Report - www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection

Report Overview

Submitted URL
www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection
IP
23.96.4.241
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-11-01 21:20:49
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.7 kB	4.4 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
www.cognitoforms.com	55971	2017-01-30T10:43:21Z	2023-03-09T11:45:30Z	3.8 kB	38 kB	23.96.4.241
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	34.214.17.205
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	50 kB	34.120.237.76
static.cognitoforms.com	130561	2020-03-17T12:32:02Z	2023-03-09T11:45:32Z	1.6 kB	3.8 kB	13.107.213.53
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.0 kB	2.4 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	static.cognitoforms.com/form/modern/152.80958c4cdc6976d34ad5.js	287 kB	2023-03-10	2024-03-07
Pretty URL static.cognitoforms.com/form/modern/152.80958c4cdc6976d34ad5.js IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:29:53 Last Seen2024-03-07 16:55:19 Times Seen5 Hash 34637f833457df1c352f421c30f0d609 ee38ddc0374cb2586e4ed11422eee7b98b5a20f7 eec5a8a0ae41559ab9ff1431eda924ef7d8453296a89c48de6cd196784b6cfbc Loading...

	static.cognitoforms.com/form/modern/137.25378bd8c80d49894064.js	244 kB	2023-03-10	2023-03-10
Pretty URL static.cognitoforms.com/form/modern/137.25378bd8c80d49894064.js IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:46:11 Last Seen2023-03-10 18:53:52 Times Seen1 Hash 78cfcc91babd6d1a5bf3ab3d0657211c e918065c2c04c5ca31ee9680c356a322097e2d5a 727f2becbb32ec06f5171a513bcc89aaf16c7ae91beb1ef3c36552c6f79b5747 Loading...

	www.cognitoforms.com/Scripts/testing/AutotestDetect.js	5.6 kB	2023-03-07	2024-03-25
Pretty URL www.cognitoforms.com/Scripts/testing/AutotestDetect.js IP 23.96.4.241 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:47:49 Last Seen2024-03-25 16:21:23 Times Seen453 Hash 9cad3f90a4f5186f732a0b9bd8e522c4 05a97960f4e4f24776345a3f5fea6558b1384494 1ca4c29158f1f930b2cf696a87f1a5c6e242efb401e6cec78e0986a7f732c55c Loading...

	www.cognitoforms.com/f/seamless.js	65 kB	2023-03-10	2023-03-10
Pretty URL www.cognitoforms.com/f/seamless.js IP 23.96.4.241 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:46:11 Last Seen2023-03-10 18:53:52 Times Seen1 Hash cd0377b62ccb0acf1b832147da2190e2 4acf386157e823c6463573a30242e921e6e62482 692bcfcb4e3b6a87e6d6a2f1511c7266abbd86bcbbbd02b04caa3f06ad226fce Loading...

	www.cognitoforms.com/Scripts/vertical-form-edge-snapping.js?cachehash=1095780425	1.1 kB	2023-03-10	2024-03-25
Pretty URL www.cognitoforms.com/Scripts/vertical-form-edge-snapping.js?cachehash=1095780425 IP 23.96.4.241 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:46:11 Last Seen2024-03-25 16:21:23 Times Seen17 Hash b22d94b0e8c3a246d58ab63b186d5654 710653e464a6dc8935a6e347ac4f64c04cb2b15a 98d13affbd1ef21f52c901fb7aadc28052143ffec7ffa8a6e0562093e5012e54 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 20:30:28 Times Seen36966715 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static.cognitoforms.com/form/modern/154.97b4899f34bc8b51cacd.js	40 kB	2023-03-10	2024-03-07
Pretty URL static.cognitoforms.com/form/modern/154.97b4899f34bc8b51cacd.js IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:29:52 Last Seen2024-03-07 16:55:19 Times Seen5 Hash 9731c872703271c52ea72acfdc2da0dc a3d4c82038e5d7f1343387df06c87824d72da4b2 3927a19751d2b60cf0f569483f3111d69c400fbeddc33ea1f2d75f0db0a54b4b Loading...

	static.cognitoforms.com/form/modern/153.329b24258f5e013d5630.js	94 kB	2023-03-10	2024-03-07
Pretty URL static.cognitoforms.com/form/modern/153.329b24258f5e013d5630.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:29:53 Last Seen2024-03-07 16:55:19 Times Seen5 Hash 74772afadce3bead4771cb82d22e6ac9 537334af3648bc883040ea2cbf1e24185cd9cc7f 347eeed3b67b91c5162ed0857fac4b75354d8cf172482e32c066b9bd525a33b6 Loading...

HTTP Transactions (29)

	URL	IP	Response	Size
	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 8d024a7496f85cabcc9adc118bd9fbec a1146d4bf5c3e21619777259206bec6cad36e7ea 247b9761f543b4d13fabf86390a1580f92b2b271e1801d99b11bbb1980eefe84 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3394 Cache-Control: max-age=133617 Content-Type: application/ocsp-response Date: Tue, 01 Nov 2022 21:20:38 GMT Etag: "6360e755-1d7" Expires: Thu, 03 Nov 2022 10:27:35 GMT Last-Modified: Tue, 01 Nov 2022 09:31:01 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 33c3dea45eaabae3557235f002dda989 38a1903e09bff723af30fe5080f79646247b9254 b00022c599d7a74bd264b90a1ca9f935eb8a7bc6e63a9751dddc8acfbafe58da HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B00022C599D7A74BD264B90A1CA9F935EB8A7BC6E63A9751DDDC8ACFBAFE58DA" Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7959 Expires: Tue, 01 Nov 2022 23:33:17 GMT Date: Tue, 01 Nov 2022 21:20:38 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 8d024a7496f85cabcc9adc118bd9fbec a1146d4bf5c3e21619777259206bec6cad36e7ea 247b9761f543b4d13fabf86390a1580f92b2b271e1801d99b11bbb1980eefe84 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1381 Cache-Control: max-age=131604 Content-Type: application/ocsp-response Date: Tue, 01 Nov 2022 21:20:38 GMT Etag: "6360e755-1d7" Expires: Thu, 03 Nov 2022 09:54:02 GMT Last-Modified: Tue, 01 Nov 2022 09:31:01 GMT Server: ECS (ska/F70E) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43ea74d83493710eb8b64a74046ff569 74dee6d9e8b796d34f2788a472b90b3f7fc79ecd f62eff2ad4d64d785a48e2761d7f2bda9171f1e60b0e9dc525d8f589f9ef7c60 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F62EFF2AD4D64D785A48E2761D7F2BDA9171F1E60B0E9DC525D8F589F9EF7C60" Last-Modified: Tue, 01 Nov 2022 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2525 Expires: Tue, 01 Nov 2022 22:02:43 GMT Date: Tue, 01 Nov 2022 21:20:38 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: fgHew2j0Ml0IyFa9EZBJeEjJ/FG8G31de8MhAgePd2m5k0wb12qfB/Afl0DSjv+sPP7Vf/9h/hk= x-amz-request-id: 62PE5EPZE1N6X5M8 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 01 Nov 2022 20:45:32 GMT age: 2106 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection	23.96.4.241	200 OK	1.2 kB
URL HTTP/2 www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators Size 1.2 kB (1175 bytes) Hash 94405ff443aa57edda64218e09569f92 11973981ac6a297063e8b84291e713dfea68d948 29c21d404e92802a318029eb7e2f7b016df953d8b43da54d3afb704241a3fed0 HTTP Headers `GET /Hrnotify1/EmployeeComplianceSection HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate pragma: no-cache content-type: text/html; charset=utf-8 content-encoding: gzip expires: -1 vary: Accept-Encoding strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-01T21:20:38.759Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_14 x-request-time: 36ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 01 Nov 2022 21:20:38 GMT content-length: 1175 X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 01 Nov 2022 21:20:38 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	www.cognitoforms.com/Content/public-form.css?cachehash=1095780425	23.96.4.241	200 OK	1.1 kB
URL HTTP/2 www.cognitoforms.com/Content/public-form.css?cachehash=1095780425 IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with CRLF line terminators Size 1.1 kB (1144 bytes) Hash ff765e6666c8e745158dfa361d7786a4 09a9b1953538c0b2daade16da213546f84bc3057 89fa26eff04447efbff01c413d359f02e31395b21b44643827730cac3cbb234c HTTP Headers `GET /Content/public-form.css?cachehash=1095780425 HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: text/css content-encoding: gzip last-modified: Fri, 28 Oct 2022 18:14:30 GMT accept-ranges: bytes etag: "07481ff9ead81:0" vary: Accept-Encoding strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-01T21:20:39.056Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_14 x-request-time: 0ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 01 Nov 2022 21:20:38 GMT content-length: 1144 X-Firefox-Spdy: h2

	www.cognitoforms.com/Scripts/testing/AutotestDetect.js	23.96.4.241	200 OK	1.5 kB
URL HTTP/2 www.cognitoforms.com/Scripts/testing/AutotestDetect.js IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with CRLF line terminators Size 1.5 kB (1528 bytes) Hash 47854f6a1fb2c16a012dd75b2a40c2fe 52c97dfa106dbd52c5845b21c2aabcf8cabf0e59 8826630b3a77989babb056bc120eeb281055a6ee866bfd7908eba5a78b44e48f HTTP Headers `GET /Scripts/testing/AutotestDetect.js HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/javascript content-encoding: gzip last-modified: Fri, 28 Oct 2022 18:14:30 GMT accept-ranges: bytes etag: "07481ff9ead81:0" vary: Accept-Encoding strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-01T21:00:59.623Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_14 x-request-time: 7ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 01 Nov 2022 21:20:38 GMT content-length: 1528 X-Firefox-Spdy: h2

	www.cognitoforms.com/Scripts/vertical-form-edge-snapping.js?cachehash=1095780425	23.96.4.241	200 OK	632 B
URL HTTP/2 www.cognitoforms.com/Scripts/vertical-form-edge-snapping.js?cachehash=1095780425 IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with CRLF line terminators Size 632 B (632 bytes) Hash 9b25400f98c7a372d5960c49f460299a 4b6aa36bc7076b3ac6632bb8028d6faa32ed93a1 d76029622f511b30df678438e8e14e173601fd3268b7b177ccadf68b5ca881a2 HTTP Headers `GET /Scripts/vertical-form-edge-snapping.js?cachehash=1095780425 HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/javascript content-encoding: gzip last-modified: Fri, 28 Oct 2022 18:14:30 GMT accept-ranges: bytes etag: "e78ac1ff9ead81:0" vary: Accept-Encoding strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-01T21:20:39.072Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_14 x-request-time: 0ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 01 Nov 2022 21:20:38 GMT content-length: 632 X-Firefox-Spdy: h2

	www.cognitoforms.com/f/seamless.js	23.96.4.241	200 OK	16 kB
URL HTTP/2 www.cognitoforms.com/f/seamless.js IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with very long lines (64789) Size 16 kB (16428 bytes) Hash 5ba24b2cdc24dd1d1e7a63a4e31aa9f7 1c0c50927b3095af7401d5a5aa2214b1d0a108fe 69ec7e44d852717eb0bcf495cd197f8eaa361c2d713ee1135be9b796f3fde422 HTTP Headers `GET /f/seamless.js HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate pragma: no-cache content-type: application/javascript content-encoding: gzip expires: -1 strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-01T21:20:39.072Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_14 x-request-time: 3ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 01 Nov 2022 21:20:38 GMT content-length: 16428 X-Firefox-Spdy: h2

	www.cognitoforms.com/Content/Images/favicons/favicon-32x32.png	23.96.4.241	200 OK	1.5 kB
URL HTTP/2 www.cognitoforms.com/Content/Images/favicons/favicon-32x32.png IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data Size 1.5 kB (1535 bytes) Hash 7b12a230e0d34f9d6471aca3bbfa1d2f 13642a7ac18f1402f089c2a3adcfbc31895cbbe0 44bedf652c45f811f1155dc4d045f63ce291faa59a05a4be857c0309700fd84b HTTP Headers `GET /Content/Images/favicons/favicon-32x32.png HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: image/png last-modified: Fri, 28 Oct 2022 18:14:36 GMT accept-ranges: bytes etag: "70541023f9ead81:0" strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-01T21:00:59.732Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_14 x-request-time: 2ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 01 Nov 2022 21:20:38 GMT content-length: 1535 X-Firefox-Spdy: h2

	www.cognitoforms.com/Content/Images/favicons/apple-touch-icon.png	23.96.4.241	200 OK	8.4 kB
URL HTTP/2 www.cognitoforms.com/Content/Images/favicons/apple-touch-icon.png IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 8.4 kB (8436 bytes) Hash 440cb8423a3a03adc0ecd60cf1eebb72 a2b8f62340a170ce329dbca0e36faef514fe467f c25f440c3eb5101cb38f08717099cb43bd48d28b4baf73849adaa3ad06a5c831 HTTP Headers `GET /Content/Images/favicons/apple-touch-icon.png HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: image/png last-modified: Fri, 28 Oct 2022 18:14:36 GMT accept-ranges: bytes etag: "492d923f9ead81:0" strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-01T21:20:39.228Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_14 x-request-time: 0ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 01 Nov 2022 21:20:38 GMT content-length: 8436 X-Firefox-Spdy: h2

	www.cognitoforms.com/svc/load-form/new-session/YKjgS43fEE-ukVPLOVDycw/1?embedContext=public	23.96.4.241	400 Bad Request	99 B
URL HTTP/2 www.cognitoforms.com/svc/load-form/new-session/YKjgS43fEE-ukVPLOVDycw/1?embedContext=public IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JSON data\012- , ASCII text, with no line terminators Size 99 B (99 bytes) Hash 8e3ec39d0716d752131dae88b0972c0c 7a0191022f1939dd506ddce63900a250f9ea18eb b5567be4c5affb7095692b81bfae858a2c8db2191cc8f0571bcc199868d79666 HTTP Headers POST /svc/load-form/new-session/YKjgS43fEE-ukVPLOVDycw/1?embedContext=public HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/Hrnotify1/EmployeeComplianceSection X-Requested-With: XmlHttpRequest Origin: https://www.cognitoforms.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Content-Length: 0 TE: trailers HTTP/2 400 Bad Request cache-control: no-cache, no-store, must-revalidate pragma: no-cache content-type: application/json; charset=utf-8 expires: -1 vary: Origin access-control-allow-credentials: true strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: https://www.cognitoforms.com x-server-time: 2022-11-01T21:20:39.672Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_14 x-request-time: 24ms request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 01 Nov 2022 21:20:39 GMT content-length: 99 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash f9303161ce04577a7bcd56ce42831a56 690bf1468d25898db3ab46e03639946854ab25f0 40c380dba92d637574e7699ae184a089c090bab6f7215dc0178dadd8b23da43c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6325 Cache-Control: max-age=131492 Content-Type: application/ocsp-response Date: Tue, 01 Nov 2022 21:20:39 GMT Etag: "6360d396-1d7" Expires: Thu, 03 Nov 2022 09:52:11 GMT Last-Modified: Tue, 01 Nov 2022 08:06:46 GMT Server: ECS (ska/F713) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	34.214.17.205	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 34.214.17.205:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: OjfRshsqYhTcGHB6BVy3tg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: AqCwJr1Y1Q1j+BByXM4wjBlrEnE=`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D" Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9102 Expires: Tue, 01 Nov 2022 23:52:23 GMT Date: Tue, 01 Nov 2022 21:20:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D" Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9102 Expires: Tue, 01 Nov 2022 23:52:23 GMT Date: Tue, 01 Nov 2022 21:20:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D" Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9102 Expires: Tue, 01 Nov 2022 23:52:23 GMT Date: Tue, 01 Nov 2022 21:20:41 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffef65a3e-ef2c-48f0-98be-8406ad38fba0.jpeg	34.120.237.76	200 OK	5.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffef65a3e-ef2c-48f0-98be-8406ad38fba0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.2 kB (5159 bytes) Hash 173b8886a858ba39806f1e57ed68980f e4a4d887fe6f0aac6be592cedc21db61f652f4af a49a507ed778485676c7307febedeca3cbc7e1123865933e044236eb43577fb5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffef65a3e-ef2c-48f0-98be-8406ad38fba0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5159 x-amzn-requestid: aa2d6be6-73b3-474e-b789-622e7b7f15e2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: a47JaEtcoAMFRwA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63603f08-026dcc9724fa955050174a30;Sampled=0 x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:56 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: IXhmD8QMIfCNZrlgL9L8cHV-XXvmsjcT4SZIwitilx2fTTjjaPjhPQ== via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google date: Mon, 31 Oct 2022 22:58:53 GMT age: 80508 etag: "e4a4d887fe6f0aac6be592cedc21db61f652f4af" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg	34.120.237.76	200 OK	8.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.8 kB (8760 bytes) Hash 36dbf36c45aa3c5d6e10f8c4afd8bf34 bee7e540981a4ffb14728d2ac4a53ce28e299d0d 0dad70dc63e95aa8fd9befdb7dc4f971bad962e300f380dab2a04cc60138374d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9098f868-2119-42f3-92b9-615f0a2c32f6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8760 x-amzn-requestid: 013df52a-1abe-4a1b-ac52-9a5ec5da55b1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aocv2HRMoAMF5mA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6359a7fe-70e98155664262621b8538b5;Sampled=0 x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:54 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: KaCtF6knSiQPeJCJ-P1NXBAunp0ZndxYUwmVqpjbt8txB15EYZJ-wg== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google date: Mon, 31 Oct 2022 23:03:14 GMT age: 80247 etag: "bee7e540981a4ffb14728d2ac4a53ce28e299d0d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23c27174-26b8-4527-8bea-cad88bdc0d34.jpeg	34.120.237.76	200 OK	9.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23c27174-26b8-4527-8bea-cad88bdc0d34.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.7 kB (9749 bytes) Hash 4a5598b5025c779903462274690bb7e3 0f8f5bacc06a4ee8e3be25c1dc642d22b91bca5c 9b862b8885ab187323aa8f7fdd7cd712959fd7a0b02f5b74c98896be2c5eccd1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23c27174-26b8-4527-8bea-cad88bdc0d34.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9749 x-amzn-requestid: ec256f33-dd6c-42dc-976e-970755bcb610 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: a1oYkGpmoAMFtQQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-635eedd0-6758a6d921b2dca27986636f;Sampled=0 x-amzn-remapped-date: Sun, 30 Oct 2022 21:34:08 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: aaaEus9jaBwHzgBiOSG8SBpscV6SQebRRpDx6ZCHaKJbGCmm_Z3RVw== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google date: Mon, 31 Oct 2022 21:57:41 GMT age: 84180 etag: "0f8f5bacc06a4ee8e3be25c1dc642d22b91bca5c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg	34.120.237.76	200 OK	7.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.6 kB (7616 bytes) Hash fb3964a844616e8156299a91f6068d3b dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed 014216665e0feb6a3f64460d8dd50023d4621e10fd31180d6807c9eda8f57364 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7616 x-amzn-requestid: ede9fc0d-bac4-495c-8ecb-39cae7324858 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aznUqG2RIAMFn3g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-635e1f50-772b9c7e057f59c46cc7bd6f;Sampled=0 x-amzn-remapped-date: Sun, 30 Oct 2022 06:53:04 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: h9FWRKRLJCQT9M7qKj7c7wdASXyF4eaogCiAmea4i3UQlnOugk1qUw== via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google date: Tue, 01 Nov 2022 13:06:25 GMT age: 29656 etag: "dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbc7baad-e067-4cde-8525-ef8356465601.jpeg	34.120.237.76	200 OK	7.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbc7baad-e067-4cde-8525-ef8356465601.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.5 kB (7531 bytes) Hash 44a43638c497d10c7fa7dadd6a6afeb9 893fb3f21b144d0e3a810a2314ffaa7e8e40818c 605355c2b14d335aabfd83a6fa49d61fb804388d6a156c8d47fbbb127f932ca6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbc7baad-e067-4cde-8525-ef8356465601.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7531 x-amzn-requestid: 36cd2bee-2c06-4195-9b27-8a6e218694da x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: a47IuF1nIAMFrBA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63603f04-04202d745190ba251e14785c;Sampled=0 x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:52 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: VqMJ5xa4fKEFjM8ioRilgqN0DMxQjXOAYCPFq30hEcIVlI8AqNZulA== via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google date: Mon, 31 Oct 2022 21:50:40 GMT age: 84601 etag: "893fb3f21b144d0e3a810a2314ffaa7e8e40818c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4402157-b00a-4732-b2df-0f3e2b655219.jpeg	34.120.237.76	200 OK	4.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4402157-b00a-4732-b2df-0f3e2b655219.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.5 kB (4456 bytes) Hash f09a2a14bf888ca33df5b059c73f89f8 289a0c698c3a826f0614f6dec56d15c2c3320519 946007230f6cdd732a1c6bf3aa4073738ac426cdfda843cd9a9981f122fb8608 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4402157-b00a-4732-b2df-0f3e2b655219.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4456 x-amzn-requestid: 58bbf579-518e-4db6-b5a7-729aa207437e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: a47JZH56oAMFraw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63603f08-6c2770552a9f25b14ac3e32a;Sampled=0 x-amzn-remapped-date: Mon, 31 Oct 2022 21:32:56 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: CXGpDRQzYxI-0aHpKiU-GhPoEJaKEdn9k5AYJqlx3rUvpMG2IVp-Ew== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google date: Mon, 31 Oct 2022 21:50:40 GMT age: 84601 etag: "289a0c698c3a826f0614f6dec56d15c2c3320519" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/138.d81556dcd228d18e3a14.js	13.107.213.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/138.d81556dcd228d18e3a14.js IP 13.107.213.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/138.d81556dcd228d18e3a14.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: bqb7KpNyCMu4orc1DtFnfA== last-modified: Fri, 28 Oct 2022 18:23:02 GMT etag: 0x8DAB91173591DB9 server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-cache: TCP_HIT x-ms-request-id: 22ba7b44-c01e-005e-7fe6-eb47dd000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref-originshield: 0kL1dYwAAAACCBJSYaoDCS71Y673o6ef7QU1TMDRFREdFMTkyMQA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= x-azure-ref: 0p41hYwAAAABZilY23RQMTpHnOq5+c/IZU1ZHMjBFREdFMDYyMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 01 Nov 2022 21:20:38 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/154.97b4899f34bc8b51cacd.js	13.107.213.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/154.97b4899f34bc8b51cacd.js IP 13.107.213.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/154.97b4899f34bc8b51cacd.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: lzHIcnAyccUupyrP3C2g3A== last-modified: Mon, 24 Oct 2022 21:04:01 GMT etag: 0x8DAB60346DAC2F6 server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-cache: TCP_HIT x-ms-request-id: 5377eb19-701e-0039-6ad7-e85721000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref-originshield: 0SJBYYwAAAAAwRQcSnIiIR51Nq3kWO2gbQU1TMDRFREdFMTkxOAA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= x-azure-ref: 0p41hYwAAAADpYa34Y+fuQZeABpu5RoYcU1ZHMjBFREdFMDYyMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 01 Nov 2022 21:20:38 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/152.80958c4cdc6976d34ad5.js	13.107.213.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/152.80958c4cdc6976d34ad5.js IP 13.107.213.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/152.80958c4cdc6976d34ad5.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: NGN/gzRX3xw1L0IcMPDWCQ== last-modified: Wed, 26 Oct 2022 19:28:49 GMT etag: 0x8DAB7884EF25040 server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-cache: TCP_HIT x-ms-request-id: e834f9fc-201e-0069-0d00-ea9571000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref-originshield: 08XxbYwAAAAB79CVbtFrgT7yeASgjWXE2QU1TMDRFREdFMTkwNgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= x-azure-ref: 0p41hYwAAAAAFiLVTDuSYToPc5aNyX9yCU1ZHMjBFREdFMDYyMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 01 Nov 2022 21:20:38 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/137.25378bd8c80d49894064.js	13.107.213.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/137.25378bd8c80d49894064.js IP 13.107.213.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/137.25378bd8c80d49894064.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: eM/Mkbq9bRpb86s9BlchHA== last-modified: Fri, 28 Oct 2022 18:23:02 GMT etag: 0x8DAB911735661B3 server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-cache: TCP_HIT x-ms-request-id: 157230aa-401e-006f-59a5-eda6ce000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref-originshield: 0Bp1gYwAAAABwtxklAMw6R7SLXhpGrSiWQU1TMDRFREdFMTgxOQA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= x-azure-ref: 0p41hYwAAAAAVi4tehyweSrHymmog5/ZiU1ZHMjBFREdFMDYyMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 01 Nov 2022 21:20:38 GMT X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (29)

URL HTTP/1.1