| astrazeneca.learning.nu/auth/bankid/index.php | 13.49.102.237 | 301 Moved Permanently | 162 B |
URL HTTP/1.1astrazeneca.learning.nu/auth/bankid/index.php IP13.49.102.237:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /auth/bankid/index.php HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 30 Jan 2023 18:21:44 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://astrazeneca.learning.nu/auth/bankid/index.php
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash5eb7c9bc996a0ff420e58af45526f053 8c2614832b8efe1c9da0bbd465d6f3f172d95a9e c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18805
Expires: Mon, 30 Jan 2023 23:35:09 GMT
Date: Mon, 30 Jan 2023 18:21:44 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash0c35c3ec659d3a26ea97e68d787bb043 d97e3672244efec5b7814f2d8a734cd1a9387854 4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9903
Expires: Mon, 30 Jan 2023 21:06:48 GMT
Date: Mon, 30 Jan 2023 18:21:45 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash302c7548412192add063ad6c8b99cf3b e5d178931a27db036ce8daae302594d3ff7050b8 fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11425
Expires: Mon, 30 Jan 2023 21:32:10 GMT
Date: Mon, 30 Jan 2023 18:21:45 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashdcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 17:35:45 GMT
content-type: application/json
age: 2760
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FWI12WXtB0GuvWzKz2mV2VS1NrA6nZNFZ4FQ7N9l0fiyywbrEMUAZVaavt+LeNaNtYKtmIKkvCg=
x-amz-request-id: 2QTGZGFZZCKNKZ81
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 17:21:53 GMT
age: 3592
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash6e9007c18d2b8b21cdfc6c00d9185a78 6ca94c5db531abee9c33aecab8e6f902d15af0ea ca24c9d3d5f452496d38c7d7f7225d7f26bf88b470f3ebc986cb6c95f72f22ae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA24C9D3D5F452496D38C7D7F7225D7F26BF88B470F3EBC986CB6C95F72F22AE"
Last-Modified: Sun, 29 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17442
Expires: Mon, 30 Jan 2023 23:12:27 GMT
Date: Mon, 30 Jan 2023 18:21:45 GMT
Connection: keep-alive
|
|
| astrazeneca.learning.nu/auth/bankid/pix/bankid_mobile.png | 13.49.102.237 | 200 OK | 3.5 kB |
URL HTTP/2astrazeneca.learning.nu/auth/bankid/pix/bankid_mobile.png IP13.49.102.237:0
File typePNG image data, 150 x 106, 8-bit/color RGBA, non-interlaced\012- data Hash7a66470c2ebbdea15f7c5b6d1cfab120 209ebc028cc4eaf0b2b9cfa3712b03daea282eac 7d19827ea15ea6ae323093f61a45545b2250a9b7c2494001672a277c144a4d1c
GET /auth/bankid/pix/bankid_mobile.png HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: image/png
content-length: 3513
last-modified: Thu, 23 May 2019 19:58:43 GMT
etag: "5ce6fb73-db9"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/pluginfile.php/1/theme_xway/logo/1673617660/logo-az.png.pagespeed.ce.skm4LfcU13.png | 13.49.102.237 | 200 OK | 2.5 kB |
URL HTTP/2astrazeneca.learning.nu/pluginfile.php/1/theme_xway/logo/1673617660/logo-az.png.pagespeed.ce.skm4LfcU13.png IP13.49.102.237:0
File typePNG image data, 216 x 52, 8-bit colormap, non-interlaced\012- data Hashb249b82df714d779e12b5f2c8a4df724 d063519c79f8bf4191486e22ea8048185d1e4081 7230f38d54f4129e93720c33c50045d2a80228e6619b6bbe0f4bf215527d6948
GET /pluginfile.php/1/theme_xway/logo/1673617660/logo-az.png.pagespeed.ce.skm4LfcU13.png HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: image/png
content-length: 2482
last-modified: Fri, 19 May 2017 08:16:06 GMT
content-disposition: inline; filename*=utf-8''logo-az.png.pagespeed.ce.skm4LfcU13.png
cache-control: public, max-age=5184000, no-transform
expires: Fri, 31 Mar 2023 18:21:45 GMT
etag: "591ea9c6-9b2"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
accept-ranges: bytes, bytes
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/styles.php/xway/1673617660/all | 13.49.102.237 | 200 OK | 165 kB |
URL HTTP/2astrazeneca.learning.nu/theme/styles.php/xway/1673617660/all IP13.49.102.237:0
Size165 kB (164909 bytes) Hashfa115222e1acd6f1599fa733c175c856 da7595759be691714b98c4fb4857fa615ef18744 9afbf38864a8c5a261b3b7b1b1782c4d36d51d304150c5f082bae2702d164789
GET /theme/styles.php/xway/1673617660/all HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: text/css; charset=utf-8
etag: "52e52cc3e3b095756b85fad1759cc8d27cab029c"
content-disposition: inline; filename="styles.php"
last-modified: Fri, 13 Jan 2023 13:57:15 GMT
expires: Sun, 30 Apr 2023 18:21:45 GMT
pragma:
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/font.php/xway/theme/1673617660/fontawesome-webfont.woff2 | 13.49.102.237 | 200 OK | 77 kB |
URL HTTP/2astrazeneca.learning.nu/theme/font.php/xway/theme/1673617660/fontawesome-webfont.woff2 IP13.49.102.237:0
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /theme/font.php/xway/theme/1673617660/fontawesome-webfont.woff2 HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://astrazeneca.learning.nu/theme/styles.php/xway/1673617660/all
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/font-woff2
content-length: 77160
last-modified: Fri, 13 Jan 2023 13:57:16 GMT
content-disposition: inline; filename="fontawesome-webfont.woff2"
expires: Sun, 30 Apr 2023 18:21:45 GMT
cache-control: public, max-age=7776000, immutable
etag: "63c1633c-12d68"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
accept-ranges: none, bytes
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/pluginfile.php/1/theme_xway/favicon/1673617660/Symbol%20%281%29.ico | 13.49.102.237 | 200 OK | 26 kB |
URL HTTP/2astrazeneca.learning.nu/pluginfile.php/1/theme_xway/favicon/1673617660/Symbol%20%281%29.ico IP13.49.102.237:0
File typePNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced\012- data Hasha6df8d6e4645df782b9fee8e1ec2cdcc a79e5c259c6bd9fe54a60c697942a34dfc604bc2 669307cbd3e49c14f00e3decd35f555564cd1a2e2ac4e2c2c679aee184f24f4e
GET /pluginfile.php/1/theme_xway/favicon/1673617660/Symbol%20%281%29.ico HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: image/vnd.microsoft.icon
content-length: 25467
last-modified: Wed, 26 Feb 2020 14:55:59 GMT
content-disposition: inline; filename*=utf-8''Symbol%20%281%29.ico
cache-control: public, max-age=5184000, no-transform
expires: Fri, 31 Mar 2023 18:21:45 GMT
etag: "5e5686ff-637b"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
accept-ranges: bytes, bytes
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/yui_combo.php?m/1673617660/core/widget/widget-focusafterclose-min.js&3.17.2/plugin/plugin-min.js&m/1673617660/core/lockscroll/lockscroll-min.js&m/1673617660/core/notification/notification-dialogue-min.js&m/1673617660/core/tooltip/tooltip-min.js&m/1673617660/core/popuphelp/popuphelp-min.js | 13.49.102.237 | 200 OK | 5.9 kB |
URL HTTP/2astrazeneca.learning.nu/theme/yui_combo.php?m/1673617660/core/widget/widget-focusafterclose-min.js&3.17.2/plugin/plugin-min.js&m/1673617660/core/lockscroll/lockscroll-min.js&m/1673617660/core/notification/notification-dialogue-min.js&m/1673617660/core/tooltip/tooltip-min.js&m/1673617660/core/popuphelp/popuphelp-min.js IP13.49.102.237:0
Hasha5fb7af234f6429f748daf1abf561197 deba10a01179ec56499073f7fc3a55feb356ee98 988bf9b91f5548c71e1c035107cf2e3571edaf3a378c75601d57d893ab71d223
GET /theme/yui_combo.php?m/1673617660/core/widget/widget-focusafterclose-min.js&3.17.2/plugin/plugin-min.js&m/1673617660/core/lockscroll/lockscroll-min.js&m/1673617660/core/notification/notification-dialogue-min.js&m/1673617660/core/tooltip/tooltip-min.js&m/1673617660/core/popuphelp/popuphelp-min.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript
content-disposition: inline; filename="combo"
last-modified: Thu, 05 Mar 2020 07:59:59 GMT
expires: Thu, 25 Jan 2024 18:21:45 GMT
pragma:
cache-control: public, max-age=31104000, immutable
accept-ranges: none
etag: "5b4f70b8d336fc9d2dbf608c386ff6b46a4022f3"
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 52.42.157.160 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.42.157.160:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Rzg+BhY/3s/h5FhAUtk8Zw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zfNptnrsP+vB/CFphhP1P9G0/8k=
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashdfb84426fed94988d5c90372baff059c f1c4740830034ff8a5759d59ae3f657ea524d083 d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2814
Expires: Mon, 30 Jan 2023 19:08:41 GMT
Date: Mon, 30 Jan 2023 18:21:47 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashdfb84426fed94988d5c90372baff059c f1c4740830034ff8a5759d59ae3f657ea524d083 d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2814
Expires: Mon, 30 Jan 2023 19:08:41 GMT
Date: Mon, 30 Jan 2023 18:21:47 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashdfb84426fed94988d5c90372baff059c f1c4740830034ff8a5759d59ae3f657ea524d083 d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2814
Expires: Mon, 30 Jan 2023 19:08:41 GMT
Date: Mon, 30 Jan 2023 18:21:47 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfe31ee140c2fd62e616c8a1edc9e78bb 7aa5fbdc8156514770ae620e81f1afef1c77890f 799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y6bDvcD7a3-A4DLC3cSdZT-yewV1kkFqcGr7AMuqvUeGA4A0pgF4wQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:59:27 GMT
age: 73340
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg | 34.120.237.76 | 200 OK | 7.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3e04b9eaf7449828136ad59e4c9d69f1 b820be4ed885dcf288eb6460c57e1fa7b1c7c476 df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VHh2SQ21xoDoBnGvM2kRiposhXuCE-DdWW1bM35kEykjbHYmhsldVA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 73825
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash65c02d8a1b0d6a210cb2a649c5c67469 027dbc7a104c922904f067ed15d696c363c11774 89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:08:57 GMT
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
age: 72770
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash51aa950d5eed7b90cab6632107092edc e4388ced02e5576867e77547496dec1ac2338ef7 588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3EXFa0gb46AbdZ9ZznGiPTemGZ7zWh9WLs5Yr1zmfyh_jyKA6o7xoA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:57 GMT
age: 72110
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 05:47:49 GMT
age: 45238
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash131eb343c5abd61939457d69bd371348 ffb2035cf64fc83f01db5c6f26ffa264b6aac95b 8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 8bec493a-9c81-4cfd-b6e9-66f4f3d55cb7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOOJQEZSoAMFb1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf2a3b-5f0c9f3e4cac1ba26c802050;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 00:45:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PHd9IMeVMHy0TgXRqXyBCg6CZkOtT1WAOyq8zu8ERfIzoaB-7pLc2A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 15:48:30 GMT
age: 9197
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/auth/bankid/js/bankid.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/auth/bankid/js/bankid.js IP13.49.102.237:0
GET /auth/bankid/js/bankid.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript
last-modified: Fri, 30 Dec 2022 09:49:33 GMT
vary: Accept-Encoding
etag: W/"63aeb42d-2ad3"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/jquery.php/core/jquery-3.3.1.min.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/theme/jquery.php/core/jquery-3.3.1.min.js IP13.49.102.237:0
GET /theme/jquery.php/core/jquery-3.3.1.min.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript
etag: "a074b37aa094892df217a82297b8111b13c11b18"
content-disposition: inline; filename="jquery-3.3.1.min.js"
last-modified: Thu, 03 Jun 2021 11:03:33 GMT
expires: Sun, 30 Apr 2023 18:21:45 GMT
pragma:
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/lib/javascript.php/1673617660/lib/javascript-static.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/lib/javascript.php/1673617660/lib/javascript-static.js IP13.49.102.237:0
GET /lib/javascript.php/1673617660/lib/javascript-static.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 13 Jan 2023 13:57:13 GMT
vary: Accept-Encoding
content-disposition: inline; filename="javascript.php"
expires: Sun, 30 Apr 2023 18:21:45 GMT
cache-control: public, max-age=7776000, immutable
etag: W/"63c16339-57a5"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/lib/javascript.php/1673617660/lib/jquery/jquery-3.3.1.min.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/lib/javascript.php/1673617660/lib/jquery/jquery-3.3.1.min.js IP13.49.102.237:0
GET /lib/javascript.php/1673617660/lib/jquery/jquery-3.3.1.min.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 13 Jan 2023 13:57:16 GMT
vary: Accept-Encoding
content-disposition: inline; filename="javascript.php"
expires: Sun, 30 Apr 2023 18:21:46 GMT
cache-control: public, max-age=7776000, immutable
etag: W/"63c1633c-152d0"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/auth/bankid/style/bankid.css | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/auth/bankid/style/bankid.css IP13.49.102.237:0
GET /auth/bankid/style/bankid.css HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: text/css
last-modified: Fri, 30 Dec 2022 09:49:33 GMT
vary: Accept-Encoding
etag: W/"63aeb42d-825"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/auth/bankid/pix/bankid_logo.svg | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/auth/bankid/pix/bankid_logo.svg IP13.49.102.237:0
GET /auth/bankid/pix/bankid_logo.svg HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: image/svg+xml
last-modified: Fri, 30 Dec 2022 09:49:33 GMT
vary: Accept-Encoding
etag: W/"63aeb42d-eae"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/lib/javascript.php/1673617660/lib/requirejs/require.min.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/lib/javascript.php/1673617660/lib/requirejs/require.min.js IP13.49.102.237:0
GET /lib/javascript.php/1673617660/lib/requirejs/require.min.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 13 Jan 2023 13:57:15 GMT
vary: Accept-Encoding
content-disposition: inline; filename="javascript.php"
expires: Sun, 30 Apr 2023 18:21:45 GMT
cache-control: public, max-age=7776000, immutable
etag: W/"63c1633b-44d5"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/javascript.php/xway/1673617660/footer | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/theme/javascript.php/xway/1673617660/footer IP13.49.102.237:0
GET /theme/javascript.php/xway/1673617660/footer HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 13 Jan 2023 13:57:15 GMT
vary: Accept-Encoding
content-disposition: inline; filename="javascript.php"
expires: Sun, 30 Apr 2023 18:21:45 GMT
cache-control: public, max-age=7776000, immutable
etag: W/"63c1633b-508"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/jquery.php/core/jquery-migrate-3.0.0.min.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/theme/jquery.php/core/jquery-migrate-3.0.0.min.js IP13.49.102.237:0
GET /theme/jquery.php/core/jquery-migrate-3.0.0.min.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript
etag: "09063ee7a39dd973a12186686978d4ae0d1fda4f"
content-disposition: inline; filename="jquery-migrate-3.0.0.min.js"
last-modified: Thu, 23 May 2019 19:58:33 GMT
expires: Sun, 30 Apr 2023 18:21:45 GMT
pragma:
cache-control: public, max-age=7776000, immutable
accept-ranges: none
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/javascript.php/xway/1673617660/head | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/theme/javascript.php/xway/1673617660/head IP13.49.102.237:0
GET /theme/javascript.php/xway/1673617660/head HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 13 Jan 2023 13:57:14 GMT
vary: Accept-Encoding
content-disposition: inline; filename="javascript.php"
expires: Sun, 30 Apr 2023 18:21:45 GMT
cache-control: public, max-age=7776000, immutable
etag: W/"63c1633a-5348d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js IP13.49.102.237:0
GET /theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript
content-disposition: inline; filename="combo"
last-modified: Thu, 23 May 2019 19:58:34 GMT
expires: Thu, 25 Jan 2024 18:21:45 GMT
pragma:
cache-control: public, max-age=31104000, immutable
accept-ranges: none
etag: "78581a0bac8a932effb32db3e91e0f2f2b47c08e"
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/yui_combo.php?m/1673617660/core/jqueryajaxhandler/jqueryajaxhandler-min.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/theme/yui_combo.php?m/1673617660/core/jqueryajaxhandler/jqueryajaxhandler-min.js IP13.49.102.237:0
GET /theme/yui_combo.php?m/1673617660/core/jqueryajaxhandler/jqueryajaxhandler-min.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript
content-disposition: inline; filename="combo"
last-modified: Thu, 23 May 2019 19:58:33 GMT
expires: Thu, 25 Jan 2024 18:21:45 GMT
pragma:
cache-control: public, max-age=31104000, immutable
accept-ranges: none
etag: "1e1641283a3da275e0289a1d158d18f930cb5320"
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/theme/yui_combo.php?3.17.2/cssbutton/cssbutton-min.css | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/theme/yui_combo.php?3.17.2/cssbutton/cssbutton-min.css IP13.49.102.237:0
GET /theme/yui_combo.php?3.17.2/cssbutton/cssbutton-min.css HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: text/css;charset=UTF-8
content-disposition: inline; filename="combo"
last-modified: Thu, 23 May 2019 19:58:33 GMT
expires: Thu, 25 Jan 2024 18:21:45 GMT
pragma:
cache-control: public, max-age=31104000, immutable
accept-ranges: none
etag: "323202bec286f8abd417e82b36bf85c33dc46920"
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/lib/javascript.php/1673617660/lib/requirejs/jquery-private.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/lib/javascript.php/1673617660/lib/requirejs/jquery-private.js IP13.49.102.237:0
GET /lib/javascript.php/1673617660/lib/requirejs/jquery-private.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 13 Jan 2023 13:57:16 GMT
vary: Accept-Encoding
content-disposition: inline; filename="javascript.php"
expires: Sun, 30 Apr 2023 18:21:46 GMT
cache-control: public, max-age=7776000, immutable
etag: W/"63c1633c-2d2"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/lib/ajax/service-nologin.php?info=core_output_get_flex_icons | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/lib/ajax/service-nologin.php?info=core_output_get_flex_icons IP13.49.102.237:0
POST /lib/ajax/service-nologin.php?info=core_output_get_flex_icons HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Content-Type: application/json
x-totara-sesskey: VzIZK8CEHO
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://astrazeneca.learning.nu
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:46 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/auth/bankid/index.php | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/auth/bankid/index.php IP13.49.102.237:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /auth/bankid/index.php HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613; path=/; secure; HttpOnly
referrer-policy: strict-origin-when-cross-origin
content-language: en
content-script-type: text/javascript
content-style-type: text/css
x-ua-compatible: IE=edge
cache-control: private, pre-check=0, post-check=0, max-age=0, no-transform
pragma: no-cache
expires:
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/lib/requirejs/config.php/1673617660/config.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/lib/requirejs/config.php/1673617660/config.js IP13.49.102.237:0
GET /lib/requirejs/config.php/1673617660/config.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 13 Jan 2023 13:57:15 GMT
vary: Accept-Encoding
content-disposition: inline; filename="config.js"
expires: Sun, 30 Apr 2023 18:21:45 GMT
cache-control: public, max-age=7776000, immutable
etag: W/"63c1633b-2068"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| astrazeneca.learning.nu/lib/requirejs.php/1673617660/core/bundle.js | 13.49.102.237 | 200 OK | 0 B |
URL HTTP/2astrazeneca.learning.nu/lib/requirejs.php/1673617660/core/bundle.js IP13.49.102.237:0
GET /lib/requirejs.php/1673617660/core/bundle.js HTTP/1.1
Host: astrazeneca.learning.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://astrazeneca.learning.nu/auth/bankid/index.php
Connection: keep-alive
Cookie: TotaraSession=cc5112aaf9e401aeb04e47df9ca64613
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 18:21:46 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 13 Jan 2023 13:57:16 GMT
vary: Accept-Encoding
content-disposition: inline; filename="requirejs.php"
expires: Sun, 30 Apr 2023 18:21:46 GMT
cache-control: public, max-age=7776000, immutable
etag: W/"63c1633c-9e6ce"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-robots-tag: none
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|