowth=252dblanco.png!BUuires=3A441=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!1!!-1!-1!a6WQ!!1a6WQ2CXh!25iwW_n=1!1i9rgX!/ui/login/css/bizx/BizXLoginTheme.dcss;mod=8adcf867
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-correlation-id: 37bf472af2a80d4d336411d5fd38e621
x-itr-target-cluster: defaultCluster
x-itr-server: 460e6303b5d9c0a16f0c87ffe00ca4712f011a1e
date: Sat, 28 Jan 2023 14:42:36 GMT
set-cookie: route=69aca2b570e611e5750b82db834118f8586a0286; Path=/; Secure; HttpOnly; SameSite=None
BIGipServerp_hcm62.sapsf.com_80=!Gc7bzC9cgJrtiMivX20LAkHJ6tpx+LnXAc06lxVoDdtFIlYlh9IeKBb2cbbyu0u3RNvpSQ2ZEVHwgg==; path=/; Secure
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4637
Expires: Sat, 28 Jan 2023 15:59:54 GMT
Date: Sat, 28 Jan 2023 14:42:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4637
Expires: Sat, 28 Jan 2023 15:59:54 GMT
Date: Sat, 28 Jan 2023 14:42:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4637
Expires: Sat, 28 Jan 2023 15:59:54 GMT
Date: Sat, 28 Jan 2023 14:42:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 195316042e7f798eeeb7993fecb3a383
4aeca24ad4702f87feaf9674ea0c1ff6d71826a3
b7e0a61060455241fce844d2c91eca500d409804361063ddb61053cbc9c7b1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13376
x-amzn-requestid: 64d0092e-1f1a-4183-a4a6-805e0bf37d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-DvHIyoAMF6fA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b1-6387770232ddca74531bce91;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jqb6G21QeTDiI0HWT9Fd87D-HkAOiesyfN9vr7vMxrOUADBxV-_Fug==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:42 GMT
age: 60415
etag: "4aeca24ad4702f87feaf9674ea0c1ff6d71826a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2881cea3ae511d3dfd2f6b7cd598a4e
105d8d675aaafce5602e4015aee2d1659553d1b1
0993ef71c2af9e07ed09e0e2ba40a4d9fdd01444154c2f39f8fc48a4dfef1730
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10863
x-amzn-requestid: db873091-be76-4276-aa3e-f9bd44051508
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbAMbHCMoAMFsYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4471c-57f14d6a3ebcc8a1788bae80;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 00zN6NcdSHaq-4mWQeizXw9SDgUZJOFnB_6dTo6skjlytfBuz8ud3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 60315
etag: "105d8d675aaafce5602e4015aee2d1659553d1b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 59197
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 35sWCIsACAhQvXkJvBn0LGf2m9OTklgDprONw5CDUoXD97TUpJ9j5Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:35 GMT
age: 60422
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 60351
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:20:03 GMT
age: 33754
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hcm19.sapsf.com/public/ui-dcss/servicio02/_/3q!8e9884784b!!nXFfbr=!011VKLLTAT1BURYPLPTuires=3A301=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3D641.jpg!11uires=3A641=3Fmod=3Dff17c1f183657ce7e7acd4dba827f8ce=26name=3Dlogo=2520axo=252d05.png!0-1!PL3i!1QJPB1!!SD1zoq6YvnU14w82gDOI6MYfgDOIf1Uu1!!1S=PS-1!3g0011YLbOf3MY-1!-1!VvbVVvbVW=zEZ_vTTKHN8y8y7az!!1YLbOf3MYd667f3MYd667=vDV-1!f3MYd667tnlRViAF4Cg!YaI08EX!1l9rd-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!1cPcP-1!bPN8-1!-1!Yf3M__X=BHDm-1!1pCpCSL1f3MYd667-1!f3MY-1!d667lBpmd667!cPcP=vDVd667ViAF-1!ViAFSDSDSLSLf3MYVunBVvbVSD1WF-1!BURBPCPTuires=3A283=3Fmod=3Dd945bc577078b3b65a3f4c61b40f06d4=26name=3D642.jpg!172N!-1!AszSSL1x8=klBpmnbHCJJBn=IdAzdf_SpzbYJ99AXD6PcmESZJ6CaHXlBpmHXP2-1!oqpmQO0Mz8Oc1-1!0!8Xc!!!!1pCpC01Z_vTd667GWKHW=LHd667GWKH=vDVCH33QZfj0+0+1px+0!0113wQdBURBPLPTuires=3A461=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!NO0!SD1BUT1uires=3A621=3Fmod=3Da5b92a077702775e9e099ba5d0aeaca8=26name=3DSF=252d05.png!BC1j9_z-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!SL!1cPcPpCpC-1!0!a!AXvmx8=kQO0MUnIA9Tw!1BUuires=3A342=3Fmod=3Dc9464475a585e98f872924e9d4035432=26name=3D2firma=252dAxoGrowth=252dblanco.png!BUuires=3A441=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!1!!-1!-1!a6WQ!!1a6WQ2CXh!25iwW_n=1!1i9rgX!/ui/login/css/bizx/BizXLoginTheme.dcss;mod=8adcf867
104.110.19.60200 OK 914 B URL HTTP/2 hcm19.sapsf.com/public/ui-dcss/servicio02/_/3q!8e9884784b!!nXFfbr=!011VKLLTAT1BURYPLPTuires=3A301=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3D641.jpg!11uires=3A641=3Fmod=3Dff17c1f183657ce7e7acd4dba827f8ce=26name=3Dlogo=2520axo=252d05.png!0-1!PL3i!1QJPB1!!SD1zoq6YvnU14w82gDOI6MYfgDOIf1Uu1!!1S=PS-1!3g0011YLbOf3MY-1!-1!VvbVVvbVW=zEZ_vTTKHN8y8y7az!!1YLbOf3MYd667f3MYd667=vDV-1!f3MYd667tnlRViAF4Cg!YaI08EX!1l9rd-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!1cPcP-1!bPN8-1!-1!Yf3M__X=BHDm-1!1pCpCSL1f3MYd667-1!f3MY-1!d667lBpmd667!cPcP=vDVd667ViAF-1!ViAFSDSDSLSLf3MYVunBVvbVSD1WF-1!BURBPCPTuires=3A283=3Fmod=3Dd945bc577078b3b65a3f4c61b40f06d4=26name=3D642.jpg!172N!-1!AszSSL1x8=klBpmnbHCJJBn=IdAzdf_SpzbYJ99AXD6PcmESZJ6CaHXlBpmHXP2-1!oqpmQO0Mz8Oc1-1!0!8Xc!!!!1pCpC01Z_vTd667GWKHW=LHd667GWKH=vDVCH33QZfj0+0+1px+0!0113wQdBURBPLPTuires=3A461=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!NO0!SD1BUT1uires=3A621=3Fmod=3Da5b92a077702775e9e099ba5d0aeaca8=26name=3DSF=252d05.png!BC1j9_z-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!SL!1cPcPpCpC-1!0!a!AXvmx8=kQO0MUnIA9Tw!1BUuires=3A342=3Fmod=3Dc9464475a585e98f872924e9d4035432=26name=3D2firma=252dAxoGrowth=252dblanco.png!BUuires=3A441=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!1!!-1!-1!a6WQ!!1a6WQ2CXh!25iwW_n=1!1i9rgX!/ui/login/css/bizx/BizXLoginTheme.dcss;mod=8adcf867
IP 104.110.19.60:0
File type ASCII text, with very long lines (3706), with no line terminators
Hash 645cb40b6be63544b026178f6047d197
2eb9b3109a0ab53cc0eab84d211619af121f9b9a
c7cb2467ceb4140ddef44390e3402ba28b1e4cbddd63a05fdee80955492dc66b
GET /public/ui-dcss/servicio02/_/3q!8e9884784b!!nXFfbr=!011VKLLTAT1BURYPLPTuires=3A301=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3D641.jpg!11uires=3A641=3Fmod=3Dff17c1f183657ce7e7acd4dba827f8ce=26name=3Dlogo=2520axo=252d05.png!0-1!PL3i!1QJPB1!!SD1zoq6YvnU14w82gDOI6MYfgDOIf1Uu1!!1S=PS-1!3g0011YLbOf3MY-1!-1!VvbVVvbVW=zEZ_vTTKHN8y8y7az!!1YLbOf3MYd667f3MYd667=vDV-1!f3MYd667tnlRViAF4Cg!YaI08EX!1l9rd-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!1cPcP-1!bPN8-1!-1!Yf3M__X=BHDm-1!1pCpCSL1f3MYd667-1!f3MY-1!d667lBpmd667!cPcP=vDVd667ViAF-1!ViAFSDSDSLSLf3MYVunBVvbVSD1WF-1!BURBPCPTuires=3A283=3Fmod=3Dd945bc577078b3b65a3f4c61b40f06d4=26name=3D642.jpg!172N!-1!AszSSL1x8=klBpmnbHCJJBn=IdAzdf_SpzbYJ99AXD6PcmESZJ6CaHXlBpmHXP2-1!oqpmQO0Mz8Oc1-1!0!8Xc!!!!1pCpC01Z_vTd667GWKHW=LHd667GWKH=vDVCH33QZfj0+0+1px+0!0113wQdBURBPLPTuires=3A461=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!NO0!SD1BUT1uires=3A621=3Fmod=3Da5b92a077702775e9e099ba5d0aeaca8=26name=3DSF=252d05.png!BC1j9_z-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!SL!1cPcPpCpC-1!0!a!AXvmx8=kQO0MUnIA9Tw!1BUuires=3A342=3Fmod=3Dc9464475a585e98f872924e9d4035432=26name=3D2firma=252dAxoGrowth=252dblanco.png!BUuires=3A441=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!1!!-1!-1!a6WQ!!1a6WQ2CXh!25iwW_n=1!1i9rgX!/ui/login/css/bizx/BizXLoginTheme.dcss;mod=8adcf867 HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://13.57.132.227/
Connection: keep-alive
Cookie: route=69aca2b570e611e5750b82db834118f8586a0286
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
content-length: 914
x-unique-id: a9c63267bc9fdac979df07a6983a5bc0
x-event-id: EVENT-UNKNOWN-UNKNOWN-ob51abe0111-20230128144237-1235383
last-modified: Tue, 24 Jan 2023 08:26:32 GMT
etag: "8adcf867.gz"
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
x-request-stats: SQLT=0&CCON=0&FWR=0&NRE=0&CEXT=0&ST=1674916957130&EID=EVENT-UNKNOWN-UNKNOWN-ob51abe0111-20230128144237-1235383&CLOC=0&CREM=0&NWR=0&CPU=1&SVT=3&SQLC=0&SCPU=1&CSUP=0&MEM=690&UCPU=0&FRE=0
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-correlation-id: a9c63267bc9fdac979df07a6983a5bc0
x-itr-target-cluster: defaultCluster
x-itr-server: 460e6303b5d9c0a16f0c87ffe00ca4712f011a1e
cache-control: public, max-age=31536000
expires: Sun, 28 Jan 2024 14:42:37 GMT
date: Sat, 28 Jan 2023 14:42:37 GMT
set-cookie: BIGipServerp_hcm62.sapsf.com_80=!JBhrkFxwZE9B1savX20LAkHJ6tpx+CDEvPazaDJ9Be45P6bm6WTJzoUDGQGazwwb5Py0VeqkiO+C; path=/; Secure
X-Firefox-Spdy: h2
13.57.132.227/sap/ui/thirdparty/jquery-compat.js
13.57.132.227404 Not Found 275 B URL HTTP/1.1 13.57.132.227/sap/ui/thirdparty/jquery-compat.js
IP 13.57.132.227:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d5db30519c8d079e58a2fd81240e363
ccbf23c1b85711322c9021a1fd80caf82ce36803
e18bc620bb72c279ebff44f7c152affc9055b477ffd73a896b3603fb2c589e4a
Analyzer Verdict Alert quad9 Sinkholed
GET /sap/ui/thirdparty/jquery-compat.js HTTP/1.1
Host: 13.57.132.227
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
OPTR_CXT: 01000500011c78b2b5-5152-4c5d-842a-3ad52dd2a72f29820909-1501-babe-face-000000000003fe11a272-6382-4866-9e29-710e213d0b23HTTP ;
X-Subaction: 0
X-Event-ID: EVENT-PLT-LOGINPAGE-ob51abe0111-20230111014443-3829059
X-Ajax-Token: hDyH0%2fDclxTTeIz1%2bUSRWCFyDOcbLX4OM%2b9t1bk9zac%3d
Connection: keep-alive
Referer: http://13.57.132.227/axosap/login.php
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 14:42:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Content-Length: 275
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
hcm19.sapsf.com/ui/login/img/sf_logo_new_white_54bd215a5131b86dfb90fa1f29efb843.png
104.110.19.60200 OK 1.8 kB URL HTTP/2 hcm19.sapsf.com/ui/login/img/sf_logo_new_white_54bd215a5131b86dfb90fa1f29efb843.png
IP 104.110.19.60:0
File type PNG image data, 185 x 34, 8-bit gray+alpha, non-interlaced\012- data
Hash 54bd215a5131b86dfb90fa1f29efb843
f427198cb6876f1067b033bd43dff16e7daf4513
278872fed5083428efe13621da3eb82d5b093af40abaca2ab56d0f0891260c35
GET /ui/login/img/sf_logo_new_white_54bd215a5131b86dfb90fa1f29efb843.png HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hcm19.sapsf.com/public/ui-dcss/servicio02/_/3q!8e9884784b!!nXFfbr=!011VKLLTAT1BURYPLPTuires=3A301=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3D641.jpg!11uires=3A641=3Fmod=3Dff17c1f183657ce7e7acd4dba827f8ce=26name=3Dlogo=2520axo=252d05.png!0-1!PL3i!1QJPB1!!SD1zoq6YvnU14w82gDOI6MYfgDOIf1Uu1!!1S=PS-1!3g0011YLbOf3MY-1!-1!VvbVVvbVW=zEZ_vTTKHN8y8y7az!!1YLbOf3MYd667f3MYd667=vDV-1!f3MYd667tnlRViAF4Cg!YaI08EX!1l9rd-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!1cPcP-1!bPN8-1!-1!Yf3M__X=BHDm-1!1pCpCSL1f3MYd667-1!f3MY-1!d667lBpmd667!cPcP=vDVd667ViAF-1!ViAFSDSDSLSLf3MYVunBVvbVSD1WF-1!BURBPCPTuires=3A283=3Fmod=3Dd945bc577078b3b65a3f4c61b40f06d4=26name=3D642.jpg!172N!-1!AszSSL1x8=klBpmnbHCJJBn=IdAzdf_SpzbYJ99AXD6PcmESZJ6CaHXlBpmHXP2-1!oqpmQO0Mz8Oc1-1!0!8Xc!!!!1pCpC01Z_vTd667GWKHW=LHd667GWKH=vDVCH33QZfj0+0+1px+0!0113wQdBURBPLPTuires=3A461=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!NO0!SD1BUT1uires=3A621=3Fmod=3Da5b92a077702775e9e099ba5d0aeaca8=26name=3DSF=252d05.png!BC1j9_z-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!SL!1cPcPpCpC-1!0!a!AXvmx8=kQO0MUnIA9Tw!1BUuires=3A342=3Fmod=3Dc9464475a585e98f872924e9d4035432=26name=3D2firma=252dAxoGrowth=252dblanco.png!BUuires=3A441=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!1!!-1!-1!a6WQ!!1a6WQ2CXh!25iwW_n=1!1i9rgX!/ui/login/css/bizx/BizXLoginTheme.dcss;mod=8adcf867
Connection: keep-alive
Cookie: route=69aca2b570e611e5750b82db834118f8586a0286
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1808
last-modified: Sat, 24 Sep 2022 07:20:13 GMT
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
accept-ranges: bytes
cache-control: public, max-age=313707497
expires: Thu, 06 Jan 2033 11:40:54 GMT
date: Sat, 28 Jan 2023 14:42:37 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/sap_belize/fonts/72-Regular.woff2
104.110.19.60200 OK 24 kB URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/sap_belize/fonts/72-Regular.woff2
IP 104.110.19.60:0
File type Web Open Font Format (Version 2), TrueType, length 24396, version 0.0\012- data
Hash dec2ad1c7d5282f0c86709484f5e5150
f0f1ee0a8af52fe49d601fde8566fe231e32d684
bbf94fe843426328a22ce1b5eb7ba5a6673d699f2e3a4b228f75d7a601a354fe
GET /verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/sap_belize/fonts/72-Regular.woff2 HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://hcm19.sapsf.com/
Origin: http://13.57.132.227
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff2
last-modified: Tue, 09 Aug 2022 20:37:20 GMT
etag: "4cd7dc7"
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: a4d86fbe8dfd45c83cd71c8ed8b48913
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 24396
cache-control: public, max-age=27298354
expires: Sun, 10 Dec 2023 13:35:11 GMT
date: Sat, 28 Jan 2023 14:42:37 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/base/fonts/SAP-icons.woff2
104.110.19.60200 OK 111 kB URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/base/fonts/SAP-icons.woff2
IP 104.110.19.60:0
File type Web Open Font Format (Version 2), TrueType, length 110884, version 4.851\012- data
Size 111 kB (110884 bytes)
Hash f21be3eb561068999c057f559db1e8f2
fd60c3492691d33369164d1c41ba7a6b64b99209
41b195eb3c545f17c502bc5b809a68bda0eb73f004fe2e61cf33c90570e133ad
GET /verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/base/fonts/SAP-icons.woff2 HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://hcm19.sapsf.com/
Origin: http://13.57.132.227
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff2
last-modified: Tue, 09 Aug 2022 20:34:56 GMT
etag: "fb8b43ef"
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: 042e16bb5a0ec9ee77498b3d9158b1cc
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 110884
cache-control: public, max-age=27298454
expires: Sun, 10 Dec 2023 13:36:51 GMT
date: Sat, 28 Jan 2023 14:42:37 GMT
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0
104.17.25.14200 OK 64 kB URL HTTP/1.1 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Hash 4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
GET /ajax/libs/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://13.57.132.227
Connection: keep-alive
Referer: http://cdnjs.cloudflare.com/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:42:37 GMT
Content-Type: application/octet-stream; charset=utf-8
Content-Length: 64464
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
ETag: "5eb03e5f-fbd0"
Last-Modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: MISS
Expires: Thu, 18 Jan 2024 14:42:37 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ox%2F81BK57VQmDejnYiegH7r%2BhBxvJJayhhUnE%2FP4UV5hcGY8PgVVNshDMytSpHUwafzUDKLoX83b6eNbN1McPfthq6%2F3OwgUbkXD6z69lG8VugnqXdh21FxwhPMkChXCDjLBdmV2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 790a7ee8b863b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
13.57.132.227/perfLogServlet?callId=5668114323-0&eventId=EVENT-PLT-LOGINPAGE-ob51abe0111-20230111014443-3829059&moduleId=LOGIN&pageId=LOGIN&pageQualifier=BIZX_LOGIN&ST=1673401483571&STC=1674916957209&ETC=1674916960720&MEM=1152&NRE=0&NWR=0&SCPU=0&SQLC=0&SQLT=0&SVT=6&UCPU=6&CPU=6&FRE=0&FWR=0&CCON=0&CSUP=0&CLOC=0&CEXT=0&CREM=0&jsNum=25&cssNum=8&imgNum=1&reqNum=1&renderTime=2143&TOK=3F499D1C950A95CCFBC9&TTB=313&RSR=372&DIA=3320&RTT=307&CRT=305&SRT=2&VER=1
13.57.132.227404 Not Found 275 B URL HTTP/1.1 13.57.132.227/perfLogServlet?callId=5668114323-0&eventId=EVENT-PLT-LOGINPAGE-ob51abe0111-20230111014443-3829059&moduleId=LOGIN&pageId=LOGIN&pageQualifier=BIZX_LOGIN&ST=1673401483571&STC=1674916957209&ETC=1674916960720&MEM=1152&NRE=0&NWR=0&SCPU=0&SQLC=0&SQLT=0&SVT=6&UCPU=6&CPU=6&FRE=0&FWR=0&CCON=0&CSUP=0&CLOC=0&CEXT=0&CREM=0&jsNum=25&cssNum=8&imgNum=1&reqNum=1&renderTime=2143&TOK=3F499D1C950A95CCFBC9&TTB=313&RSR=372&DIA=3320&RTT=307&CRT=305&SRT=2&VER=1
IP 13.57.132.227:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d5db30519c8d079e58a2fd81240e363
ccbf23c1b85711322c9021a1fd80caf82ce36803
e18bc620bb72c279ebff44f7c152affc9055b477ffd73a896b3603fb2c589e4a
Analyzer Verdict Alert quad9 Sinkholed
POST /perfLogServlet?callId=5668114323-0&eventId=EVENT-PLT-LOGINPAGE-ob51abe0111-20230111014443-3829059&moduleId=LOGIN&pageId=LOGIN&pageQualifier=BIZX_LOGIN&ST=1673401483571&STC=1674916957209&ETC=1674916960720&MEM=1152&NRE=0&NWR=0&SCPU=0&SQLC=0&SQLT=0&SVT=6&UCPU=6&CPU=6&FRE=0&FWR=0&CCON=0&CSUP=0&CLOC=0&CEXT=0&CREM=0&jsNum=25&cssNum=8&imgNum=1&reqNum=1&renderTime=2143&TOK=3F499D1C950A95CCFBC9&TTB=313&RSR=372&DIA=3320&RTT=307&CRT=305&SRT=2&VER=1 HTTP/1.1
Host: 13.57.132.227
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Subaction: 0
X-Req-Hash: z-ct49mIBSL6_PDxreJl8H7exPGTzg1J1eL75eX1iwYnBh6cC-XK3FnM-79puJq5fNLaf7eVp6qVk5NBTJ8cP3Sra3WjjsZnV3lXOHBiQXNTV1FwM3pJerhzVHVNWIZ1PGxxoq
Content-Type: application/x-www-form-urlencoded
X-Event-ID: EVENT-PLT-LOGINPAGE-ob51abe0111-20230111014443-3829059
X-Ajax-Token: hDyH0%2fDclxTTeIz1%2bUSRWCFyDOcbLX4OM%2b9t1bk9zac%3d
X-SAP-Page-Info: moduleId=LOGIN&pageId=LOGIN&pageQualifier=BIZX_LOGIN
Content-Length: 76
Origin: http://13.57.132.227
Connection: keep-alive
Referer: http://13.57.132.227/axosap/login.php
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 14:42:37 GMT
Server: Apache/2.4.29 (Ubuntu)
Content-Length: 275
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
13.57.132.227/favicon.ico
13.57.132.227404 Not Found 275 B URL HTTP/1.1 13.57.132.227/favicon.ico
IP 13.57.132.227:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d5db30519c8d079e58a2fd81240e363
ccbf23c1b85711322c9021a1fd80caf82ce36803
e18bc620bb72c279ebff44f7c152affc9055b477ffd73a896b3603fb2c589e4a
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 13.57.132.227
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.57.132.227/axosap/login.php
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 14:42:38 GMT
Server: Apache/2.4.29 (Ubuntu)
Content-Length: 275
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
hcm19.sapsf.com/public/ui-resource/servicio02/461;mod=abb8e7b7f2ff3618fd72b7594fbe56cb
104.110.19.60200 OK 0 B URL HTTP/2 hcm19.sapsf.com/public/ui-resource/servicio02/461;mod=abb8e7b7f2ff3618fd72b7594fbe56cb
IP 104.110.19.60:0
GET /public/ui-resource/servicio02/461;mod=abb8e7b7f2ff3618fd72b7594fbe56cb HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hcm19.sapsf.com/public/ui-dcss/servicio02/_/3q!8e9884784b!!nXFfbr=!011VKLLTAT1BURYPLPTuires=3A301=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3D641.jpg!11uires=3A641=3Fmod=3Dff17c1f183657ce7e7acd4dba827f8ce=26name=3Dlogo=2520axo=252d05.png!0-1!PL3i!1QJPB1!!SD1zoq6YvnU14w82gDOI6MYfgDOIf1Uu1!!1S=PS-1!3g0011YLbOf3MY-1!-1!VvbVVvbVW=zEZ_vTTKHN8y8y7az!!1YLbOf3MYd667f3MYd667=vDV-1!f3MYd667tnlRViAF4Cg!YaI08EX!1l9rd-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!1cPcP-1!bPN8-1!-1!Yf3M__X=BHDm-1!1pCpCSL1f3MYd667-1!f3MY-1!d667lBpmd667!cPcP=vDVd667ViAF-1!ViAFSDSDSLSLf3MYVunBVvbVSD1WF-1!BURBPCPTuires=3A283=3Fmod=3Dd945bc577078b3b65a3f4c61b40f06d4=26name=3D642.jpg!172N!-1!AszSSL1x8=klBpmnbHCJJBn=IdAzdf_SpzbYJ99AXD6PcmESZJ6CaHXlBpmHXP2-1!oqpmQO0Mz8Oc1-1!0!8Xc!!!!1pCpC01Z_vTd667GWKHW=LHd667GWKH=vDVCH33QZfj0+0+1px+0!0113wQdBURBPLPTuires=3A461=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!NO0!SD1BUT1uires=3A621=3Fmod=3Da5b92a077702775e9e099ba5d0aeaca8=26name=3DSF=252d05.png!BC1j9_z-1!goH7goH7-1!goH7FIvzYLbODs7w0+0+1px+0!SL!1cPcPpCpC-1!0!a!AXvmx8=kQO0MUnIA9Tw!1BUuires=3A342=3Fmod=3Dc9464475a585e98f872924e9d4035432=26name=3D2firma=252dAxoGrowth=252dblanco.png!BUuires=3A441=3Fmod=3Dabb8e7b7f2ff3618fd72b7594fbe56cb=26name=3DFondo=255f1920x1080=2520=252d=2520Copy.jpg!1!!-1!-1!a6WQ!!1a6WQ2CXh!25iwW_n=1!1i9rgX!/ui/login/css/bizx/BizXLoginTheme.dcss;mod=8adcf867
Connection: keep-alive
Cookie: route=69aca2b570e611e5750b82db834118f8586a0286
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
x-unique-id: c50b1503647bc2fcd512f3aa2b3eb8bd
x-event-id: EVENT-UNKNOWN-UNKNOWN-ob51abe0111-20230128144238-1235388
last-modified: Tue, 16 Jul 2019 17:36:36 GMT
etag: "abb8e7b7f2ff3618fd72b7594fbe56cb"
x-request-stats: SQLT=0&CCON=0&FWR=0&NRE=0&CEXT=0&ST=1674916958280&EID=EVENT-UNKNOWN-UNKNOWN-ob51abe0111-20230128144238-1235388&CLOC=0&CREM=0&NWR=0&CPU=0&SVT=1&SQLC=0&SCPU=0&CSUP=0&MEM=90&UCPU=0&FRE=0
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-correlation-id: c50b1503647bc2fcd512f3aa2b3eb8bd
x-itr-target-cluster: defaultCluster
x-itr-server: 460e6303b5d9c0a16f0c87ffe00ca4712f011a1e
cache-control: public, max-age=31535981
expires: Sun, 28 Jan 2024 14:42:19 GMT
date: Sat, 28 Jan 2023 14:42:38 GMT
set-cookie: BIGipServerp_hcm62.sapsf.com_80=!ZbJndzMiPHak1Q+vX20LAkHJ6tpx+OO607Zg8+X9i8VNFsWjeRkqk0FOpxO2TGpHLa1vL7j3HHe/; path=/; Secure
X-Firefox-Spdy: h2
hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/sap_belize/library.css
104.110.19.60200 OK 0 B URL HTTP/2 hcm19.sapsf.com/verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/sap_belize/library.css
IP 104.110.19.60:0
GET /verp/vmod_v1/ui/sapui5-main/resources_1.102.6/resources/sap/ui/core/themes/sap_belize/library.css HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Tue, 09 Aug 2022 21:17:42 GMT
etag: "dba909b.gz"
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
x-correlation-id: e1f77372450ff27dadbba03114f00111
referrer-policy: strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
server: Successfactors
x-sf-cache: HIT
x-itr-target-cluster: verpCluster
x-itr-server: nil
content-length: 27004
cache-control: public, max-age=27298400
expires: Sun, 10 Dec 2023 13:35:55 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2
hcm19.sapsf.com/ui/juic/js/deprecatedY/js/autocomplete/autocomplete_8d3c8c7a8a70d15609771d1445ca33a8.js
104.110.19.60200 OK 0 B URL HTTP/2 hcm19.sapsf.com/ui/juic/js/deprecatedY/js/autocomplete/autocomplete_8d3c8c7a8a70d15609771d1445ca33a8.js
IP 104.110.19.60:0
GET /ui/juic/js/deprecatedY/js/autocomplete/autocomplete_8d3c8c7a8a70d15609771d1445ca33a8.js HTTP/1.1
Host: hcm19.sapsf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://13.57.132.227/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 10 Dec 2022 04:36:48 GMT
vary: Accept-Encoding
server: Successfactors
strict-transport-security: max-age=31536000; includeSubDomains
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
content-length: 13882
cache-control: public, max-age=311108570
expires: Tue, 07 Dec 2032 09:45:25 GMT
date: Sat, 28 Jan 2023 14:42:35 GMT
X-Firefox-Spdy: h2