invoicportwayjndjijeo.z13.web.core.windows.net/
20.209.41.14200 OK 29 kB URL User Request GET HTTP/1.1 invoicportwayjndjijeo.z13.web.core.windows.net/
IP 20.209.41.14:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerMicrosoft Corporation
Subject*.web.core.windows.net
Fingerprint5B:A2:0C:D7:62:F7:FE:0D:CF:F6:9E:A8:A2:43:41:4E:38:7B:2E:B7
ValidityTue, 09 May 2023 16:42:18 GMT - Fri, 03 May 2024 16:42:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6157)
Hash c5cb26c971cde258a6215f5d894d30cf
ad665fe4f054d52aaa81450bf6279351c2096a34
49b84fcd55463e8e90a537e96ee0360ac2810e033b0fdebdb418fa41b48fa0af
Analyzer Verdict Alert urlquery phishing Phishing - Generic phishing
openphish Office365
GET / HTTP/1.1
Host: invoicportwayjndjijeo.z13.web.core.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 29289
Content-Type: text/html
Content-MD5: xcsmyXHN4limIV9diU0wzw==
Last-Modified: Tue, 07 Feb 2023 18:28:33 GMT
Accept-Ranges: bytes
ETag: "0x8DB09391ED59F04"
Server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5834919e-f01e-0064-3c0a-9678b4000000
x-ms-version: 2018-03-28
Date: Sat, 03 Jun 2023 10:59:47 GMT
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
104.17.25.14200 OK 6.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP 104.17.25.14:443
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (19015)
Hash 70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://invoicportwayjndjijeo.z13.web.core.windows.net
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 Jun 2023 10:59:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3169883
expires: Thu, 23 May 2024 10:59:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v%2FwknrBm8G9UXnuf0CxGrReZ%2FzoPAQ8PFxdZhFcq5yN9QjYpRLrK5y9MvW2YwP09tFkatFcyCrCbvTikmBUNc2HC8bitLUdI4UE2yCkghDv5oFnTqm0MH6Q9qVtay0UcM9xOEpZi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d176dc01c89b50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.2.1.slim.min.js
69.16.175.42200 OK 24 kB URL GET HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP 69.16.175.42:443
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32012)
Hash 5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://invoicportwayjndjijeo.z13.web.core.windows.net
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 Jun 2023 10:59:47 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Aug 2022 13:47:02 GMT
accept-ranges: bytes
server: nginx
etag: W/"62f659d6-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685789987.dop228.sk1.t,1685789987.cds251.sk1.hn,1685789987.cds235.sk1.c
X-Firefox-Spdy: h2
invoicportwayjndjijeo.z13.web.core.windows.net/Sharing%20Link%20Validation_files/spoguestaccess-f3cad398.js
20.209.41.14404 The requested content does not exist. 321 B URL GET HTTP/1.1 invoicportwayjndjijeo.z13.web.core.windows.net/Sharing%20Link%20Validation_files/spoguestaccess-f3cad398.js
IP 20.209.41.14:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerMicrosoft Corporation
Subject*.web.core.windows.net
Fingerprint5B:A2:0C:D7:62:F7:FE:0D:CF:F6:9E:A8:A2:43:41:4E:38:7B:2E:B7
ValidityTue, 09 May 2023 16:42:18 GMT - Fri, 03 May 2024 16:42:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (321), with no line terminators
Hash c4c46aec9a36ac4e84def925c2af1f2f
ed6a5df38e2c73da6c3193447a434f1a1d330ca8
04b8ae7401c62267ad347362fa02a2489b50257360cf6c9fb8bb3c3ff0c315e9
Analyzer Verdict Alert openphish Office365
GET /Sharing%20Link%20Validation_files/spoguestaccess-f3cad398.js HTTP/1.1
Host: invoicportwayjndjijeo.z13.web.core.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 The requested content does not exist.
Content-Length: 321
Content-Type: text/html
Server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-ms-error-code: WebContentNotFound
x-ms-request-id: 58349248-f01e-0064-4e0a-9678b4000000
x-ms-version: 2018-03-28
Date: Sat, 03 Jun 2023 10:59:47 GMT
cdn.jsdelivr.net/npm/jquery.session@1.0.0/jquery.session.min.js
151.101.193.229200 OK 983 B URL GET HTTP/2 cdn.jsdelivr.net/npm/jquery.session@1.0.0/jquery.session.min.js
IP 151.101.193.229:443
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (1993)
Hash c0ac9c9487d60de96dc68dbb25bd8dd6
99419b0be4b85422ff84870e54dbd8a52dc6dab1
76ad6584ac5bdd459939dc7532fae7c2bdd8e22d773ff16d2306f42a1ffc569c
GET /npm/jquery.session@1.0.0/jquery.session.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.0.0
x-jsd-version-type: version
etag: W/"91d-mUGbC+S4VCL/hIcOVNvYpS3G2rE"
content-encoding: br
accept-ranges: bytes
date: Sat, 03 Jun 2023 10:59:47 GMT
age: 2192037
x-served-by: cache-fra-eddf8230025-FRA, cache-bma1675-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 983
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0affd42f3b881bc89a46594868663e52
03ca33c099bbc747c00360101c6ca6e21810aa07
1a1eb9e073803bd3864fdc023b727bcdd97df9074a2b8a657769da4a8b858d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Jun 2023 10:59:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
invoicportwayjndjijeo.z13.web.core.windows.net/Sharing%20Link%20Validation_files/microsoft-logo.png
20.209.41.14404 The requested content does not exist. 321 B URL GET HTTP/1.1 invoicportwayjndjijeo.z13.web.core.windows.net/Sharing%20Link%20Validation_files/microsoft-logo.png
IP 20.209.41.14:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerMicrosoft Corporation
Subject*.web.core.windows.net
Fingerprint5B:A2:0C:D7:62:F7:FE:0D:CF:F6:9E:A8:A2:43:41:4E:38:7B:2E:B7
ValidityTue, 09 May 2023 16:42:18 GMT - Fri, 03 May 2024 16:42:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (321), with no line terminators
Hash d48888f1ba67f868fdd6987b889c88dc
8abe0281020a4bea5daf8117afae85294b080eaa
389917961ea1284dc89275d1273cdfc6760fb72c5eb8a99cf3f1e84141351b7a
Analyzer Verdict Alert openphish Office365
GET /Sharing%20Link%20Validation_files/microsoft-logo.png HTTP/1.1
Host: invoicportwayjndjijeo.z13.web.core.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 The requested content does not exist.
Content-Length: 321
Content-Type: text/html
Server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
x-ms-error-code: WebContentNotFound
x-ms-request-id: 5834927e-f01e-0064-790a-9678b4000000
x-ms-version: 2018-03-28
Date: Sat, 03 Jun 2023 10:59:47 GMT
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
172.217.21.170200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 172.217.21.170:443
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 12:31:43 GMT
expires: Fri, 31 May 2024 12:31:43 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 167285
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226 1.5 kB URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash 0a6c15e48f3ff1702d2f7f98d537a5ff
abe17ef625b219c3b696ee47077fdc92a6c360d2
1ce2fe802950637369b3e23e95e0df69383f32b01022358ccfc13c2c7c651935
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Jun 2023 10:59:48 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "8B1AC3388CEF6E6587C2333C58ED06F109D331CD"
Expires: Sat, 03 Jun 2023 21:00:00 GMT
Last-Modified: Sat, 03 Jun 2023 09:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2971
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d176dc19841b4f1-OSL
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0affd42f3b881bc89a46594868663e52
03ca33c099bbc747c00360101c6ca6e21810aa07
1a1eb9e073803bd3864fdc023b727bcdd97df9074a2b8a657769da4a8b858d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Jun 2023 10:59:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4657e1301201c546b03bf8a42be0e1a4
561ed76fd2c38e8107da101d54546e44b219e539
b7c25875352ba1d913c952fc778770209c663f8b7bb3a33b40532b1910938c73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Jun 2023 10:59:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQ7D-vlsw3eK_Rxnt8URudo4R5IAubNG7w0NA&usqp=CAU
142.250.74.174200 OK 2.5 kB URL GET HTTP/2 encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQ7D-vlsw3eK_Rxnt8URudo4R5IAubNG7w0NA&usqp=CAU
IP 142.250.74.174:443
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data
Hash 3f579efdbdb3c487f78849d59c08e8e9
6707549c7b1f2bf51382708b912e8a60c754a424
a66577109ee2bc62376dca4968dc33d9c74312a3441cec2136930b26c9b09b71
GET /images?q=tbn:ANd9GcQ7D-vlsw3eK_Rxnt8URudo4R5IAubNG7w0NA&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 2501
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 12:43:25 GMT
expires: Sat, 01 Jun 2024 12:43:25 GMT
cache-control: public, max-age=31536000
age: 80183
last-modified: Mon, 30 Sep 2019 03:10:35 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4657e1301201c546b03bf8a42be0e1a4
561ed76fd2c38e8107da101d54546e44b219e539
b7c25875352ba1d913c952fc778770209c663f8b7bb3a33b40532b1910938c73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Jun 2023 10:59:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
superyachtstbarth.sharepoint.com/_layouts/15/images/microsoft-logo.png
13.107.138.8200 OK 3.3 kB URL GET HTTP/2 superyachtstbarth.sharepoint.com/_layouts/15/images/microsoft-logo.png
IP 13.107.138.8:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerDigiCert Inc
Subject*.sharepoint.com
FingerprintFF:6C:A7:8A:C5:1C:05:82:B7:7F:4B:52:12:7A:46:6A:1C:F9:F3:22
ValidityTue, 29 Nov 2022 00:00:00 GMT - Tue, 28 Nov 2023 23:59:59 GMT
File type PNG image data, 226 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef884bdedef280df97a4c5604058d8db
6f04244b51ad2409659e267d308b97e09ce9062b
825de044d5ac6442a094ff95099f9f67e9249a8110a2fbd57128285776632adb
GET /_layouts/15/images/microsoft-logo.png HTTP/1.1
Host: superyachtstbarth.sharepoint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=31536000
content-length: 3331
content-type: image/png
last-modified: Mon, 29 May 2023 03:15:44 GMT
accept-ranges: bytes
etag: "030dedadb91d91:0"
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
sprequestduration: 4
spiislatency: 1
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.23717
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 1A74DDA21FA04ADABB5E6FE4AFF0961A Ref B: OSL30EDGE0506 Ref C: 2023-06-03T10:59:48Z
date: Sat, 03 Jun 2023 10:59:48 GMT
X-Firefox-Spdy: h2
superyachtstbarth.sharepoint.com/_layouts/15/images/favicon.ico?rev=47
13.107.138.8 1.2 kB URL GET superyachtstbarth.sharepoint.com/_layouts/15/images/favicon.ico?rev=47
IP 13.107.138.8:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerDigiCert Inc
Subject*.sharepoint.com
FingerprintFF:6C:A7:8A:C5:1C:05:82:B7:7F:4B:52:12:7A:46:6A:1C:F9:F3:22
ValidityTue, 29 Nov 2022 00:00:00 GMT - Tue, 28 Nov 2023 23:59:59 GMT
File type MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Hash 0b60f3c9e4da6e807e808da7360f24f2
9afc7abb910de855efb426206e547574a1e074b7
addeedeeef393b6b1be5bbb099b656dcd797334ff972c495ccb09cfcb1a78341
GET /_layouts/15/images/favicon.ico?rev=47 HTTP/1.1
Host: superyachtstbarth.sharepoint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=31536000
content-length: 1203
content-type: image/x-icon
content-encoding: gzip
last-modified: Mon, 29 May 2023 03:16:07 GMT
accept-ranges: bytes
etag: "80b593e8db91d91:0"
vary: Accept-Encoding
p3p: CP="ALL IND DSP COR ADM CONo CUR CUSo IVAo IVDo PSA PSD TAI TELo OUR SAMo CNT COM INT NAV ONL PHY PRE PUR UNI"
sprequestduration: 5
spiislatency: 0
x-powered-by: ASP.NET
microsoftsharepointteamservices: 16.0.0.23717
x-content-type-options: nosniff
x-ms-invokeapp: 1; RequireReadOnly
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8A3173ED027848E6AE2AECD82B7C59A3 Ref B: OSL30EDGE0506 Ref C: 2023-06-03T10:59:48Z
date: Sat, 03 Jun 2023 10:59:48 GMT
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
104.18.10.207200 OK 49 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP 104.18.10.207:443
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (48664)
Hash 14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://invoicportwayjndjijeo.z13.web.core.windows.net
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 Jun 2023 10:59:47 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 11/25/2022 23:23:38
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 8915be31480bba606b55fe6c8f513831
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d176dc04949b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
104.18.11.207200 OK 51 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP 104.18.11.207:443
Requested by https://invoicportwayjndjijeo.z13.web.core.windows.net/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://invoicportwayjndjijeo.z13.web.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 03 Jun 2023 10:59:47 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 28833835
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d176dc06994b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2