Report - uber-dot-yamm-track.appspot.com/2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu

Report Overview

Submitted URL
uber-dot-yamm-track.appspot.com/2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu
IP
74.125.205.153
ASN
#15169 GOOGLE
Submitted
2022-09-27 18:14:54
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
a745050198.cdn.optimizely.com	159502	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	493 B	1.6 kB	104.110.8.48
www.uber-assets.com	131192	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	3.4 kB	151.101.86.104
logx.optimizely.com	1233	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	437 B	355 B	54.146.116.55
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.7 kB	93.184.220.29
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	358 B	28 kB	157.240.200.14
www.uber.com	48992	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	454 B	41 kB	34.98.127.226
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
d3i4yxtzktqr9n.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.2 kB	353 kB	54.230.245.141
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	662 B	1.4 kB	142.250.74.3
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.214.236.46
d1a3f4spazzrp4.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	124 kB	143.204.42.20
tags.tiqcdn.com	969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	776 B	729 B	23.38.200.249
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.8 kB	54.230.245.110
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.77.32
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
errors.client.optimizely.com	7604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	897 B	751 B	54.224.104.226
d1nyezh1ys8wfo.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	456 B	590 B	54.230.245.214
uber-dot-yamm-track.appspot.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	993 B	74.125.205.153
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-27	medium	uber-dot-yamm-track.appspot.com/2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu	Phishing
2022-09-27	medium	uber-dot-yamm-track.appspot.com/2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (24)

	URL	Size	First Seen	Last Seen
	www.uber.com/us/en/u/marriott-bonvoy/	219 B	2023-03-08	2023-03-08
Pretty URL www.uber.com/us/en/u/marriott-bonvoy/ IP 34.98.127.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash eaeadaff8cdd24b321c9f97a7b83580c 9667ee9d931a1a8a8a530e7e8819c23248404477 14662efaf0c1785344f5ede3263b64e4bc9bc959d348c8c8dfc0f263cc8f5667 Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-751-1cfc3eade9a0b313.js	11 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-751-1cfc3eade9a0b313.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash af266df1aed55520a2d9d3782a608c90 32e88ab26408919f4818ff22df04b3cc3fe6584f 1bcfbaaac2f89b51d5c1c129978a233769cf85f5ffb31e9e28319aa7a7a97aaa Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-runtime-44c5837f63dad2f5.js	6.9 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-runtime-44c5837f63dad2f5.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash f9271b340125f66f91fb9dd334d33c9e f3a4a7ffc6fab4248286e26d22454c6d6f620896 c813d42a2d33f671dbf95ceaf309e1f98a74f627c5f35540cf02d5476b2cfc3e Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-8644-f25c6770faaa912a.js	10 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-8644-f25c6770faaa912a.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 9a39e669d019b8672985cc6da1a640c7 f139eccecfa1d4275e82c3ab247d433d15a2392a 68bc8769a7d19c8f1a0f294e32f843725e2fd0ade160f260ea9e22c1018cd3a6 Loading...

	www.uber.com/us/en/u/marriott-bonvoy/	58 B	2023-03-08	2024-02-10
Pretty URL www.uber.com/us/en/u/marriott-bonvoy/ IP 34.98.127.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2024-02-10 01:24:22 Times Seen30 Hash 9c1939296e9b8389f79fc2cc5450febc 3603fd611a1c2d9874ad6f4df6d5fc69a93346ce 1d37bc02f4d2b8de87325c7aec348c92adb5a2607313d2345568e8723375db74 Loading...

	tags.tiqcdn.com/utag/uber/main/prod/utag.js	232 kB	2023-03-08	2023-03-08
Pretty URL tags.tiqcdn.com/utag/uber/main/prod/utag.js IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 56afbab445d02e0e496401c6939a3b44 f820721c3f1d5b394e7c2222a853f0d127fbeece 4eb4b3d2b79ec765e7865aa273d78cbb7f439160b14458d087c5f6c111655a9d Loading...

	cdn.optimizely.com/js/17830690076.js	285 kB	2023-03-08	2023-03-26
Pretty URL cdn.optimizely.com/js/17830690076.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-26 01:05:05 Times Seen2 Hash fe17d89e913b3d410af7de8432502f28 4f33b75edf1b010bbd74df5ec850640d1c917899 c874497442a888964cc79d8488f2614f97e163ecd557e823b94f3977d365fa7e Loading...

	connect.facebook.net/en_US/fbevents.js	103 kB	2023-03-08	2023-11-10
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.200.14 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:45:46 Last Seen2023-11-10 23:06:10 Times Seen10 Hash d78a7caef2779bec7d3e91de3eb77eeb 5af31c112f3bcd8f2866d4bf89e8455438b1e382 00a92494627ed8f758972b7dc47b3af186497c0637ea867a33fdb604c1548674 Loading...

	www.uber.com/us/en/u/marriott-bonvoy/	1.2 kB	2023-03-07	2024-04-12
Pretty URL www.uber.com/us/en/u/marriott-bonvoy/ IP 34.98.127.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24:30 Last Seen2024-04-12 08:30:48 Times Seen54 Hash d3602527992d9de7e9fce30b2fbf8000 8732b638156497f6b4ff22e569235ee25fe4f30a 41ffd271b541c15f25bc75e6c43d5ffb1b85bf07af9b0e2bd24a86752d4d4803 Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6053-440338ed65b92048.js	3.4 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6053-440338ed65b92048.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 8f29803dd247cdb5bfffba172f9f0bb5 4f512bd52a2beb4dc10cfb06b2659a1c7689d33a dc0cb6c93a28ad69f65c7c7db152075d3014ecf503be4dd9dd782a498dfe8fbf Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-898-98a4dd1ac3297b99.js	11 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-898-98a4dd1ac3297b99.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 0c1f62a4fdf3bf4d0378ed5d0068838b 6476673b062ae3e7a9ab8c879ae8c7ed58d79356 29f6abdc55e0d7bbb983df79a6519f7dc34eb143b3196d50c41f777e8df0e846 Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6556-dd27995d1833991d.js	30 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6556-dd27995d1833991d.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 669ec255f3c7ca31f1fe4c2039a310ec 123238ace57666a16c561a769f41f40965835639 1eae58e9b0278228f4f51a6ee7d3c760039b8c836922a28678bcccfda6310214 Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6023-48d79fa14c843b2a.js	19 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6023-48d79fa14c843b2a.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash e3bbeb23969c59cf09ce22d0dae44415 8ec686e96841b197c636fa3adcfe6569e4ef08b0 ea624cd2c9a7d984bd8576dd1836586aaf87cced17b83c437267e228b1ff6ccc Loading...

	www.uber.com/us/en/u/marriott-bonvoy/	1.0 kB	2023-03-08	2024-01-24
Pretty URL www.uber.com/us/en/u/marriott-bonvoy/ IP 34.98.127.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2024-01-24 17:30:13 Times Seen14 Hash 1f3b7bc7dc594819ae1f0c6011c96206 9d8d93fb305f2cf1e1ca1f67584c169d3d8c8d3d 1e3a7de499b58ee0ee43c3668557b0245a00adaf2281854e9d5ba812e6d94b7f Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-5381-f64f7a283dd137a1.js	4.9 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-5381-f64f7a283dd137a1.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash fdacea6efa5d0eb02c6db515728b8530 9760bd90b4feca31dd50dc913716487ca6de60fa 40313052f42ca60ced70ce01547956b67a5440a3680cac3d9a7024433a463866 Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-8911-589c7832a45550cc.js	15 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-8911-589c7832a45550cc.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 0915b6009c1071fe3f73861b8c7c0b40 9439517f0da9a7f836087e31292430f32c9930fd 3822e4305b7133862ac776dd71902b0a0342686b826c52d691af57117c3c4121 Loading...

	a745050198.cdn.optimizely.com/client_storage/a745050198.html	1.5 kB	2023-03-08	2023-04-05
Pretty URL a745050198.cdn.optimizely.com/client_storage/a745050198.html IP 104.110.8.48 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-04-05 02:04:16 Times Seen5 Hash 7902066cc70db5d9fd979c81b9470e1f 24bd100c6a3440e78e4fd480b613f9ef9289953c 712846689c8db594cd223b043ce5117238e27a28bf65b55b6da72503b84d5cb6 Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-7227-3fa3684d697a4b91.js	24 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-7227-3fa3684d697a4b91.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 56b34141bbab50bc3e2b8a360585f4fa b8f9132757d4994b3fefa3f2a43976d8b39df78f a4c2c0d18408c35b8de8b7a1ef8e2edef88b7eb7c728d465ffa6f082ee2e4435 Loading...

	tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=uber/main/202209201553&cb=1664302484094	2 B	2023-03-07	2024-04-19
Pretty URL tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=uber/main/202209201553&cb=1664302484094 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-19 12:39:36 Times Seen21526 Hash 7bc0ee636b3b83484fc3b9348863bd22 ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610 a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb Loading...

	www.uber.com/us/en/u/marriott-bonvoy/	900 B	2023-03-08	2023-03-14
Pretty URL www.uber.com/us/en/u/marriott-bonvoy/ IP 34.98.127.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-14 01:36:32 Times Seen1 Hash 7db4b4ff0b25a49d46fb694ef4d0fd67 6e87acb2a0a7e3dba2059eea6587a734e45febb6 0fa00fef8919620028a062cd0e63ae689ed2f6f238a7adef6cf530bb44c1f308 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 15:07:32 Times Seen36960934 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-1216-4aaed3bc2700e150.js	15 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-1216-4aaed3bc2700e150.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash e904c57d8d8384ad385159b6a52451d4 816dd56165324171ca330bffbd7c478b3c0ae396 a21ee9e21b1cd554502a15955b38118b3eeba776136373f0c7e6d4c0647300f8 Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-7364-fed75bc85385a610.js	15 kB	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-7364-fed75bc85385a610.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 2ae72ac0514521965e2a4ffcefeca1a8 eb8834f63462dae7337b19abad903c1a0ecb8ada 67f9fa2fd7d21cdb0aacc49fefc6288f208b795db5481d5d826283636112197b Loading...

	d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-9940-19e23af790dc03a0.js	202 B	2023-03-08	2023-03-08
Pretty URL d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-9940-19e23af790dc03a0.js IP 54.230.245.141 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:38:09 Last Seen2023-03-08 02:38:09 Times Seen1 Hash 2a977cf1ad6e2f138b55d697f8570795 7c069cbdc26b0753b68f7d3fc1a523065e85796a f2324e49118c1f3565ac8866133d39853980356597562a0a6aa5bc203e0c4a78 Loading...

HTTP Transactions (62)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 17:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: G6JCj_GHJ5bD-WJO3QYfnOt1EiP3-NFIU-iP74kJ5gmsYx1GJ1Xs5w==
Age: 3553

uber-dot-yamm-track.appspot.com/2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu

74.125.205.153

302 Found

0 B

URL HTTP/1.1
uber-dot-yamm-track.appspot.com/2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu
IP
74.125.205.153:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu HTTP/1.1
Host: uber-dot-yamm-track.appspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Location: https://uber-dot-yamm-track.appspot.com/2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu
X-Cloud-Trace-Context: 90041d2bc612a28ff9b0fde4eb342573
Date: Tue, 27 Sep 2022 18:14:43 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7179
Expires: Tue, 27 Sep 2022 20:14:23 GMT
Date: Tue, 27 Sep 2022 18:14:44 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bopjLotNFCss7aLKp_vIc2isK103n2i-kf51eobDCFkv8k98AIK6oA==
age: 31831
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c08c60873e09f2c55b5d5a2082063200
ea1e5699402b513dd692dc0610d27853a9335106
ce44dd9dfdea8d872dca29f1876ccac2514ac2f44b46e142e036734b5c733ed7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 18:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 18:14:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

74.125.205.153

302 Found

0 B

URL HTTP/2
uber-dot-yamm-track.appspot.com/2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu
IP
74.125.205.153:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2Lem1B_IGS0i2_CI_fO-CDo-Gv0r3Rn3AAjH1XLdaPQTHXyWAgwE7OJIXpe_Swag3-RoYPbqLXy8RzIvyvdNLVr1qpr4DRQ2YbSRxzspewS0FL6LLTvq9a2ct3a8Zw4DKjOfw9tL1mbtwwzSWZNp6YMUSB6RD1uRYAdTwr7LDeekvPqZu9codQZnnsy-IPpHu HTTP/1.1
Host: uber-dot-yamm-track.appspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
set-cookie: JSESSIONID=r2MTQi1P51p5pteip8-f3w;Path=/;Secure
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-robots-tag: noindex, nofollow
location: https://www.uber.com/us/en/u/marriott-bonvoy/
x-cloud-trace-context: bf2d5a20ec7bbeb0d22a197c19e78f1e
date: Tue, 27 Sep 2022 18:14:44 GMT
content-type: text/html
server: Google Frontend
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c08c60873e09f2c55b5d5a2082063200
ea1e5699402b513dd692dc0610d27853a9335106
ce44dd9dfdea8d872dca29f1876ccac2514ac2f44b46e142e036734b5c733ed7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 18:14:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
13591fc7598104f956b8de1f7a718f38
554ddd216e62475079cf1febc7708d3480c6e703
f2d47f1d7bf18ba85d703214720c63fc67659344b8afd936c5c80c01286d1ce2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3636
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 18:14:44 GMT
Last-Modified: Tue, 27 Sep 2022 17:14:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 18:10:46 GMT
Expires: Tue, 27 Sep 2022 19:04:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: j7L_0DwDXO7LNmZQ2dXit6E_cfAVeYU-W-wsjF2YdoUZROSl-C8nnw==
Age: 238

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6233
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 18:14:44 GMT
Last-Modified: Tue, 27 Sep 2022 16:30:52 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.214.236.46

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.236.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cudwunG5zjDeCL7fqx7cYw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: weudg/GRZWKaH8T1N60tzHuWuzg=

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
13591fc7598104f956b8de1f7a718f38
554ddd216e62475079cf1febc7708d3480c6e703
f2d47f1d7bf18ba85d703214720c63fc67659344b8afd936c5c80c01286d1ce2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3637
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 18:14:45 GMT
Last-Modified: Tue, 27 Sep 2022 17:14:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-main-53cbea4cb45d55b5.js

54.230.245.141

200 OK

77 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-main-53cbea4cb45d55b5.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
77 kB (77078 bytes)
Hash
c7baa10c79d92ce26df5138752ee580e
0b14379d3d594c8bd28fefe339e949f468d7b11a
b633b608d158051b87cf50a009896d99564d475d1bf4899ef0bd2af6393bd483

HTTP Headers

GET /uber-sites/client-main-53cbea4cb45d55b5.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 77078
date: Tue, 20 Sep 2022 00:16:58 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
etag: "c7baa10c79d92ce26df5138752ee580e"
last-modified: Mon, 19 Sep 2022 22:37:37 GMT
rpc-service: terrablob-gateway-tier3
x-envoy-upstream-service-time: 194
x-frame-options: SAMEORIGIN
x-tb-source: terrablob
x-uber-app: terrablob-gateway-tier3
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca4:w:72
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m_cIssX1QmiZhIq3dnwcKLkVX0ipfijslVmbHKurdQN8EayizBtccw==
age: 669467
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-1216-4aaed3bc2700e150.js

54.230.245.141

200 OK

4.3 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-1216-4aaed3bc2700e150.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (14767), with no line terminators
Size
4.3 kB (4320 bytes)
Hash
f135fb28ffe905043f55eab8c1412a44
39a64259bdc27444108d028a3b32a8d4f5e69c3d
a5e22a06e5775c441f783db41afd8005d8f7cba3f85d176e4890436ccd16dad3

HTTP Headers

GET /uber-sites/client-1216-4aaed3bc2700e150.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 4320
date: Fri, 23 Sep 2022 15:44:14 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca4:w:129
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 7
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DBkwfwVxtql_go0uVXiI_B5FQMElsXSSgciLBOPxIRzflz22LwNsiQ==
age: 354631
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6053-440338ed65b92048.js

54.230.245.141

200 OK

995 B

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6053-440338ed65b92048.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (3443), with no line terminators
Size
995 B (995 bytes)
Hash
c64279a499c1c8b22fb57fe1c102e000
2cd27498f005b372d2007105ddbf5d36f616ff4a
9adc0205baab0b9c2ad477c9379046c3fdbd9d43aa867b2ee2adf7d4a7be0a3c

HTTP Headers

GET /uber-sites/client-6053-440338ed65b92048.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 995
date: Fri, 23 Sep 2022 15:44:14 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca8:w:83
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 7
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p9YYOKkJoa-TnhsuMujkcE5p8k2allayTM9UZJ7TvAj_ul5dhDosZQ==
age: 354631
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-751-1cfc3eade9a0b313.js

54.230.245.141

200 OK

2.7 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-751-1cfc3eade9a0b313.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (10612), with no line terminators
Size
2.7 kB (2738 bytes)
Hash
094c7c2722557b973af7eacec0a8a1df
6dbfcb5f90c4ca5858b3838e816269962b2e6514
943d55fac721819fb8a8d858372c8d87436d964c7555143e84bd7ebf83de3f2a

HTTP Headers

GET /uber-sites/client-751-1cfc3eade9a0b313.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 2738
date: Fri, 23 Sep 2022 15:52:49 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca8:w:98
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 8
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MhHiWEV3rygYV9IR9HP49Z-6D92TfKhS3gE0p0tnFafjIyVCXpOa-g==
age: 354116
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-7364-fed75bc85385a610.js

54.230.245.141

200 OK

4.2 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-7364-fed75bc85385a610.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (15321), with no line terminators
Size
4.2 kB (4203 bytes)
Hash
a52b59c1d0b8579668bfa5e0eb759e20
8dd2bbea8a608f6770668eac586fc0021656e7b3
a717ab9d5f8dc160e0c1768e2bfc9b9ad78bde34c3fc463f20fd5b8d63c9c4b1

HTTP Headers

GET /uber-sites/client-7364-fed75bc85385a610.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 4203
date: Wed, 21 Sep 2022 00:25:26 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca4:w:32
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 10
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UpZ87ozGrR3ZbgVSO-R0cw4mPqCWkVT0Ec6UC0MeJnqGBQDYW3oo4g==
age: 582559
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-5381-f64f7a283dd137a1.js

54.230.245.141

200 OK

1.3 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-5381-f64f7a283dd137a1.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (4936), with no line terminators
Size
1.3 kB (1281 bytes)
Hash
2ed5f1d67a084460479a3544229a9f15
ce710508243f69fbb613463d7e423899a30ac4f1
7ea75324aeef30a2a7504752aac7398bd05d912320db9b7083866246b0d5061b

HTTP Headers

GET /uber-sites/client-5381-f64f7a283dd137a1.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 1281
date: Fri, 23 Sep 2022 15:44:14 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca11:w:121
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 262
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CTz9fpAxkEwZNhhiqon29r8_VO61xF5TBjntlDKhPm5RuvP0rs1QcQ==
age: 354631
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6556-dd27995d1833991d.js

54.230.245.141

200 OK

8.5 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6556-dd27995d1833991d.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (30162), with no line terminators
Size
8.5 kB (8481 bytes)
Hash
add88c6fc784062d4b89121dc923e9dd
b1f75e7cc176c803243298480cc1da8d04a29381
32ab8b7a981c35319fbdd45e4a6a820e3f533021dd794d9b066a848b325aa002

HTTP Headers

GET /uber-sites/client-6556-dd27995d1833991d.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 8481
date: Fri, 23 Sep 2022 15:41:57 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca8:w:13
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 8
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JNkvynMVXJGavYRBh0DaWJgb8DRdedC3HUqHD9hTty7NUs35i0x4XA==
age: 354768
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6023-48d79fa14c843b2a.js

54.230.245.141

200 OK

4.3 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-6023-48d79fa14c843b2a.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (18571), with no line terminators
Size
4.3 kB (4267 bytes)
Hash
631510a028d15a3f581491b3275a5586
e4b2fa977933712f9f1b407cde520af61b342865
e8bd1d102e11eb4108705f056642c0ae6153ec3de54e492d381540a10cbdced5

HTTP Headers

GET /uber-sites/client-6023-48d79fa14c843b2a.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 4267
date: Fri, 23 Sep 2022 15:41:56 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca11:w:23
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 7
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 59udJdJx0QCu2s-pG5DZX_9mvXoTm0Ho7dJuivAnpqhXCva7Ki4-6g==
age: 354769
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-runtime-44c5837f63dad2f5.js

54.230.245.141

200 OK

3.2 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-runtime-44c5837f63dad2f5.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (6930), with no line terminators
Size
3.2 kB (3172 bytes)
Hash
54c8e41a2b1ac76dacfbfd7b7d8f7ed1
404d167192cb83f2d8cd1a59a24e15bd4f306826
233c06ae53cf7e5c393bb5d9a6e7dd31561f0c1311ff661e5385df770455a9f3

HTTP Headers

GET /uber-sites/client-runtime-44c5837f63dad2f5.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 3172
date: Sun, 25 Sep 2022 17:52:33 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca11:w:69
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 16
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f9BYrYcWNo7FC40Xx20c-Um_4F6Uw_RM6ekXb_xuw8aKrKjFOc17SA==
age: 174132
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-vendor-d5389c8c8b4f25b7.js

54.230.245.141

200 OK

216 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-vendor-d5389c8c8b4f25b7.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (35442), with NEL line terminators
Size
216 kB (215503 bytes)
Hash
78580807e9d84eca0568bd8617d2f705
84e4c02c3d603ca58e11134bff7f41d681f0ba5e
def48120a185eb82be4a3339cfb2b20a8f917e59e143da0204fb7dcb746aeecf

HTTP Headers

GET /uber-sites/client-vendor-d5389c8c8b4f25b7.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 215503
date: Fri, 23 Sep 2022 15:41:56 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca8:w:122
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 6
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yjtbdsGABw8WjPMWOTiJIURZPCyAFW0qLMMN2-GxgvWYg2-PsGCY3Q==
age: 354769
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-9940-19e23af790dc03a0.js

54.230.245.141

200 OK

156 B

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-9940-19e23af790dc03a0.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
156 B (156 bytes)
Hash
e5873822dcd98d0cb6856a7d03c3b377
4d6cd54bf5bf68d75a4d412afa5d5ccd0c387c83
46a3300ce9b224194264596d006d1cefc890a079cce6e2566152f2090cd4f62d

HTTP Headers

GET /uber-sites/client-9940-19e23af790dc03a0.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 156
date: Fri, 23 Sep 2022 15:41:56 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca1:w:66
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 11
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ACnUYj0GYbuhly6QNiHmMtWpjMnhOainC5Cw5HMW_Z1coZ5UjlNTkA==
age: 354769
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-8644-f25c6770faaa912a.js

54.230.245.141

200 OK

2.0 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-8644-f25c6770faaa912a.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (9961), with no line terminators
Size
2.0 kB (2022 bytes)
Hash
26477dc623ccde15d64738bc35ccccb1
067bb7eb6f14f88f0297847823ae60dce18ca0fe
935950c896898d5f04b098beccda535b07a632f3e6779d0ca5f16cab915361a5

HTTP Headers

GET /uber-sites/client-8644-f25c6770faaa912a.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 2022
date: Fri, 23 Sep 2022 15:44:14 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca11:w:108
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 11
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MHCBHUJ2peXzO9R5aQxMUNUH9oixzhBNENUTpuLsmXUYIQit45tJPQ==
age: 354631
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-7227-3fa3684d697a4b91.js

54.230.245.141

200 OK

6.5 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-7227-3fa3684d697a4b91.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (24163), with no line terminators
Size
6.5 kB (6545 bytes)
Hash
082118768a481168848cc57477298b0b
7d9299f66776164c5f5530d1f7fb5f43ab11dd63
b3e5bd02fa3a416ba64ffa57b6ebd328def1acfa0c1ec7aa4b569c0d421512b2

HTTP Headers

GET /uber-sites/client-7227-3fa3684d697a4b91.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 6545
date: Fri, 23 Sep 2022 15:52:49 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca8:w:107
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 7
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 787ShlYUMeXS9APmEkTC0f65Pk9TDq3KxDNSM2iC2Be0RTa_fbfRzw==
age: 354116
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-8911-589c7832a45550cc.js

54.230.245.141

200 OK

5.2 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-8911-589c7832a45550cc.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (15393), with no line terminators
Size
5.2 kB (5195 bytes)
Hash
7688146bce499f1f0572e585d700a9ca
5e1d43850d4528ab5a37fe3825a7d3b7e7767e62
887ddb471eebcfe992ced084f029f6662fb1f89734f826c4bbb52f42623ea30e

HTTP Headers

GET /uber-sites/client-8911-589c7832a45550cc.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 5195
date: Wed, 21 Sep 2022 00:25:26 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca1:w:131
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 5
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CXur-nBQOOTkX8V6WVMAv3_jLzl3myQLDfQYo7ZtykY8GEF2qfx20A==
age: 582559
X-Firefox-Spdy: h2

d1a3f4spazzrp4.cloudfront.net/dotcom-assets/fonts/UberMove-Regular.woff2

143.204.42.20

200 OK

29 kB

URL HTTP/2
d1a3f4spazzrp4.cloudfront.net/dotcom-assets/fonts/UberMove-Regular.woff2
IP
143.204.42.20:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 29048, version 1.65\012- data
Size
29 kB (29048 bytes)
Hash
f65be663c33bad867056c6d2dc04ebe4
3e915f7bac0be00f6992f50c99e8adbca7a4fc59
37476a39bcdd76badd1f81db375d2735b42139755f73ddbce9be806d9c9ad948

HTTP Headers

GET /dotcom-assets/fonts/UberMove-Regular.woff2 HTTP/1.1
Host: d1a3f4spazzrp4.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.uber.com/
Origin: https://www.uber.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 29048
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 04 Oct 2018 22:37:41 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 5dgn_gPX7Uk8n4Qg0wyK3FZLpBHyLhMK
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 16:13:07 GMT
cache-control: max-age=43200
etag: "f65be663c33bad867056c6d2dc04ebe4"
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TI2svnIrDJpmS8SHC1EmZnxY-2da2YYl9JQ7MnZ2iFGlp-tC5MHeeg==
age: 10180
X-Firefox-Spdy: h2

d1a3f4spazzrp4.cloudfront.net/dotcom-assets/fonts/UberMoveText-Regular.woff2

143.204.42.20

200 OK

28 kB

URL HTTP/2
d1a3f4spazzrp4.cloudfront.net/dotcom-assets/fonts/UberMoveText-Regular.woff2
IP
143.204.42.20:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 28520, version 1.65\012- data
Size
28 kB (28520 bytes)
Hash
a829752af51129e08130f943eaf3e568
181a1224f264ad8c784019e692fc8e67077160bd
4b45e0cdba61e5d00bef1dc95fabe543a8e8ef8be342bce0477f729d80238c65

HTTP Headers

GET /dotcom-assets/fonts/UberMoveText-Regular.woff2 HTTP/1.1
Host: d1a3f4spazzrp4.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.uber.com/
Origin: https://www.uber.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 28520
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 04 Oct 2018 22:37:41 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Xhee0HJtOH26aFvsI0RsTcRlp6fzkDy3
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 16:56:37 GMT
cache-control: max-age=43200
etag: "a829752af51129e08130f943eaf3e568"
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -w7G9tKA813gu9swoa6RTvGebQlTEZtwQiMAA6D610by30A90jJuOQ==
age: 5055
X-Firefox-Spdy: h2

d1a3f4spazzrp4.cloudfront.net/dotcom-assets/fonts/UberMove-Medium.woff2

143.204.42.20

200 OK

30 kB

URL HTTP/2
d1a3f4spazzrp4.cloudfront.net/dotcom-assets/fonts/UberMove-Medium.woff2
IP
143.204.42.20:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 29576, version 1.65\012- data
Size
30 kB (29576 bytes)
Hash
fcb52a268777aa859b5c53bc17630487
a3a9ffa168af146cd8aa49827c837d2dd05dc5f6
9ad0d5b942e6ac6cb0e14c417b2a3b9536c8c6b11bc6d2c8bb7af552fe87a307

HTTP Headers

GET /dotcom-assets/fonts/UberMove-Medium.woff2 HTTP/1.1
Host: d1a3f4spazzrp4.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.uber.com/
Origin: https://www.uber.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 29576
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 04 Oct 2018 22:37:41 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: GHerL29U04RQLWNVO36ghfIuh5oJz3jk
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 16:13:07 GMT
cache-control: max-age=43200
etag: "fcb52a268777aa859b5c53bc17630487"
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zlJgjNJej0QFwpj3uiwlZZvHk1uwYNIHYBAa2uAZDDtsd-ax0xk19A==
age: 10180
X-Firefox-Spdy: h2

d1a3f4spazzrp4.cloudfront.net/dotcom-assets/fonts/UberMoveText-Medium.woff2

143.204.42.20

200 OK

30 kB

URL HTTP/2
d1a3f4spazzrp4.cloudfront.net/dotcom-assets/fonts/UberMoveText-Medium.woff2
IP
143.204.42.20:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 29584, version 1.65\012- data
Size
30 kB (29584 bytes)
Hash
f2eaaf0bc08903f5915b809ee80b04c7
cfcdb1e79186df6bedb68c589ee32f7ed2d6aaf9
0ba42888b81195edfb7b2dafbdd9f3613a0553055fd33559b73a4f9bb530d4ac

HTTP Headers

GET /dotcom-assets/fonts/UberMoveText-Medium.woff2 HTTP/1.1
Host: d1a3f4spazzrp4.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.uber.com/
Origin: https://www.uber.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 29584
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 04 Oct 2018 22:37:41 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: yvVFLVxIzA6OpoIvVtdWfS.l1M3nF1eK
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 16:13:07 GMT
cache-control: max-age=43200
etag: "f2eaaf0bc08903f5915b809ee80b04c7"
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LuilUxEj3y9QxCQxLXH01LwYBjVrQUlSdqosz3P9FCMKZ4XaKvPJUQ==
age: 10180
X-Firefox-Spdy: h2

d1a3f4spazzrp4.cloudfront.net/uber-com/1.3.8/d1a3f4spazzrp4.cloudfront.net/illustrations/app-store-google-4d63c31a3e.svg

143.204.42.20

200 OK

1.8 kB

URL HTTP/2
d1a3f4spazzrp4.cloudfront.net/uber-com/1.3.8/d1a3f4spazzrp4.cloudfront.net/illustrations/app-store-google-4d63c31a3e.svg
IP
143.204.42.20:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4889), with no line terminators
Size
1.8 kB (1840 bytes)
Hash
23c18a80d6afedf2bca9acf270c81249
397aa6bd6e7ecd7f11fbe1aecdc62852c59f2ef2
ffa40812ffee52582b768a93df1d06a17d15077ef9615af5c2330f6c2ae6646e

HTTP Headers

GET /uber-com/1.3.8/d1a3f4spazzrp4.cloudfront.net/illustrations/app-store-google-4d63c31a3e.svg HTTP/1.1
Host: d1a3f4spazzrp4.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1840
date: Mon, 27 Jun 2022 04:25:52 GMT
last-modified: Tue, 24 Mar 2020 17:04:33 GMT
etag: "23c18a80d6afedf2bca9acf270c81249"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: pQ7KwhWej7h2Ba_b2_.6DYQbkUB7XLCp
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QwLUC9y3KOi9vwDkQF-5O9W8AwxJ-AzmmAsHzkjmDHkX8cNofePb_Q==
age: 7998535
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-898-98a4dd1ac3297b99.js

54.230.245.141

200 OK

503 B

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/client-898-98a4dd1ac3297b99.js
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

GET /uber-sites/client-898-98a4dd1ac3297b99.js HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uber.com
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 3184
date: Fri, 23 Sep 2022 15:58:59 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-encoding: br
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca4:w:38
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 3488
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dl3C2prxb8y5aWInmhHI3I5YLOlAUtTJ5EyHBbxtgnbSgXnEtsONCg==
age: 353746
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/c4de46a6cbd165a9.png

54.230.245.141

200 OK

1.6 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/c4de46a6cbd165a9.png
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Size
1.6 kB (1554 bytes)
Hash
45befcd0141f81fc0f7b84c4e7c47161
ba9d880ddc6657fef465b62d79a186b5c30013c3
94a093bd8a5b52c6a1e25b2b0517e9b79ad8fd42074fca4424c1564e5e801588

HTTP Headers

GET /uber-sites/c4de46a6cbd165a9.png HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1554
date: Tue, 20 Sep 2022 05:56:50 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca1:w:88
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 8
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EevNbwLqROhOJ_tfPWm_pPkvqHJaJtPfBO-IJSfLcbiAM1xOsi4cng==
age: 649076
X-Firefox-Spdy: h2

d1a3f4spazzrp4.cloudfront.net/uber-com/1.3.8/d1a3f4spazzrp4.cloudfront.net/illustrations/app-store-apple-f1f919205b.svg

143.204.42.20

200 OK

1.8 kB

URL HTTP/2
d1a3f4spazzrp4.cloudfront.net/uber-com/1.3.8/d1a3f4spazzrp4.cloudfront.net/illustrations/app-store-apple-f1f919205b.svg
IP
143.204.42.20:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4677), with no line terminators
Size
1.8 kB (1828 bytes)
Hash
05d8e5467545d99ea6341f40c7f0dcc9
5824cc8bf232096c30567ed8f8735f37cff21a41
43608b32167b1947840548b6c62ee5d05bea728ecb33f8661c616e3129c03e13

HTTP Headers

GET /uber-com/1.3.8/d1a3f4spazzrp4.cloudfront.net/illustrations/app-store-apple-f1f919205b.svg HTTP/1.1
Host: d1a3f4spazzrp4.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1828
date: Thu, 09 Jun 2022 06:04:05 GMT
last-modified: Tue, 24 Mar 2020 17:04:33 GMT
etag: "05d8e5467545d99ea6341f40c7f0dcc9"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: zk02FHrfEjFVepGr3KmwlOQj8WevjvnJ
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1bdtwGUfEMdZjfYESnPlVPGfUTD46LwfYBCVkVfo-Dx2VKq7YkALYQ==
age: 9547842
X-Firefox-Spdy: h2

d3i4yxtzktqr9n.cloudfront.net/uber-sites/99c4bc580c8b57b7.ico

54.230.245.141

200 OK

1.2 kB

URL HTTP/2
d3i4yxtzktqr9n.cloudfront.net/uber-sites/99c4bc580c8b57b7.ico
IP
54.230.245.141:0
ASN
#16509 AMAZON-02

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
17677bc2cadb48697a3d2da2efc65d8c
850c55a547d04df0d7f051ae68bac005623dd7ac
da7b9c9be67c8be3833c9e77f2b7a666c6d4716a7687356f6276bcc49c4fe162

HTTP Headers

GET /uber-sites/99c4bc580c8b57b7.ico HTTP/1.1
Host: d3i4yxtzktqr9n.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 1150
date: Sat, 24 Sep 2022 12:09:16 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 22:37:42 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca8:w:19
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
access-control-allow-methods: GET
timing-allow-origin: *, *
x-envoy-upstream-service-time: 8
server: ufe
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: th8CWJupScefsVG3CQo37Uo7S6vpTd9CDYgHJAHmmUGAaCcnW6syMA==
age: 281130
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2820
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 18:14:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2820
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 18:14:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2820
Expires: Tue, 27 Sep 2022 19:01:46 GMT
Date: Tue, 27 Sep 2022 18:14:46 GMT
Connection: keep-alive

www.uber.com/us/en/u/marriott-bonvoy/

34.98.127.226

200 OK

38 kB

URL HTTP/2
www.uber.com/us/en/u/marriott-bonvoy/
IP
34.98.127.226:0
ASN
#15169 GOOGLE

File type
data
Size
38 kB (38537 bytes)
Hash
715733c58f3914e22f77f34b506ee2e8
48f50731789bc613b695ef23c352d0b51dab4fda
f17912160158e1a11c20cdf97ab7f2da6f5f93bdb20bfca2f9400bf5f7fa8f5c

HTTP Headers

GET /us/en/u/marriott-bonvoy/ HTTP/1.1
Host: www.uber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 27 Sep 2022 18:14:45 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-security-policy: block-all-mixed-content; object-src 'none'; script-src 'nonce-c57c1162-f4ef-4df5-9c8b-9eb5a0880ee0' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https: http:; report-uri https://csp.uber.com/csp?a=uber-sites&ro=false
set-cookie: _ua={"session_id":"4d06ef6a-5bb6-47a0-8bd0-270e9a0c5ceb","session_time_ms":1664302484524}; path=/; secure
marketing_vistor_id=4eefb4b9-7008-4a9d-967a-030bb4e2658e; path=/; expires=Wed, 27 Sep 2023 18:14:44 GMT; domain=.uber.com; secure
uber_sites_geolocalization={%22best%22:{%22localeCode%22:%22en%22%2C%22countryCode%22:%22US%22%2C%22territoryId%22:529%2C%22territorySlug%22:%22oslo%22%2C%22territoryName%22:%22Oslo%22}%2C%22url%22:{%22localeCode%22:%22en%22%2C%22countryCode%22:%22US%22}%2C%22user%22:{%22countryCode%22:%22NO%22%2C%22territoryId%22:529%2C%22territoryGeoJson%22:[[{%22lat%22:61.090538%2C%22lng%22:7.4644551}%2C{%22lat%22:61.090538%2C%22lng%22:11.9424477}%2C{%22lat%22:58.8764114%2C%22lng%22:11.9424477}%2C{%22lat%22:58.8764114%2C%22lng%22:7.4644551}]]%2C%22territoryGeoPoint%22:{%22latitude%22:59.9139%2C%22longitude%22:10.7522}%2C%22territorySlug%22:%22oslo%22%2C%22territoryName%22:%22Oslo%22%2C%22localeCode%22:%22en%22}}; path=/; expires=Wed, 27 Sep 2023 18:14:44 GMT; domain=www.uber.com
jwt-session=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpYXQiOjE2NjQzMDI0ODUsImV4cCI6MTY2NDM4ODg4NX0.kdaiqNYKKMcy49ROqgHSWwXh2WnJmTPfMkmRYSFSaPk; path=/; expires=Wed, 28 Sep 2022 18:14:45 GMT; secure; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-uber-edge: e4-dca1:w:112
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
cache-control: max-age=0
content-encoding: gzip
x-envoy-upstream-service-time: 953
server: ufe
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6390 bytes)
Hash
14218a43c5e5bbce546735a780c8ccce
61676358cdbb2373bc644e66f8a84fbc8cc5daf6
905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:25:52 GMT
age: 60534
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=uber/main/202209201553&cb=1664302484094

23.38.200.249

200 OK

2 B

URL HTTP/2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=uber/main/202209201553&cb=1664302484094
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb

HTTP Headers

GET /utag/tiqapp/utag.v.js?a=uber/main/202209201553&cb=1664302484094 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
cache-control: max-age=600
expires: Tue, 27 Sep 2022 18:24:46 GMT
date: Tue, 27 Sep 2022 18:14:46 GMT
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13213 bytes)
Hash
62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:42:47 GMT
age: 73919
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9163 bytes)
Hash
deb8d1e3b6d7fbc8c8ba478269621676
84f5a4c8b38acde814bc790e5b514347718d5bb9
ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 73528
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5319 bytes)
Hash
46e31aa06b8e86a9a5f9ba1cc3feca08
75df3341e30281fcbf78c7074980356fdf0be8e2
d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5319
x-amzn-requestid: d4c13fa8-eb03-4abf-9516-b74eac712b87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreHL5IAMFcOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-487923453bd27d6a744b5a31;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gGfaq_dx7NIHH43-iNn0Ah61HRLT8H3NxPGVoDvkKgBgy8zJWYwRuw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 73528
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7455 bytes)
Hash
5274e770cb5a704916c8965659709f4a
1a26007f761e439db575fb80fb403031260aecf4
e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vx-yM_jeJvOaa1UizK5OoDJFkvKnajg2ezLF2l2qnN_OhdTE6I4taQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
etag: "1a26007f761e439db575fb80fb403031260aecf4"
content-type: image/jpeg
age: 61731
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbde62996-d83a-4f97-a8ad-f7719aff0bff.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7701 bytes)
Hash
9ff2dbdbf6d450f0d9774777b3c5aa6e
2f7876bd0e4b52aa04ccf1c2a45359156eaefb97
4c2184b8150834adf1e9ec807f3175b6fcd574920a98c857db2cfb01b78da2fe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbde62996-d83a-4f97-a8ad-f7719aff0bff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7701
x-amzn-requestid: 63bfd7b5-f18e-4396-99a8-fb24dee1ee0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGCmmGswoAMF2zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324af6-04fa1b18525182b7213f844c;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:59:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KT47E-2_0O70MgMbGzSjvVaFrWwQybXKo_dkWMw2vnqBElOZtT_Big==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
age: 61731
etag: "2f7876bd0e4b52aa04ccf1c2a45359156eaefb97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6508
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 18:14:46 GMT
Last-Modified: Tue, 27 Sep 2022 16:26:19 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/fbevents.js

157.240.200.14

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (26840 bytes)
Hash
e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: V2ipEt76KoyCOp7d2CRa1mdW6tNGDw2EETIAbi7KixMxFyvaqpuALKS65/LG+lNKbeUhMMmqj7pyMqHoSMAsKw==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1679558926
date: Tue, 27 Sep 2022 18:14:46 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6508
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 18:14:46 GMT
Last-Modified: Tue, 27 Sep 2022 16:26:19 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

a745050198.cdn.optimizely.com/client_storage/a745050198.html

104.110.8.48

200 OK

767 B

URL HTTP/2
a745050198.cdn.optimizely.com/client_storage/a745050198.html
IP
104.110.8.48:0
ASN
#16625 AKAMAI-AS

File type
HTML document, ASCII text, with very long lines (1371)
Size
767 B (767 bytes)
Hash
ac6c726dac89c3698e03b4e9eaa87be2
6c8f0c1eddf5ca06f926b9203d652e5272f4a7e2
17cedd0b98154393b58850d04bccb1f531fd86d8a8840862585ba864f051c7f0

HTTP Headers

GET /client_storage/a745050198.html HTTP/1.1
Host: a745050198.cdn.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ScWVglw85brpqsTCg/MiX7fcM6IwYo0kZIJbwQZYkrc5pkCpTKhIhJX+o9flj7wxvV6lNOvLfho=
x-amz-request-id: 5WDMDQQXDB85YKZ7
x-amz-replication-status: COMPLETED
last-modified: Thu, 07 Jul 2022 01:28:31 GMT
etag: "ac6c726dac89c3698e03b4e9eaa87be2"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: 3Uj.PUdMSfqLLiHbuDDznm1_WGxspjt6
accept-ranges: bytes
content-type: text/html; charset=utf-8
server: AmazonS3
content-length: 767
vary: Accept-Encoding
cache-control: max-age=120
date: Tue, 27 Sep 2022 18:14:46 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ea7e48435129b75d5e7d2343d4917117
b7e4376bc5765d19e1e24cb06558ebfb9e03be14
54800898ee3934378798fb3bb7c8a6e22ea3abd3d5b4d096dba1a7f682916167

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 18:14:46 GMT
Last-Modified: Tue, 27 Sep 2022 16:59:04 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Fk7Kbo1v_byMicpJmCs1f6JqyQnaFWU2xrbYanQuYHjOqwoNP_77Ng==
Age: 4542

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ea7e48435129b75d5e7d2343d4917117
b7e4376bc5765d19e1e24cb06558ebfb9e03be14
54800898ee3934378798fb3bb7c8a6e22ea3abd3d5b4d096dba1a7f682916167

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 18:14:46 GMT
Last-Modified: Tue, 27 Sep 2022 17:36:34 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: X8Ev1BBB2xceWWxMrGrpZGeJtm9dHrhf063oZn33RdTASlC3PEGecQ==
Age: 2292

errors.client.optimizely.com/log

54.224.104.226

200 OK

126 B

URL HTTP/1.1
errors.client.optimizely.com/log
IP
54.224.104.226:0
ASN
#14618 AMAZON-AES

File type
gzip compressed data, from Unix\012- data
Size
126 B (126 bytes)
Hash
eb3229912392714d29d439cbf56944fd
9c26fa96611f12482c5129ab96cd0ed88c54a2c9
c92da822d8fb5e9fa9abb2a3f679336c32809ce35b513310a99d8f7f55b22cc9

HTTP Headers

OPTIONS /log HTTP/1.1
Host: errors.client.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.uber.com/
Origin: https://www.uber.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Accept,Origin
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: https://www.uber.com
Access-Control-Max-Age: 1800
Allow: POST,OPTIONS
Content-Type: text/plain
Date: Tue, 27 Sep 2022 18:14:46 GMT
Content-Length: 13
Connection: keep-alive

errors.client.optimizely.com/log

54.224.104.226

204 No Content

0 B

URL HTTP/1.1
errors.client.optimizely.com/log
IP
54.224.104.226:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /log HTTP/1.1
Host: errors.client.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Content-Type: application/json
Content-Length: 327
Origin: https://www.uber.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uber.com
Access-Control-Expose-Headers: 
Content-Type: text/plain
Date: Tue, 27 Sep 2022 18:14:46 GMT
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9f08fe5653f325b65e13b84b5d7d1ce5
55d20de5f23922641a1675ff6c629c5aac69439b
75c3a56745752d8b4cfe789530d29f58d8523231dbfdd6929353ee1c24ec52a7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 18:14:47 GMT
Last-Modified: Tue, 27 Sep 2022 16:45:33 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uIOHrBVVfPQfQddx9FxfP0HTUMzbAPUeB0EUwemdekrQ_3IVUiYkGA==
Age: 5354

www.uber-assets.com/image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719458/assets/04/a84676-00f1-40e4-894c-ffef479734a7/original/6x-%281%29.png

151.101.86.104

200 OK

430 B

URL HTTP/2
www.uber-assets.com/image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719458/assets/04/a84676-00f1-40e4-894c-ffef479734a7/original/6x-%281%29.png
IP
151.101.86.104:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
430 B (430 bytes)
Hash
6b6638c64fe9a53d00aa5aab60707b20
27b452eb5fad8ec508e0d0b8da1d3e300d12fc7c
8c54f888beb1434134ad70b08e287a8aa5648362ceb60d27270a05117b020ccd

HTTP Headers

GET /image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719458/assets/04/a84676-00f1-40e4-894c-ffef479734a7/original/6x-%281%29.png HTTP/1.1
Host: www.uber-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-disposition: inline; filename="6x-(1).webp"
content-type: image/webp
etag: "6b6638c64fe9a53d00aa5aab60707b20"
last-modified: Wed, 03 Mar 2021 19:27:20 GMT
date: Tue, 27 Sep 2022 18:14:47 GMT
vary: Accept,User-Agent
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=2;cpu=0;start=2022-09-27T18:14:47.739Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 430
X-Firefox-Spdy: h2

www.uber-assets.com/image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719592/assets/5b/155fea-f184-43ba-b656-6dad683c7d67/original/2x-%281%29.png

151.101.86.104

200 OK

358 B

URL HTTP/2
www.uber-assets.com/image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719592/assets/5b/155fea-f184-43ba-b656-6dad683c7d67/original/2x-%281%29.png
IP
151.101.86.104:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
358 B (358 bytes)
Hash
d83431657c542203d6c14cb082a3490d
90367e88a68a98a42de5f82cbbfe6876f7aca60e
2575ebbb8ad727eaa7d6c3210f756ccd1d205d7722213c05e0dfc7c8bce4a3d0

HTTP Headers

GET /image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719592/assets/5b/155fea-f184-43ba-b656-6dad683c7d67/original/2x-%281%29.png HTTP/1.1
Host: www.uber-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-disposition: inline; filename="2x-(1).webp"
content-type: image/webp
etag: "d83431657c542203d6c14cb082a3490d"
last-modified: Wed, 03 Mar 2021 19:27:20 GMT
date: Tue, 27 Sep 2022 18:14:47 GMT
vary: Accept,User-Agent
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=2;cpu=0;start=2022-09-27T18:14:47.742Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 358
X-Firefox-Spdy: h2

www.uber-assets.com/image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719542/assets/af/3ff13b-fea9-411d-8e40-101f054ca96f/original/3x-%281%29.png

151.101.86.104

200 OK

388 B

URL HTTP/2
www.uber-assets.com/image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719542/assets/af/3ff13b-fea9-411d-8e40-101f054ca96f/original/3x-%281%29.png
IP
151.101.86.104:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
388 B (388 bytes)
Hash
f7be52067d2a145119f96b35888003dc
d7951c37934e0fc4476161e9422aa4bf6c131ade
3e17133a5f001ecd39c25d68da4164cce5ce7179c52f946a90bd2cbcf43e25ba

HTTP Headers

GET /image/upload/f_auto,q_auto:eco,c_fill,w_48,h_48/v1614719542/assets/af/3ff13b-fea9-411d-8e40-101f054ca96f/original/3x-%281%29.png HTTP/1.1
Host: www.uber-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-disposition: inline; filename="3x-(1).webp"
content-type: image/webp
etag: "f7be52067d2a145119f96b35888003dc"
last-modified: Wed, 03 Mar 2021 19:27:20 GMT
date: Tue, 27 Sep 2022 18:14:47 GMT
vary: Accept,User-Agent
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=1;cpu=0;start=2022-09-27T18:14:47.744Z;desc=hit,rtt;dur=17
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 388
X-Firefox-Spdy: h2

logx.optimizely.com/v1/events

54.146.116.55

204 No Content

0 B

URL HTTP/1.1
logx.optimizely.com/v1/events
IP
54.146.116.55:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uber.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 736
Origin: https://www.uber.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.uber.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Tue, 27 Sep 2022 18:14:47 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 14ac2408-54ee-425d-a0a4-96059871832e
Connection: keep-alive

d1nyezh1ys8wfo.cloudfront.net/static/Looping_Videos/marriott-bonvoy/Web+360.mp4

54.230.245.214

206 Partial Content

0 B

URL HTTP/2
d1nyezh1ys8wfo.cloudfront.net/static/Looping_Videos/marriott-bonvoy/Web+360.mp4
IP
54.230.245.214:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/Looping_Videos/marriott-bonvoy/Web+360.mp4 HTTP/1.1
Host: d1nyezh1ys8wfo.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://www.uber.com/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 206 Partial Content
content-type: video/mp4
content-length: 5379057
date: Tue, 27 Sep 2022 18:14:48 GMT
last-modified: Wed, 03 Mar 2021 21:45:22 GMT
etag: "bb5bd6168a94743d7fda9101dc33e24f"
x-amz-server-side-encryption: AES256
x-amz-version-id: KfUJPkiT7h.7DqrXxHnQlD2MrS_ZYF93
accept-ranges: bytes
server: AmazonS3
content-range: bytes 0-5379056/5379057
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G7Oox0OxlCEOiPJ37n64azU9WGHIp72k0oE8xW_3UVBLWjP4OvXNZQ==
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/uber/main/prod/utag.js

23.38.200.249

200 OK

0 B

URL HTTP/2
tags.tiqcdn.com/utag/uber/main/prod/utag.js
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /utag/uber/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.uber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "56afbab445d02e0e496401c6939a3b44:1663689261.233209"
last-modified: Tue, 20 Sep 2022 15:54:21 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Tue, 27 Sep 2022 18:19:45 GMT
date: Tue, 27 Sep 2022 18:14:45 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations